S3cur3Th1sSh1t

3K posts

S3cur3Th1sSh1t

S3cur3Th1sSh1t

@ShitSecure

Pentesting, scripting, pwning!

127.0.0.1 Katılım Ocak 2019
339 Takip Edilen28.5K Takipçiler
S3cur3Th1sSh1t retweetledi
MSec Operations
MSec Operations@MSecOps·
Backdooring existing executables or DLLs for stealthy payload execution? With version 1.7.0 of RustPack, this can be easily done in a few seconds. We live-debug/trace the execution flow in the target executable to find a suitable backdoor position at runtime, instead of patching the entry point. 🤠 Even Frontier LLM models analysing the output executable with reversing tools at hand and one task - determining whether the target is benign or malicious - will tell you this is benign. 🔥 We work hard, you get the best possible evasion! #redteam #ost #pentest #maldev #evasion
English
0
9
36
2.9K
thefLink
thefLink@thefLinkk·
@ShitSecure The code that your 'friend' Claude provided is fundamentally flawed and also completely misimplements the concept of nested dynamic code. No need to use AI. Just read the slides.
English
2
1
1
290
S3cur3Th1sSh1t
S3cur3Th1sSh1t@ShitSecure·
@CDC_FI No not because of legal stuff. Because its not an enhancement ;-)
English
0
0
0
27
Karkas
Karkas@CDC_FI·
@ShitSecure Ah ok... probably due to legal stuff with closed software. Too bad
English
1
0
0
29
S3cur3Th1sSh1t
S3cur3Th1sSh1t@ShitSecure·
@thefLinkk Better flawed code that can be improved than no code at all 🤷‍♂️ thanks for the hint.
English
0
0
0
153
S3cur3Th1sSh1t
S3cur3Th1sSh1t@ShitSecure·
@CDC_FI Nope that won’t improve RustPack 🤔have my own implementation for everything in that repo
English
1
0
0
26
Karkas
Karkas@CDC_FI·
Would love to hear if it can improve the RustPack Loader maintained by @ShitSecure
English
1
0
0
44
S3cur3Th1sSh1t retweetledi
Adam Chester 🏴‍☠️
New blog post is up looking at how LLMs are making local EDR rulesets, YARA rules, and behavioral detections trivial to extract. This post focuses on how simple the harness can be. Buckle up h4xx0rs, the next few months are gonna get interesting! specterops.io/blog/2026/06/2…
English
16
189
619
107.4K
S3cur3Th1sSh1t
S3cur3Th1sSh1t@ShitSecure·
In september @MCTTP_Con - we will reveal our latest research about USB Co-Installer and Driver vulnerability exploitation for Privilege Escalation. 🔥🔥Super happy to work together with @KlezVirus on that research! 🫡
S3cur3Th1sSh1t tweet media
English
2
6
27
3.7K
S3cur3Th1sSh1t retweetledi
Abdul Mhanni
Abdul Mhanni@abdo_mhanni·
Wrote a new blog about caveats with tools detecting(or mis detecting) relay exploit primitives against http(ESC8) and MSSQL endpoints. Kept noticing issues in tools reporting the absence or presence of vulns that I thought others may have noticed too abdulmhsblog.com/posts/pitfalls…
English
2
22
60
10K
S3cur3Th1sSh1t
S3cur3Th1sSh1t@ShitSecure·
Of course. Looks like from now on I can’t describe features anymore in the tweet content 🤷‍♂️
S3cur3Th1sSh1t tweet media
English
2
3
31
5.5K
S3cur3Th1sSh1t retweetledi
Swissky
Swissky@pentest_swissky·
The 429 Microsoft Graph Mystery - @ShitSecure Using Invoke-GraphRecon can provide some common risky default configurations of the target tenant already, but get's blocked from Microsoft with an (429) Too Many Requests error message. r-tec.net/r-tec-blog-the…
English
0
2
14
2.8K
S3cur3Th1sSh1t retweetledi
Adam Chester 🏴‍☠️
First blog post in a mini series where I look at "disposable tooling". This post shares what I have found to be useful when 1-shot'ing LLM generated Stage-0 agents for Mythic. specterops.io/blog/2026/06/2…
English
6
73
266
33K
S3cur3Th1sSh1t
S3cur3Th1sSh1t@ShitSecure·
@Flangvik Five years ahead? That’s relevant right now and used by a lot of groups for sure already. Even a fully fledged framework can be created and tested like that pretty fast.
English
2
0
5
823
S3cur3Th1sSh1t retweetledi
Alex Neff
Alex Neff@al3x_n3ff·
Alternatively, you can find a Python script for scanning these values, as well as the exploit here: github.com/rub-softsec/on… A module for scanning with NetExec has also been added🧵
English
1
26
124
7K
S3cur3Th1sSh1t retweetledi
ar0x
ar0x@_ar0x4·
Already published the first two parts of the GSA –Tunnel Vision Series, hope you guys enjoy it and find it useful. The third part covers the rogue client and I'm hoping to finish it by end of the week. ar0x.com/posts/what-is-…
English
0
11
22
2.4K