Init1Security

@Haus3c What?..

yall ever dump lsass with Steam?

We have released WARDEN in beta testing, if anyone wants to hammer the AI and our very meticulous prompts please go ahead, reach out if you encounter any errors!! #redteam warden.init1security.com

Soon #redteam training.init1security.com

@2301firoz Closed Source internal tooling

@dmcxblue @init1security Is this public open source

I am back in beautiful Mexico, and with some down time here and there (when my son sleeps). I get the chance to work on a cool project that reminded me of Veil-Evasion a framework that was the big on payload generation and evasion our internal tooling for @init1security and to give some reference to Mexico I named it Nahual. Utilizing different "Gates" techniques, syscalls methods, encryption and evasion methods they can be activated with a simple flag: '--key-username "demo" --encryption aes, etc, etc.' it's a really big project that I've been wanting to tackle to solve and automate my evasion issues, has been with great success (sometimes), I can use full meterpreter (highly signatured) shells and metasploit as my C2. #redteam

A great project!! Currently in development!.

If you’re in the Los Angeles area, we’re hosting a small introductory session on Red Teaming and AI in Burbank at the hackerspace @nullspacelabs. Drop in, say hi, grab some pizza, and hack on some labs! #redteam meetup.com/nullspacelabs/…

@gorilla_rape All the funny cat videos are from Sora!!? Noooooo

the single best sora

We added a C2 interface and it’s looking solid. It can load CNA scripts similar to Cobalt Strike, but since PickleC2 is written in Python, we use a Python wrapper for them. Still a pretty nice setup. #redteam

We're working on malwareless lateral movement techniques, and what better scripts to handle these methods than Impacket? One of them is their reg[.]py script, which allows us to modify registry keys remotely and gain a semi-interactive shell, keeping the naming convention "regexec" is one of those tools!. #redteam

A new tool in our arsenal: DotBlind, a Python script that applies sandbox evasion, anti-debug techniques, AES and XOR encryption to compiled .NET binaries for evasion, it's looking very promising, testing with execute-assembly should be a big win, currently dropping to disk and executing is functional. 🫡 #redteam

@bohops As always all the cool talks are outside the U.S., jk,jk. Congrats super interesting topic as always!

COM is a gift that keeps on giving.. yet another relic of the Windows OS that is unlikely to go away in the near future.

Living in-memory? Need to run great tools for enumeration, exploitation, persistence, and privilege escalation? SharpCollection has you covered. github.com/Flangvik/Sharp… #redteam

Built an evasive CS RL with Crystal Palace that bypasses Elastic EDR. The evasion lives inside the blob. Not in how it got there. Blog: lorenzomeacci.com/bypassing-edr-… Source: github.com/kapla0011/Kapl…

Using Crystal Palace and AdaptixC2 maorsabag.github.io/posts/adaptix-…

Excited to deliver our first Red Team workshop in Spanish for Mexico! This course is customized to provide a solid understanding of Red Teaming and to train offline LLMs for Red Team operations, while still working with C2 and following the attack chain: Initial Access techniques, Persistence, Privilege Escalation, and more!. 🇲🇽 #redteam

@_RastaMouse I went all in, working on Kali Linux 😄

I'm going to legit try and make the jump to Linux as my daily driver. Wish me luck, fam.

@wire_catt Hey still really great tips 😄

@init1security > OPSEC > 8 years ago

227 tips dedicated to red teaming, OPSEC, infrastructure, payloads, etc. github.com/vysecurity/Red…

Tokens are incredibly powerful in terms of scope and access. Get the correct one and your access becomes extraordinary. With ANIMO, we try to automate this and use a seamless approach so users can easily obtain and use these tokens. #redteam