Jakob

Another day, another async BOF. With KeeLog, you can monitor KeePass instances and capture the master password as soon as its entered. github.com/jakobfriedl/ke…

Gone are the days of risking a Rubeus monitor run (even via the amazing BOF[.]NET by @_EthicalChaos_ ) in your conquest beacon. @virtualloc is crushing it! github.com/jakobfriedl/tg…

Been very interested in Async BOFs lately and implemented a few for use with Conquest. The first implements Rubeus monitor as a BOF and notifies when TGTs are collected. The second monitors for clipboard changes and returns them. github.com/jakobfriedl/tg… github.com/jakobfriedl/cl…

New Conquest Release! 👑 v0.2.0 features the following additions: - SMB Listeners & Agents - Powerful Python module system (examples: github.com/jakobfriedl/co…) - New payload types: .dll, .svc.exe - File and Process Browser - Multi-client support - ... github.com/jakobfriedl/co…

I decided to open-source Conquest, the C2 framework i have been working on for the last couple months. It is fully written in Nim and has several features built-in, including: - GUI client - Custom communication protocol - Malleable C2 profiles - … github.com/jakobfriedl/co…

@BSidesVienna Would you be able to provide a rough estimation on when the first wave of tickets will be available?

Continuing to thank our sponsors who make the event free and awesome. This time we would like to thank the Austrian Institue of Technology, who, when they aren't doing all kinds of awesome research are sponsoring this event. Check them out at: ait.ac.at

I've implemented a new project, which performs NTDLL unhooking from a suspended process by using indirect syscalls with the HellsHall technique. #maldev github.com/jakobfriedl/In…

After completing the beginner and intermediary modules on Maldev Academy, I created my first evasive shellcode loader. It executes a payload using mapping injection via direct syscalls with Hell's Gate and includes several anti-analysis features. github.com/jakobfriedl/Be… #maldev