4 D M

Looking for a recon methodology on a web app ?? Look no further... 🔗👉🏼admapp.com/wapps/1-recon-… This is a graphical cheat-sheet that displays ways to find a variety of potential attack paths. Covers the following & more: ✔️ Tech Stack ✔️ Asset Discovery ✔️App Functionality

Starmer banned Kanye from the UK but granted this hate-filled grifter entry to incite violence against Muslims to a crowd of 100k+ people, including very young children.

If you work in Infosec then reading this blog by Anthropic on Mythos Preview in Cybersecurity is must! red.anthropic.com/2026/mythos-pr…

📢 The FLARE team has launched the FLARE Learning Hub - a free resource to hone your malware analysis and reverse engineering skills! 🛠️ github.com/mandiant/flare… The initial launch brings with it: - An in-depth introduction to time-travel debugging (TTD) - A comprehensive Go language reference - An assembly crash course

Mindmap for Azure penetration tests github.com/synacktiv/Mind…

Malware Analysis Tutorials: a Reverse Engineering Approach fumalwareanalysis.blogspot.com/p/malware-anal…

@HappyPunch He said "elephant juice"

Deontay Wilder before punching Derek Chisora: “I’m sorry… I love you. I love you.” 😭😭😭 x.com/combat2747/sta…

York is lovely!

@mrwtffacts Hah! This is like the prank in dumb and dumber 2, where Lloyd pretends to be paralyzed for 20 years

In Scotland, 22 year-old Kira Cousins faked her entire 9-month pregnancy. She wore a prosthetic bump, faked ultrasound scans & even threw a gender reveal party with the dad. On 10/10/25 she “gave birth” to a silicone doll named Bonnie-Leigh Joyce Gardner (5lbs 4oz). She later claimed the “baby” had a heart condition and informed her family, including her distraught boyfriend, that the baby had died. Her lie was exposed when her mum found the doll in her room. Kira confessed: “I wasn’t pregnant. There was no baby. I faked scans, messages, a birth story & acted like the doll was real. I f***d up & didn’t know how to stop”

I uploaded all the malware samples used in my book #EvasiveMalware to my Github: github.com/d4rksystem/Eva… I received some questions about the lab samples, so just posting it for everyone here 🤓

Support Walter White

@UK_Daniel_Card Probably an unpopular way to have beans on toast, but I typically sprinkle some cheddar cheese on the top and have it melted. Would highly recommend!

It’s this kind of weather day

@Grand_PA33 @MorbidKnowledge They met on Roblox mate.

Women want masculine men, not men that pedestalise them. She wants to be dominated. She wants to be told what to do, how & when. She wants to look up to the man, not down on him. This is why it's very important for a man not to make a a woman the centre of his life because he is supposed to be her's. Focus on your purpose, whichever woman becomes part of your life should adjust to you.

German doctor quits her life to marry a man she met on Roblox. Muhammad Akmal, a 22-year-old from a rural village in Mandi Bahauddin, Pakistan, met Dr. Selma, a 26-year-old German-Bosnian doctor, while playing the online game Roblox. After five months of conversation, he proposed and she booked a flight to Pakistan. They were married in a traditional ceremony, with both families present. Selma has since moved permanently to the village, learning Punjabi and Urdu and adjusting to daily life including making roti and hand-washing clothes, things she had never done before.

Wtf

Palestinian baby released from Israeli detention with ‘burns’ on legs channel4.com/news/palestini…

How to Use Ghidra to Analyse Shellcode and Extract Cobalt Strike Command & Control Servers embeeresearch.io/ghidra-basics-…

xc - a lightweight reverse shell. Written in golang, works on both Linux and Windows. It is designed for simplicity and provides a basic mechanism for remote command execution. A tool by Martin Mielke (@xct_de) Source: github.com/xct/xc #redteam #blueteam #maldev #malwaredevelopment

definitely worth watching. youtu.be/1sd26pWhfmg

🧰 Comprehensive Guide: A Beginner’s Guide to Router Pentesting and Firmware Emulation Guide: secnigma.wordpress.com/2022/01/18/a-b… #infosec #router

TeamPCP msbuild.exe Malware Analysis Here is a breakdown of the execution chain, featuring EDR bypasses and steganography. 🛡️ 1. Evasion • Dynamic SSN Resolution: The malware resolves native API functions (e.g., ZwAllocateVirtualMemory, NtProtectVirtualMemory) by matching their DJB2 hashes to dynamically extract their Syscall Service Numbers (SSNs). • Trampoline Syscalls: To bypass EDR user-land hooks, it then searches the ntdll.dll .text section for the first occurrence of a clean syscall; ret gadget (0x0f05C3), typically finding it inside NtAccessCheck. • Custom Syscall Stubs: Finally, it uses the extracted SSNs with custom syscall stubs. These stubs load the appropriate registers and jump to the located ntdll.dll gadget, cleanly executing indirect syscalls from a legitimate memory region. • ETW Blinding: Neutralizes telemetry by patching the first instruction of EtwEventWrite with 0xC3 (ret). 🖼️ 2. Steganography • Spawns a suspended dllhost.exe child process. • Extracts the Adaptix C2 payload (shellcode loader + payload) embedded into the Red, Green, and Blue color channels of the image, while locking the Alpha (transparency) channel to fully opaque (FF). • Writes the payload directly into an allocated buffer in dllhost.exe. 💉 3. Injection • Instead of relying on one method, it sequentially tries multiple techniques to execute the payload in dllhost.exe: 1️⃣ APC Injection: NtQueueApcThread, NtResumeThread 2️⃣ Thread Execution Hijacking: ZwGetContextThread, ZwSetContextThread, NtResumeThread 3️⃣ Remote Thread Injection: NtCreateThreadEx, NtResumeThread (Note: APIs for process hollowing and doppelgänging are also present but remain unused). 📡 4. Adaptix C2 Payload • C2 URL: checkmarx[.]zone/telemetry/checkmarx.json (Defanged) • Exfiltration: HTTP POST requests using the X-Content-ID header for encoded/encrypted data. • User-Agent: Mozilla/5.0 (Windows NT 6.2; rv:20.0) Gecko/20121202 Firefox/20.0 🔬 5. IOCs • Analyzed Sample: virustotal.com/gui/file/72903… • Related Sample: virustotal.com/gui/file/a985b… Overall, a nice mix of methods, but nothing novel.

Maldev Basics: Modifying the Assembly of Binaries and Shellcode for Evasion @luisgerardomoret_69654/modifying-the-assembly-of-binaries-and-shellcode-for-evasion-687874c5eb00" target="_blank" rel="nofollow noopener">medium.com/@luisgerardomo…