Gavin K

During my internship at @SpecterOps, I had the amazing opportunity to support red team and penetration test engagements. This lead to the creation of my capstone project, which I presented at the Seattle office and created a SpecterOps blog which you can see more about here:

keep struggling when things come too easy, you don’t exercise the brain nor the emotions. ease can feel like progress, but it often skips the reps that actually change you. growth is usually a loop, not a straight line – you take passes. you try, you fail, you reframe. you come back with a slightly better model, a slightly calmer nervous system, a slightly wider range of what you can handle. hardship isn’t the goal. but friction is gold. it shows you where your understanding is thin, where your habits are brittle, where your ego is doing the steering. the struggle is the curriculum. agents are making things easier, and that’s good. but don’t confuse speed with depth. use AI to remove busywork, then spend the saved energy on the parts that still hurt a little: the unclear problem, the uncomfortable conversation, the hard tradeoffs, the things you can’t yet explain in words. instead of putting all your wishes into the black box, actually keep thinking, and seeing things fully. keep the difficulty where it matters. outsource the tedious, keep the meaningful resistance. that’s how we keep learning – and how we stay human while your tools get superhuman.

updated proxy_enum to check: HKLM\\SYSTEM\\CurrentControlSet\\Services\\iphlpsvc\\Parameters\\ProxyMgr in @awakecoding's article: awakecoding.com/posts/deleting… commit: github.com/atomiczsec/Adr…

@awakecoding currently not for ProxyMgr, but thank you for sharing this! great resource - I will be sure to update the BOF to check these keys : )

@atomiczsec do you also check for these registry keys? awakecoding.com/posts/deleting…

proxy_enum – a BOF that enumerates Windows proxy configuration states: WinINET, WinHTTP, policy keys, environment variables, WPAD indicators, Chrome settings, and .NET defaultProxy values get checked. Shows how a host is likely to reach the network. Useful for finding egress paths during operations. BOF in Adrenaline Repo: github.com/atomiczsec/Adr…

@lefterispan oh this is awesome, thanks for sharing!! I like the egress testing functionally as well : )

@atomiczsec Great work! 🤟if you ever need equivalent functionality in shellcode I had written github.com/leftp/pipes in the past

@N7WEra thank you man, it is not but might have start that challenge ha! the challenge is making sure what is produced is actually useful instead of guessing what operators will need : )

@atomiczsec You're on FIRE man! is BOF a day challange month?

power_state – a BOF that identifies host form factor. Various form factors of devices create different uptime patterns. This difference influences callback reliability. power_state helps you identify which hosts are worth operating from. BOF in Adrenaline Repo: github.com/atomiczsec/Adr…

@rayanabdulcader @tranmautritam ^

@tranmautritam Grok's is honestly satisfying to watch, but Claude feels the most like it's actually working through the problem. ChatGPT's always felt a bit too instant to me lol.

Every AI has a different thinking animation Gemini, ChatGPT, Grok, Claude → which nailed it? 🤔

@Gi7w0rm @500mk500 @UK_Daniel_Card @NexusFuzzy @aejleslie @jstrosch @ViriBack @0xToxin @malwrhunterteam @James_inthe_box @vxremalware @dr4k0nia @crep1x @1ZRR4H @RussianPanda9xx @SOSIntel @tosscoinwitcher @0xperator @Jane_0sint happy you used this list again, cant wait to read!

Has been a minute since I used this list: @500mk500 @UK_Daniel_Card @atomiczsec @NexusFuzzy @aejleslie @jstrosch @ViriBack @0xToxin @malwrhunterteam @James_inthe_box @vxremalware @dr4k0nia @crep1x @1ZRR4H @RussianPanda9xx @SOSIntel @tosscoinwitcher @0xperator @Jane_0sint

New Blogpost "Amos Stealer "malext" variant spread in global malvertising campaign using free text-sharing websites" is now live. @gi7w0rm/amos-stealer-malext-variant-spread-in-a-global-malvertising-campaign-using-free-text-sharing-4d240e11d7e2" target="_blank" rel="nofollow noopener">medium.com/@gi7w0rm/amos-… Hope you will enjoy 🙂

@N7WEra @hacker_ralf @chryzsh thanks for adding!

Neglected my BofAllTheThings repo (github.com/N7WEra/BofAllT…), just added Adrenaline (@atomiczsec) , Extension-Kit (@hacker_ralf) and Awesome-BOF site (@chryzsh ) chryzsh.github.io/awesome-bof/si…

This 20-min presentation, "Code as a Medium for Storytelling", is an encapsulation of all my recent thinking on vibe coding as a non-technical person I also showcase 5 projects I built (all of which were viral on X), and 7 lessons on effectively working with coding agents

@eliano stealth >

// drop 009 something special is live > special edition Valentine's Day ontology hoodie🖤 > restocked OG & stealth ontology hoodies > restocked OG performance caps link in bio 🔗 designed & made in 🇺🇸 worldwide shipping 🌐

@Kimbeff @trainr3kt thank you🙏

@atomiczsec @trainr3kt Just a regular day in a legend's life. :)

modernized notethief by @trainr3kt to work for win 11 and be more c2 agnostic

@jamieantisocial 🤣🤣🤣

they would be hilarious if it wasn't so easy + necessary to hate them.

@cursor_ai finalllllly

Composer 1.5 is now available. We’ve found it to strike a strong balance between intelligence and speed.

@oprydai good communication internally and externally is the most important skill anyone could have

this pattern i am not noticing lately is that: precision in speech is directly proportional to clarity of thought.

@trainr3kt github.com/atomiczsec/Adr…

@_RastaMouse white-labeling certs :0

I've never had this enquiry before - a company just asked if they could resell RTO to their customers and put their own logo on the certification. Like, wtf...?