Max Grim

Next august, we'll host our newly designed advanced defensive engineering training at @BlackHatEvents in Las Vegas. Next to detection engineering we'll also cover topics like enrichment, lifecycle management and AI. There are still some spot left! #advanced-defensive-engineering-in-the-enterprise-50950" target="_blank" rel="nofollow noopener">blackhat.com/us-26/training…

Red teaming && racing, two of my main interests, now together in 1 event! Come and join me on May 27 at Racesquare Utrecht to hear me talk about red team tooling, and to jump in a virtual F1 car for a race. More info on this *free* event: the-s-unit.nl/fortra-event/

@kyleavery Have to pay for ketchup though

once you have mcdonald’s abroad, you will always be disappointed with it at home

New blog by Outflank’s @KyleAvery: Linux process injection leveraging seccomp to inject shared libraries into Linux processes without LD_PRELOAD, ptrace nor elevated privileges. Parent-to-child injection at any ptrace_scope level 💪😎 Tech details here: ow.ly/KwBh50XGvrC

@MarcOverIP @_xpn_ @mrgretzky

@max__grim @_xpn_ @mrgretzky But Adam, didnt you get a hoodie when you gor access to OST?

Would you like to be my colleague, and get to wear an awesome red hoodie? We are looking for a full-stack / offensive developer. Drop me a message or apply directly: job-boards.greenhouse.io/fortra/jobs/45…

@_xpn_ @mrgretzky You can definitely like me as a friend! But @MarcOverIP is the guardian of the hoodies xD

@max__grim @mrgretzky Can I like you as a friend and still get the hoodie?

4.12 has been a blast to work on, and it’s awesome to see it release! Happy tinkering 😁

@kyleavery @__mez0__ @0xTriboulet Ahahah when were ready I’ll await your PR 😂

@__mez0__ @0xTriboulet also @max__grim what do you think

Still the best theme ever made for a C2 - make this default in all future projects.

@kyleavery 🤠

Credential Guard was supposed to end credential dumping. It didn't. @bytewreck just dropped a new blog post detailing techniques for extracting credentials on fully patched Windows 11 & Server 2025 with modern protections enabled. Read for more ⤵️ ghst.ly/4qtl2rm

We're at BlackHat USA. At 1.30 PM our Outflank researcher @kyleavery will present his work on how he trained a 7B parameter LLM to defeat Microsoft Defender for Endpoint. An accompanying blog post will go out later today and we'll release the model on Hugging Face. Stay tuned!

The Registry Rundown. Last year Cedric Van Bockhaven & Max Grim showed us how even non-administrators can do some very interesting things with the registry. #Cybersecurity #WindowsRegistry #Infosec Watch here: youtu.be/MxDq552Di3Y?si…

Yes! We're doing the Infosec Kart Cup again! 🏎️🤘 Mark June 19 in your calendars, and reserve your spot now at infoseckartcup.nl! The 2024 edition was sold out.

@Hack3rBot @OutflankNL @BlackHatEvents If it's the same as last time, there will be a recording, but only available through the (paid) BH portal.

@OutflankNL @max__grim @BlackHatEvents Will you broadcast it online?would be intressting to hear

Enjoying #BlackHat ? The best is yet to come! Be sure to head over to Business Hall B tomorrow to hear from @max__grim about how Outflank C2 (OC2) addresses #redteaming concerns and enables more effective engagements. #BHASIA @BlackHatEvents

@kyleavery @C5pider @domchell @ConsciousHacker 👀👀👀

@C5pider @domchell @ConsciousHacker @max__grim 👀

@domchell @ConsciousHacker Nighthawk + LLM when? The people want to have jarvis in their C2 Framework bro. "jarvis, drop mimikatz on disk and execute sekurlsa::logonpasswords, encrypt the output of it using base64 and upload it to my personal OneDrive"

Automatic browser SSO with a PRT on a victim device over an Outflank C2 implant 🥰 using ROADtools and some hackery from @max__grim

Headed to Singapore for BlackHat Asia? Be sure to stop by booth 507 to talk all things #offsec and then join @OutflankNL's @max__grim to learn how Outflank C2 (OC2) can cut through the noise and extract critical insights, enabling smarter operations.#BHASIA @BlackHatEvents

Headed to Singapore for BlackHat Asia? Join Outflank's own @max__grim for a deep dive into Outflank C2 (OC2) and discover how it can cut through the noise and extract critical insights, enabling smarter operations.#BHASIA @BlackHatEvents

Enjoying @1ns0mn1h4ck? Don't miss @c3c's speaking session on using VBS enclaves for handling sensitive data>