Sean 🏴󠁧󠁢󠁳󠁣󠁴󠁿

spend some time rewriting stardust to be more minimalist and easier to use! I needed a generic minimal shellcode template that works for both x86 and x64 out of the box so I rewrote stardust to do so. It is now written in C++20 and utilizing some of its language features. The template can be used to easily write shellcode fast in a more modern and less painful way. The project can be compiled in release or debug mode, where as debug mode will just allow the use of DBG_PRINTF, which calls DbgPrint under the hood to print out strings to the currently attached debugger. There are more things i have added so consider checking it out. I removed global variable access since i no longer use it nor require it (went for diff design heh). If u still need that feature I would recommend to change the branch to "globals-support" where the old version is hosted. github.com/Cracked5pider/…

Since some people asked, I made an extended and narrated version: youtube.com/watch?v=VJwOFi… // Searching for #AceLdr in memory, with #PEsieve/#HollowsHunter: youtube.com/watch?v=VJwOFi…

@vxunderground Phew, thought my kid was BianLian and was majorly disappointed for a second. I expect much better TTPs out of them.

@MWM76 @atrupar The several moments where he rocked back in utter disbelief, I thought he was gonna hook one of them

@atrupar If I were Zelensky I would have told him to F off...

"You've gotta be more thankful" -- remarkable scenes out of the White House as Trump and JD Vance team up to do Putin's bidding and demean Zelenskyy

@__invictus_ It's even trying to introduce sub-categories: - Cybersecurity Red Teaming - Content Red Teaming ??? 'Merica, please stop

Stop. Labelling. Everything. Red teaming. developer.nvidia.com/blog/defining-…

AI vs AI. We're really doing this. RedAgent is an LLM designed to jailbreak chatbots for pentesting & red teaming. So now we’ve got AI breaking AI, patching itself, and breaking again. Are we advancing tech or just setting up a whole new battlefield? 🔗 arxiv.org/abs/2407.16667

Congratulations to our cybersecurity colleagues in the United Kingdom. They're probably very happy about this. (this is sarcasm, don't go schizo in the comments)

🤦‍♂️

I don't pay for premium, so please read the longform in the picture. TLDR: Cool new VS x86/x64 shellcode template from @alexsho71327477 at github.com/rbmm/SC_DEMO, he lives in Ukraine and is looking for remote work, help him make a connection if you can.

@vxunderground Golang

Look at these dorks arguing over Rust and C compilation size

I'm getting new business cards made, plain white with my contact info and logo embossed, found a provider, this is going to be cool, very subtle, very demure

Don’t forget to leave a pcap and memory dump out for the SOC Analysts tonight.

Just in time for Christmas: a repository for decrypting many encrypted D-Link firmware images. Also integrated into Binwalk for auto-magic decryption & extraction. github.com/devttys0/delink

Want to run roadrecon, but a device compliance policy is getting in your way? You can use the Intune Company Portal client ID, which is a hardcoded and undocumented exclusion in CA for device compliance. It has user_impersonation rights on the AAD Graph 😃

@RedTeamTactics This has to be bait, or the most cowboy attempt at a red team op... Control group should have prevented this, and the Red Team failed basic OPSEC reqs in regard to attribution.

@MDSecLabs As always, absolute 🔥🔥🔥

Ready for some Thanks Giving reading? Nighthawk 0.3.3 Evanesco is now live for customers nighthawkc2.io/evanesco/ #happythanksgiving

#arcaneshow without a doubt, a masterclass in character development and artwork. Genuinely one of the most gripping series I've enjoyed recently.

New Blog Alert! 🚨 Introducing Early Cascade Injection, a stealthy process injection technique that targets Windows process creation, avoids cross-process APCs, and evades top-tier EDRs. Learn how it combines Early Bird APC Injection & EDR-Preloading: outflank.nl/blog/2024/10/1…

@__Vechs @SkelSec Utilise those compromised resources nahmsayin'!

People who are using hashcat not directly via the command line but with automation (web gui etc). What tool are you using?