will i am

My talk from @hackfest_ca 2025 in Quebec City has been posted - “Beyond Red vs Blue: Elevating Your Security with Practical Purple Teaming” Link: youtu.be/2eLh6swsoyQ #hackfest #purpleteam

Forever proud of this team. ❤️

Started a collection of Rust code samples useful for malware development! Gonna be ongoing additions to the repo as I learn more Rust dev. Repo: github.com/wsummerhill/Ru… #rust #malwaredev #redteam

Excited to be presenting my talk on practical Purple Teaming at @hackfest_ca next Friday, October 17! Gonna be fun returning to Hackfest in QC again after years. cfp.hackfest.ca/hf2025/talk/TQ… #Hackfest #HF17

Thanks for the fun times and absolute schooling in the IDOT training this past week at Black Hat @SpecterOps @subat0mik @_xpn_ @hotnops @_Mayyhem

Defcon 33, 2025 #dc33 #DEFCON

@Wietze @_dirkjan The legend himself 🙌

.@_dirkjan rocking it on the #DEFCON33 stage 🔥

Two vulnerabilities impacting Aviatrix Controller 7.2.5012 and prior versions were discovered by Mandiant Red Team ‼️ Learn how they exploited Aviatrix Controller through authentication bypass, unsafe file upload, and argument injection: bit.ly/448JV0Z

It’s time to #ChooseCanada. 🇨🇦 Canada.ca/Choose-Canada

@Oddvarmoe @TheOffensiveX

Got accepted to speak at @TheOffensiveX. Man, this will be so much fun. Heard so much amazing things about this conference. Really excited about this one!

Today, the United States launched a trade war against Canada: their closest partner and ally — their closest friend. Canadians are reasonable, but we will not back down from a fight. Not when our country is at stake.

canada pics that go hard

@VirtualAllocEx Big congrats on the workshop release! Lots of hard work and research coming together 👏

@Wietze Well done man, been excited for this to drop 👏👏

🚀 Today I'm launching ArgFuscator: an open-source platform documenting command-line obfuscation tricks AND letting you generate your own 🔥 68 executables supported out of the box - use right away, make tweaks, or create your own 👉 Now available at argfuscator.net

#LOLBAS project update: Entries now have placeholders for paths, URLs, and more. This makes it easier to visually see what parts are "variable", and for LOLBAS API users (lolbas-project.github.io/api/) it'll be easier to use with automation. Check it out: ⭐ lolbas-project.github.io

@Oddvarmoe I did test it out but didn't get to use it on an engagement. It still worked great and didn't affect Outlook much. Just made some custom changes out of the box to make it more opsec safe!

Just curious, did anyone try out Specula that we released a few months back? Did it work for you? Any feedback? trustedsec.com/blog/specula-t…

Useful C2 techniques and cheatsheets learned from engagements : Cobalt Strike Red Team Cheat Sheet : github.com/wsummerhill/C2… Sliver C2 Cheat Sheet : github.com/wsummerhill/C2… credits @BSummerz

Finally published Part 2 of my small "Malware Development Introduction" series (aka malware dev 101). This post covers intro to process injection, practical malware evasion concepts in C++/C#, and various resources I use. wsummerhill.github.io/redteam/2024/1…

PR submitted to hijacklibs.net @Wietze 👀😉 github.com/wietze/HijackL…

Microsoft Deployment Toolkit installation: microsoft.com/en-us/download…

DLL sideload of Microsoft Deployment Toolkit binary "Microsoft.BDD.Catalog35.exe" tested successfully using: - IPHLPAPI.dll - profapi.dll - CRYPTBASE.dll - cryptnet.dll Default EXE install path: C:\Program Files\Microsoft Deployment Toolkit\Bin\ #hijacklibs #dllsideload #redteam