kevin

Incredibly proud of the team in putting together our latest @TrustedSec BlackHat class. It's going to be an absolute blast and development is underway. Hope to see you there! #supply-chain-to-runtime-attacking--defending-the-modern-devops-stack-50985" target="_blank" rel="nofollow noopener">blackhat.com/us-26/training…

We are still seeing this on engagements, so I wrote a tool. DameFlare is a Python 3 exploit for CVE-2019-3980. Unauthenticated RCE as SYSTEM via smart card auth bypass. Full credit to @TenableSecurity for the original research/POC. github.com/boydhacks/dame…

An awesome example for a Messenger payload

Blink and you’ll miss it 🦎 In our latest blog, @GuhnooPlusLinux explains how Notepad++ plugins can be leveraged for code execution and how to quietly blend into a trusted process. Read now! hubs.la/Q043PvTs0

@curi0usJack I asked Claude to summarize and he said it's a banger

@curi0usJack Haven't read this yet but already know it's going to be a banger

@MDSecLabs @TrustedSec Give us NH licenses and then we might be able to test your PR

A new post on how to extend Nighthawk with Python Modules, including new scripts for the @TrustedSec SA, Remote and Injection BOF repos......Extending Nighthawk with Python Modules - nighthawkc2.io/extending-nigh…

@sprocket_ed Thanks king 👑

@GuhnooPlusLinux cute post

Here are my 5 favorite GUIDs: CB2F6723-AB3A-11D2-9C40-00C04FA30A3E 1131F6AD-9C07-11D1-F79F-00C04FC2DCD2 FDB00E52-A214-4AA1-8FBA-4357BB0072EC 49B2791A-B1AE-4C90-9B8E-E860BA07F889 9BA05972-F6A8-11CF-A442-00A0C90A8F39 Whats your favorite GUID? #infosec #redteam

@curi0usJack Become ungovernable x.com/i/status/20152…

I guess the year of the linux desktop is officially 2026.

@C2IRIS Doesn't work against crowdstrike

Found the most incredibly elegant Windows 11 25H2 guest —>system LPE recently. No third party drivers required. Thanks to a tip from a longtime friend who Microsoft savagely laid off before sending her job to India. What a rotten company they are.

Making an infinity casserole sauce where I save some of each one and put it into the next

@unsigned_sh0rt The Bible

What’s a good book you’ve read recently that you’d recommend?

@Mandiant Thank you Mandoogle. Very cool!

Net-NTLMv1 is outdated, insecure, and must go. 🛑 To help defenders prove the risk and accelerate deprecation, we’ve released a comprehensive dataset of rainbow tables. See how easily these keys can be recovered, and secure your environment. Read more: bit.ly/4qpV6MJ

@harold9850 Do you take time off from crowdstrike posting

As it approaches holiday season due to Christmas and new years, this is a time where companies are on edge as threat actors love to attack during the christmas hollidays. however, if you have crowdstrike then you'll sleep peacefully. if you dont, good luck.

@4JMAN It is bulletproof though if you turn it to aggressive and use crowdstrike identity it can't be bypassed

To be clear: Falcon is a great product. Overwatch is a great service. They are the most advanced EDR suite on the market right now. Quite difficult to combat. That said, it sure isn’t bulletproof, whatsoever. To think Falcon or any EDR is bulletproof is silly.

Legalize recreational raw milk

Our Targeted Operations experts @curi0usJack, @oddvarmoe, @jarsnah12, and @GuhnooPlusLinux are live on #Reddit right now for an AMA! Ask your questions, get pro-level answers. Join the conversation now! reddit.com/r/cybersecurit…

What's a good encryption algorithm for someone just getting into crypto?