optional

2K posts

optional banner
optional

optional

@optionalctf

The proud owner of two brain cells. HTB with @barctf | OSCP, CRT, CRTL

Bergabung Ocak 2019
292 Mengikuti4.4K Pengikut
Tweet Disematkan
optional
optional@optionalctf·
Introducing C2structor, a deployment tool to automate red team infrastructure within AWS. Utilising Terraform and Ansible to allow for seamless customisation to each individual's use-case. Currently supports C2 deployment, redirectors and phishing inf. github.com/optionalCTF/C2…
English
0
3
4
757
optional me-retweet
Ben Sadeghipour
Ben Sadeghipour@NahamSec·
Unfortunately most of the execs at these bug bounty platform fail to understand one thing: Your platform isn't your product... your hackers are. 🤷🏽‍♂️
English
15
61
569
29.9K
optional me-retweet
Patrik Grobshäuser
Patrik Grobshäuser@ITSecurityguard·
built a web interface for Obsidian.md so you can access your vault from any browser using cloudflare tunnels + your own hostname. No more being stuck with notes on one machine, no installing clients on work computers you don't control 👀 👇 github.com/PatrikFehrenba…
Patrik Grobshäuser tweet media
English
5
3
72
6.1K
optional me-retweet
Brave
Brave@brave·
Brave tweet media
Windows Latest@WindowsLatest

Breaking: Microsoft plans to load Copilot inside File Explorer on Windows 11. References in preview builds point to “Chat with Copilot" and “Detach Copilot" in File Explorer. Right now, Copilot in File Explorer shows up only when you right-click files and the Copilot app is installed. However, now Microsoft wants Copilot to appear within File Explorer, rather than redirecting you to a separate app. This move will make Copilot feel more native in File Explorer.

ZXX
221
1.1K
13.3K
784.7K
optional me-retweet
klez
klez@KlezVirus·
[RELEASE] As promised, I’m releasing the first blog post in a series. It covers the gaps still present in current stack-based telemetry and how Moonwalking can be extended to evade detection logic and reach “on-exec” memory encryption. Enjoy ;) klezvirus.github.io/posts/Moonwalk…
English
8
113
341
28.3K
optional me-retweet
Bobby Cooke
Bobby Cooke@0xBoku·
Venom C2 tool drop! 🐍 During a recent red team engagement we needed a simple python agent that needs no dependencies to setup persistence on some exotic boxes we landed on. Some had EDR so we didn't want anything off-the-shelf. The server, agent, and client were made mid-engagement and kept our foothold for weeks. I have no use for this anymore, so thought i'd share it instead of letting it evaporate into the /dev/null. Link to boku7/venom GitHub repo : github.com/boku7/venom
Bobby Cooke tweet media
English
10
89
406
42.8K
optional
optional@optionalctf·
Labour's 1984 shit show is already showing cracks and backfiring. Can't wait to see the shit show Digital ID gets compromised because they rushed to implement something no one wants...
vx-underground@vxunderground

Discord has begun sending e-mails notifications about a cybersecurity incident which occurred September 20th, 2025. It appears people who submitted support tickets are the ones primarily impacted. Literally peoples entire identity stolen from this shit

English
0
0
5
386
optional me-retweet
kreep
kreep@kreepsec·
AWS quietly updated T&Cs to ban “Fireprox”style use of API Gateway closing a handy pentest trick. @ZephrFish and @turvsec already rolled alternatives such as Omniprox and Flareprox. Banning tools only hampers legit testers, attackers will proxy anyway.
English
3
13
63
5.5K
optional me-retweet
ThePrimeagen
ThePrimeagen@ThePrimeagen·
i never saw this coming
ThePrimeagen tweet media
English
319
1.3K
20.9K
808K
optional me-retweet
SpecterOps
SpecterOps@SpecterOps·
PDQ SmartDeploy versions prior to 3.0.2046 used static, hardcoded encryption keys for cred storage. Low-privileged users could potentially access admin creds from registry or deployment files. @unsigned_sh0rt unpacks his testing in his latest blog post. ghst.ly/4mjyuvw
English
2
52
129
15.7K
optional me-retweet
Jord
Jord@0xLegacyy·
Developing a scriptable (pwndbg-like) debugger for windows. Few more things we need to iron out but will be releasing soon 🐸
Jord tweet media
English
6
20
165
11.5K
optional me-retweet
kreep
kreep@kreepsec·
Had an awesome time at #DefCon 33. Lots of new discoveries, first time speaking at the #redteamvillage along with @zer0phat and met lots of cool people. Looking forward to the next one!
kreep tweet mediakreep tweet media
English
1
1
3
449
optional me-retweet
RedTeamVillage
RedTeamVillage@RedTeamVillage_·
💻 ModuleOverride – Changing a Tyre Whilst Driving – @zer0phat & @kreepsec teach process injection using existing memory sections to run malicious shellcode. Hands-on demos and detection strategy discussions at @redteamvillage_ during @defcon 33! ⚡
RedTeamVillage tweet media
English
0
3
9
1.1K
optional me-retweet
vx-underground
vx-underground@vxunderground·
vx-underground tweet media
ZXX
20
85
2K
58.2K
optional me-retweet
Adam Chester 🏴‍☠️
Adam Chester 🏴‍☠️@_xpn_·
PSA to anyone struggling, don't be told that "you're just worried", "you're just feeling sad", "you're overthinking things"... depression, anxiety, OCD, ADHD, Autism are killers. Talk, and advocate for yourself!
Adam Chester 🏴‍☠️@_xpn_

Finally landed on an OCD diagnosis yesterday, the fucking relief is unreal. Not like it's a shock, but it's been a loooooong time to get to this point. Look after your mental health h4xx0rz! youtube.com/watch?v=NDBRjB…

English
4
6
48
5.9K
optional
optional@optionalctf·
Nothing like scratching the bug bounty itch with several crits to end the night. Now to rest ready for Steelcon
English
0
0
1
266

Jelajahi

@ZephrFish @turvsec @peterwintrsmith @s4ntiago_p @GigelV41464 @saab_sec @unsigned_sh0rt @NahamSec