Cliff

@Steel_Con Thank you.

@CMUK20 Sorry, copy paste from last year fail, it will be just Nishaanth I assume. I'll get it fixed

Workshop tickets are now loaded into Tito and will open at 12pm on Friday. Please, only take a ticket if you have a main con ticket, if you haven't got one your workshop ticket will be cancelled. ti.to/steelcon/2026 For more info see: steelcon.info/2026-friday-wo…

All EZ Tools have been updated! New version is 2026.5.0 across the board. Nuget updates, control updates, bug fixes and general refreshing of everything. Enjoy!! #dfir

The @MDSecLabs AdSim and CapDev training is returning to #BlackhatUSA with new updated course content for 2026! #adversary-simulation-and-capability-development---2026-edition-50846" target="_blank" rel="nofollow noopener">blackhat.com/us-26/training…

The @MDSecLabs red team is hiring! If you're an experienced red team operator interested in conducting multi-month operations within a small and technically gifted team reach out to us! ✊

$5 Membership sale is live for the next 24 hours: account.shodan.io/billing/member

Help me with some research by answering a couple of quick polls. If you're a red or blue teamer, I'm interested in how often you've been detected or detected someone, courtesy one of the following c2 related IoCs. If you've voted, feel free to elaborate with comments - I'm particularly interested if you think any trends are gaining traction.

full-on identity swap in real time. Deepfakes have crossed the uncanny valley

Stumbled on ServiceNow during a red team? If not you might want to check our latest post on Red Teaming with ServiceNow by @__invictus_ mdsec.co.uk/2025/03/red-te…

To renew my CISSP cert or not. I'm on the fence.

@domchell Not for you then.

So who’s paid >2.5k for a hyperlink eh? VC $$ go brrr?

$2.5k for a hyperlink, and another $2.5k for an ad, on a sight I’ve never heard of 😂 Madness…

@vxunderground @binaryz0ne Another cool giveaway 😎

Hello, it is now giveaway-number-21. Our friend @binaryz0ne hooked us up with 10 vouchers to the C5W Malware Analysis course. See subsequent tweet for course details. If you want to learn about malware analysis, leave a comment below. - Winners will be selected randomly in the next 24 hours. - We will DM winners. - If you do not confirm your win in 24 hours a new winner will be selected - If your DMs are closed, you automatically forfeit your prize

@vxunderground @Cyb3rMonk

Hello, it's the next giveaway. Our friend @Cyb3rMonk hooked us up with 5 vouchers for the Hands-On KQL for Security Analysts course. If you wanna learn some blue team threat hunting KQL stuff, leave a comment below. - Winners will be selected randomly in the next 24 hours. - We will DM winners. - If you do not confirm your win in 24 hours a new winner will be selected - If your DMs are closed, you automatically forfeit your prize Have a nice day

Giveaways left in the queue... we've gotta get through all of these before Christmas, we gotta pick up the speed - Sektor7 Malware Development Essentials Course - Sektor7 Malware Development Intermediate Course - Sektor7 Malware Development Advanced Vol.1 - Hands-On KQL for Security Analysts (x5) - TorGuard VPN 1 year subscription (x10) - xG3 Injectable Biomagnet v2 - The Definitive Guide to KQL (eBook) (x10) - Certified Red Team Professional (x3) - Certified Red Team Expert (x3) - Certified Azure Red Team Professional (x3) - Malcore Lifetime Reverse Engineer Plan (x10) - 1336_0ff_by_0ne malware graphic shirts (x12) - $150 of vx-underground merch - $15,000 of cash giveaways - Certified Cyber Security Engineer (x5) - Enterprise Security Controls Attack Specialist (x10)

Ever come across Altiris on a red team? We did.... Check out this post from @breakfix on how to extract ACC creds... Extracting Account Connectivity Credentials (ACCs) from Symantec Management Agent (aka Altiris) mdsec.co.uk/2024/12/extrac…

Please share about people of Stoke on Trent

CrowdStrike is actively working with customers impacted by a defect found in a single content update for Windows hosts. Mac and Linux hosts are not impacted. This is not a security incident or cyberattack. The issue has been identified, isolated and a fix has been deployed. We refer customers to the support portal for the latest updates and will continue to provide complete and continuous updates on our website. We further recommend organizations ensure they’re communicating with CrowdStrike representatives through official channels. Our team is fully mobilized to ensure the security and stability of CrowdStrike customers.

This is CrowdStrike's Director of Overwatch, so I hope to help spread the word. I believe CS stopped these changes from being pushed out so machines late to the party wont get the faulty driver. Command in Safe Mode: del "C:\Windows\System32\drivers\CrowdStrike\C-00000291*.sys"

🔥 Urgent Patch Alert! #Microsoft releases a massive patch for April 2024, fixing a record 149 flaws. Two vulnerabilities are ALREADY under attack. thehackernews.com/2024/04/micros… Update your systems NOW. #cybersecurity #hacking