Ronin

V2Ugd2luIHRvZ2V0aGVyLCB3ZSBsb3NlIHRvZ2V0aGVy

@0xSkeletonKey No one can protect your peace better than you.

[BLOG] This post summarises how to tie Cobalt Strike's UDRL, SleepMask, and BeaconGate together for your syscall and call stack spoofing needs. rastamouse.me/udrl-sleepmask…

A morning of IaC followed by 4 flags into Offshore in HTB.

Goad v3 merged into the main branch 🥳 Github : github.com/Orange-Cyberde… Doc : orange-cyberdefense.github.io/GOAD/

In a somewhat recent project we used a vulnerable driver, which worked fine... Except: The customer had a custom rule that caused an alert when a service is created! Decided to write a tool that creates the registry keys and calls into NtLoadDriver: github.com/ioncodes/Silen…

Initial Access Guild in the makings❤️ I genuinely think there's unfilled potential for widely focused Initial Access hacker spaces And since been doing nothing but IA last years, I guess I could help cultivating this art. Expect invites soon🔥 PS: Full names or nicknames?🤔

Windows User Space Emulator : A high-performance Windows process emulator that operates at the syscall level, providing full control over process execution through comprehensive hooking capabilities : Fake It 'til We Make It : The Art of Windows User Space Emulation : youtube.com/watch?v=Y6NXwI… Slides : #slide=id.p1" target="_blank" rel="nofollow noopener">docs.google.com/presentation/d… credits @momo5502

@unspecific I could sip coffee for hours and look at this view.

A fog roles in as we head to our next stop.

🤣 it’s been a while

Cooking almost done! Announcement coming out soon... #redteam #maldev

It’s a wild feeling to apply for a principle red team role and get insta rejected. Like meeting all the requirements by their checkboxes and quick enough that I seriously doubt a human looked at the submission.

Anxiety rising up like 13 ghosts. Generally happens a few days before a 100 miler. About 41 hours until race start. Once race day comes, it washes away. The start line for me represents calm. 🏃‍➡️

@cybersec674 Metallica

5 hour drive, and you can only listen to one artist. Who's that artist...... ?

@1njection Where is an asteroid when you need one?

We are just a few months away from AI spinning up companies and services automatically, potentially running the entire thing. Books like Daemon and Neuromancer really don’t feel far off. On top of that we have govs building out full drone armies, doesn’t feel great lol

@hardwaterhacker Been waiting a while to get my own invite. Looks like those were used. Suppose I can wait moar. 🤣

Anyone need invite codes?

Tools can be extremely useful. You can use one tool over another to help alleviate pain points. When you are building a deck, you still need to know what double shear, beam span, cantilever, etc are. Same in the infosec world. Tools can help but there's a lot to still know.

Slightly obscure reference to my work:

@HackingLZ I think it’s fair game if the device is used in the organization in some way.

How do you feel about employees being targeted for SMS phishing tests? The assumption is the thing being sent is a link to capture credentials, not RCE. I have seen people argue this shouldn't be on the table, but this is similar to someone opening an email on mobile.

@hardwaterhacker Fortunately yes. Start a new adventure on Monday.

@RedTeamRonin Just a break between jobs?