Expl0itabl3

A recap of @tijme from #NullconGoa2025 1️⃣ Kong Loader 🍌 keeps malware undetectable in memory. 2️⃣ Outperforms sleep masks. 3️⃣ A new challenge for defenders YouTube link: youtu.be/K3OY-ZNmMxo?fe… #kongloader #offensivesecurity

#BSidesLondon2023 was fun! Had the opportunity to present a kernel exploit for PulseSecure VPN and Ivanti Connect Secure VPN. Shared research of my colleague Alex and me. northwave-cybersecurity.com/ivanti-pulse-v…

A TLP RED conference for red teamers. 👌 quality content, some of the best red team firms present, and a group sized small enough so you can speak to everybody and discuss your ideas. This is 🔥af and what we think confs should be like. We need more like this. #redtreat23

My new blog is live (tij.me)! 🚀 • Fully open source (github.com/tijme/blog-v2). • Automated SVG generation of IDA Pro graphs. • Automated deployments via GitHub Pages. • Support for all Jekyll plugins, even plugins unsupported by GitHub Pages.

Thrilled to announce that I'll be giving a 2-hour Kernel Driver Exploitation lab at @HITBSecConf, together with my colleague Jan-Jaap. 🥳 If you want to develop your first malicious kernel driver (exploit), join us the 21st of April in Amsterdam!

We've just released the first post in the Cobalt Strike reflective loader blog series! 🥷This one took allot of effort and I am excited to share it with you! The better it does, the better i'll make the next ones 😉 securityintelligence.com/posts/defining…

After almost 2 years of working on NimPlant as a personal side project, I’m proud to release it to the public! NimPlant is a light-weight, first-stage C2 implant written in Nim, with a supporting Python server and Next.JS web GUI. Available here now! 👇 github.com/chvancooten/Ni…

The difference between signature-based and behavioural detections. As well as a little philosophy. 😎 s3cur3th1ssh1t.github.io/Signature_vs_B…