Mayuresh 🇮🇳

New Qualys blog is, once again, excellent: cdn2.qualys.com/advisory/2026/…

@SimoKohonen Hi Simo, what is this likelihood based on?

A BYOVD exploit at #1, interesting!

@SwiftOnSecurity @HuntressLabs ^

Yes EDR is a rootkit you pay people to watch your computer with

@dmcxblue github.com/search?q=Cobal…

Took a minute but the Cobalt Strike beacon source code has been taken down #redteam

Does anyone know if the following #Microsoft #mitigation has been released - techcommunity.microsoft.com/blog/microsoft…? I see the registry hive, but does not do anything against POCs on my Windows 11.

@censysio, is the PoC listed on censys.com/advisory/cve-2… legitimate? :)

@nostarch Same goes coffee stained teeth. ಡ_ಡ

Coffee stains on your keyboard are just battle scars.

💥 ANNOUNCEMENT: Opik v1.2 is released! 💥 Opik is an open source LLM evaluation framework for: 🔥 Implementing LLM-based metrics 🪲 Logging/debugging LLM traces 💯 Scoring, annotating, and versioning LLM data And so much more. Check out the repo below.

Today we are releasing our FREE educational course: "Intro to Exploit Dev"! This course is perfect for those trying to start exploit dev and covers: - Tooling - Fuzzing - Exploitation techniques - And more! You can take the course here: bible.malcore.io/readme/the-beg…

🎯 Introducing AD-ThreatHunting: ⚡ Supercharge Your AD Threat Hunting! 🛡️ Just Released: A comprehensive Active Directory PowerShell threat hunting tool that makes detecting suspicious activities easier than ever! ✨ Key Features: • Real-time attack detection • Advanced timing analysis • Pattern recognition • Multi-format reporting (CSV/JSON/HTML) • Built-in attack simulation 🔍 Detects: • Password spray attacks • Brute force attempts • Account lockouts • Off-hours activity • Geographically impossible logins • Service account misuse • Admin account abuse ⚡ Smart Analysis: • Time-based attack correlation • Activity pattern matching • User behavior analysis • Configurable business hours • Customizable thresholds 🧪 Includes Test Framework: • Simulate various attack scenarios • Validate detection capabilities • Test environment readiness • Verify audit policies 🚀 Get started: github.com/MHaggis/PowerS… Made with ❤️ by defenders for defenders Hunt smarter, hunt harder #ActiveDirectory #InfoSec #BlueTeam #ThreatHunting #CyberSecurity

Fake exploits for the BeyondTrust Remote Support CVE are surfacing - github.com/cloudefence/CV…

hfiref0x has rewritten the formerly industry-wide and old-school tool Dependency Walker, making it capable of running on Win11 and enhancing it with other useful features. It is designed to build a tree diagram of all an executable's dependent modules. github.com/hfiref0x/WinDe…

Do you know the Azure IP Ranges site by @derdanu ? It's a great tool to filter IP ranges by service and even download them in different formats. azureipranges.azurewebsites.net

M'm glad to release the tool I have been working hard on the last month: #KrbRelayEx A Kerberos relay & forwarder for MiTM attacks! >Relays Kerberos AP-REQ tickets >Manages multiple SMB consoles >Works on Win& Linux with .NET 8.0 >... GitHub: github.com/decoder-it/Krb…

Excited to share a tool I've been working on - ShadowHound. ShadowHound is a PowerShell alternative to SharpHound for Active Directory enumeration, using native PowerShell or ADModule (ADWS). As a bonus I also talk about some MDI detections and how to avoid them

As promised, I just dropped a dozen new sandbox escape vulnerabilities at #POC2024 If you missed the talk, here is the blog post: jhftss.github.io/A-New-Era-of-m… Slides: github.com/jhftss/jhftss.… Enjoy and find your own bugs 😎

A Happy Halloween from the MITRE ATT&CK team with a special treat: ATT&CK v16.0, including new spooky behaviors and ghoulish groups, as well as revisions and contributions, to satisfy your every #infosec need! Check out @supremrobertson’s release blog at medium.com/mitre-attack/a…

Introducing DOMHash. DOMHash is a completely self sustainable fuzzy hashing algorithm to compare DOM content from websites. It provides a similarity score in order to determine how similar two sites are to one another and is completely FREE and opensource. Thread👇

@xillwillx @DarkCoderSc Beautiful! Thank you! Did not know that you had these.

@pentestit @DarkCoderSc github.com/xillwillx/Old_… github.com/xillwillx/Reve… github.com/xillwillx/Mini… github.com/xillwillx/SMB_… github.com/xillwillx/Robi… github.com/xillwillx/Mini… is some stuff I salvaged , the rest the FBI took :D

Remember, for the "veterans" among us, when we used to call those piece of arts "Trojans" (even though it wasn’t always accurate)? With the support and blessing of MegaRat (creator of Mega Security, now back online), I've launched malwaregallery.com/archive , a full reconstruction of Mega Security but in more modern and user-friendly. Dive back into the past and relive that artistic vibe many of us still miss! (If you prefer, you can still browse the original version of Mega Security, which remains preserved in its vintage form the good old days) #malware #infosec #virus #trojan

@xillwillx @DarkCoderSc Any chance of releasing the code to this stuff or did you have to give it all up?

@pentestit @DarkCoderSc ya fsg was probably the best results on MASM stuff