SkelSec

6.8K posts

SkelSec

@SkelSec

CEO and Co-Founder of Octopwn

Katılım Haziran 2014

444 Takip Edilen11.7K Takipçiler

SkelSec@SkelSec·1d

Ohh... you have reached the API limits, so we replaced your coder with a mental patient who will use half a crayon to randomly change values in your code. (he already ate the other helf)

English

374

SkelSec@SkelSec·1d

Research workflow: 1. Idea 2. discussions with peers 3. chatting with LLMs 4. feasibility check 5. Airbus guys already did that 5 years ago I'm.... eeehhhh.... (Airbus people doing some really underrated research btw, props to them!)

English

666

SkelSec@SkelSec·1d

@HackingLZ We have something interesting in this topic but stuck with explaining it to investors in EU so... :(

English

374

Justin Elze@HackingLZ·1d

I’m really interested in what happens as places take a lot of investment money to build commodity OffSec LLM backed products, even as the barrier to entry keeps dropping. You eventually end up with what actually matters novel research, deep domain expertise, and humans.

English

SkelSec retweetledi

Melvin langvik@Flangvik·3d

@MDSecLabs github.com/Flangvik/RegPw…

QME

2.5K

SkelSec retweetledi

S3cur3Th1sSh1t@ShitSecure·2d

WSUS fake updates for LPE or RCE when HTTP is being used? This one took many days and troubleshooting with claude but now we have a C2-Capable tool for the full stack including poisoning plus fake update delivery - the only thing we need is a low privileged C2 session! 🔥

English

200

11.8K

SkelSec@SkelSec·4d

@CDyac9 HID operated by LLM

English

CDROM@CDyac9·4d

@SkelSec I mean we need more context first… lol.😂

English

SkelSec@SkelSec·4d

I did a thing, but dunno what to name the project. pls halp

English

SkelSec@SkelSec·10 Mar

@HackingLZ Change per-token pricing to per-working code pricing

English

258

Justin Elze@HackingLZ·10 Mar

You don’t get a discount if Claude wrote the code?

Claude@claudeai

Code Review optimizes for depth and may be more expensive than other solutions, like our open source GitHub Action. Reviews generally average $15–25, billed on token usage, and they scale based on PR complexity.

English

5.3K

SkelSec@SkelSec·10 Mar

@IceSolst My PRs contain two projects worth of changes because I'm financially responsible

English

615

solst/ICE of Astarte@IceSolst·9 Mar

$15-25 PER PR?? I already thought the $1 per scan of /security-review was not scalable, this must be a weird strategy to anchor the initial price super high

Claude@claudeai

English

1.1K

183K

SkelSec retweetledi

Mayfly@M4yFly·9 Mar

🔥🐉 New GOAD Lab: DRACARYS I’ve just released a new free lab environment on GOAD: DRACARYS. The challenge includes 3 VMs and the objective is simple: Start with no authentication and work your way up to Domain Admin. Have fun exploiting it! 🔥🐉 mayfly277.github.io/posts/Dracarys…

English

291

16.2K

SkelSec@SkelSec·7 Mar

That is indeed hilarious...

English

810

SkelSec retweetledi

Richard Johnson@richinseattle·7 Mar

Spread the word! @phrack CFP with demoscene cracktro is live. Turn up the volume and enjoy the awesome stylings of @PiotrBania with some hopefully inspiring text from phrack staff :) phrack.org

English

133

249

37.6K

SkelSec retweetledi

OtterSec@osec_io·5 Mar

We recently achieved guest-to-host escape by exploiting a QEMU 0day. We’ll share details on a new technique leveraging the latest glibc allocator behavior and what we believe is a novel QEMU-specific heap spray/RIP-control primitive. Writeup coming next week.

English

190

1.5K

70.9K

SkelSec@SkelSec·4 Mar

@passthehashbrwn @_JohnHammond I'm realizing some of the ppl I know weren't even alive when this came out and now I'm sad :(

English

167

SkelSec@SkelSec·4 Mar

@passthehashbrwn @_JohnHammond Omg!!!!!! This is awesome!!! Have you seen this as well! IT security will never be the same!!! web.archive.org/web/2021011816…

English

363

Josh@passthehashbrwn·3 Mar

🚨🚨 TOOL 🚨🚨 NMAP is an ADVANCED port scanning tool used by AI HACKING FRAMEWORKS and PENTESTERS alike 🤓 Can scan ALL of YOUR ports 🤖🤖 Generates XML AND greppable REPORTS! 🔥🔥🔥

English

163

126K

SkelSec@SkelSec·26 Şub

My cli scripts are safe from any LLM interactions because even they can't figure out the correct input parameters

English

1.4K

SkelSec retweetledi

PagedOut@pagedout_zine·19 Şub

Here it is, our biggest issue to date, Issue #8! Read, share, enjoy! pagedout.institute/?page=issues.p… Get prints here - lulu.com/search?page=1&… And with that CFP for #9 is open - deadline 30 April 2026

English

162

33.3K

SkelSec@SkelSec·17 Şub

@n00py1

GIF

QME

557

n00py@n00py1·16 Şub

Has anyone found out what to do with EDR that blocks all tools that use python ldap3? Of course I can change to different tools, but this is always annoying. Wondering if there is a better way or if anyone knows what it's signatured on.

English

7.2K

SkelSec@SkelSec·14 Şub

@UK_Daniel_Card Why do birds suddenly appear?

English

mRr3b00t@UK_Daniel_Card·13 Şub

can we kerberoast anyone? who can be domain admins? who can edit GPOs? who can takeover computer accounts?

English

8.6K

SkelSec@SkelSec·12 Şub

🤡

HackerOne@Hacker0x01

Point-in-time pentests can’t keep up, while fully autonomous testing creates noise. The solution? HackerOne Agentic PTaaS pairs specially trained AI agents with elite human validation to deliver results based on real-world exploitability, not theory. This 50-second video shows you how it works.

ART

3.9K

Keşfet

@HackingLZ @MDSecLabs @CDyac9 @IceSolst @phrack @PiotrBania @passthehashbrwn @_JohnHammond