impulsive

592 posts

impulsive banner
impulsive

impulsive

@weezerOSINT

Mythos user

Katılım Kasım 2021
229 Takip Edilen9.7K Takipçiler
Sabitlenmiş Tweet
impulsive
impulsive@weezerOSINT·
Lovable has a mass data breach affecting every project created before november 2025. I made a lovable account today and was able to access another users source code, database credentials, AI chat histories, and customer data are all readable by any free account. nvidia, microsoft, uber, and spotify employees all have accounts. the bug was reported 48 days ago. its not fixed. They marked it as duplicate and left it open.
impulsive tweet mediaimpulsive tweet mediaimpulsive tweet media
English
268
720
5.7K
1.4M
impulsive
impulsive@weezerOSINT·
4 serious assassination attempts on Trump in under 2 years, more than any president in modern history.
English
2
0
8
890
impulsive
impulsive@weezerOSINT·
Github got hacked, the US President is mass leaking PII on trump mobile orders, teens are streaming mass events on Discord and some horror game on Steam is spreading malware. too much going on.
GIF
GitHub@github

1/ We are sharing additional details regarding our investigation into unauthorized access to GitHub's internal repositories. Yesterday we detected and contained a compromise of an employee device involving a poisoned VS Code extension. We removed the malicious extension version, isolated the endpoint, and began incident response immediately.

English
6
21
132
10.4K
impulsive
impulsive@weezerOSINT·
@AidanOsint @Sven_Viking i think its just cheat nerds just misreading the post, the regular audience understands this post is bashing poor windows architecture.
English
1
0
2
139
Aidan Raney
Aidan Raney@AidanOsint·
The fact that everyone is calling you stupid for pointing out a major fundamental security flaw that everyone has for some reason accepted as "okay" or "normal" is so stupid. Windows has had, for its entire existence, a disgustingly terrible security architecture. No compartmentalization, no defense in depth. Privilege escalation is treated like a non-issue for some insane reason. Feels like we are screaming to the choir, but no one is listening or has just given up and resigned to apathy. NO, we should SOLVE these things, not accept them as fact. Data should be compartmentalized and secured in enclave-like environments; infostealers shouldn't even be a thing. Poor security architecture allows them to exist.
English
1
0
3
124
impulsive
impulsive@weezerOSINT·
the same technique giving cheaters wallhacks in Valorant is the same one being used in malware to pwn you. Still working no patch, undetected from AV's and AC's. I pulled the source from a cheating forum, built it, and ran it on my fully patched Windows 11 machine. it reads memory straight out of another running program without needing admin, without loading a driver, without calling any API that your EDR monitors. it just uses two normal Windows functions that have existed since the 90s, SetWindowsHookEx and SendMessage. I reversed the root cause in Ghidra. two functions that ship in every copy of Windows ntdll.dll and shell32.dll will blindly execute whatever function pointer you hand them through a window message. Microsoft's own exploit protection CFG signs off on it because they're legitimate functions. no CVE. no patch. 279 stars on GitHub. Microsoft won't fix it because they consider same-privilege process interaction "by design." Chinese researchers found the same technique in live malware back in 2023.
impulsive tweet mediaimpulsive tweet media
English
40
148
1.7K
157.2K
impulsive
impulsive@weezerOSINT·
@sinfulrawr The post does not claim this is a new exploit nor is it dedicated to game cheats, it is more to shine light on windows broken architecture and how it is used in malware currently.
English
1
0
3
772
sin
sin@sinfulrawr·
@weezerOSINT This has been detected like a year after it came out. This is not something new.
English
1
0
0
810
vxdb
vxdb@vxdb·
Tump Mobile is currently leaking customer information, including full names, shipping addresses, emails, and more A security researcher contacted @coffeebreak_YT to make him aware of the vulnerability. The researcher has contacted the Trump Mobile team about a responsible disclosure, but hasn't heard back yet
vxdb tweet mediavxdb tweet media
English
42
208
1.3K
88.4K
UmbraAtrox
UmbraAtrox@UmbraAtrox_·
@weezerOSINT lel, you stalk my profile? Don't be upset bro. It's just twitter.
English
1
0
1
122
UmbraAtrox
UmbraAtrox@UmbraAtrox_·
@weezerOSINT "Detected on javelin/eac" = "undetected from AC's" "vaguard staff knows" = "giving cheaters wallhacks in Valorant" Today i learned.
UmbraAtrox tweet media
English
2
0
1
197
impulsive
impulsive@weezerOSINT·
@UmbraAtrox_ Nowhere in the tweet i claim this is a new exploit furthermore this post is talking about this method being used in malware not aimed at game cheats. This post shines light on broken windows architecture. x.com/MySanityWasted…
Waryas@MySanityWasted

@RektByHielke @weezerOSINT The only fix is to hook SetWindowsHookEx syscall (forgot the name) on the kernel. Or just blacklist known gadgets on KiUserCallback in ntdll.dll, but there are so many viable gadgets, you literally have RIP/RDX/R8 control full control and cfg valid functions are plenty.

English
1
0
1
1.5K
impulsive
impulsive@weezerOSINT·
@nkkomata this post isnt about making cheats its about malware? read the post also this exploit variant only dropped 6 months ago detected is arguable.
GIF
English
1
0
14
393
fatih
fatih@nkkomata·
congrats retard u just made a detectable external cheat, fucking larp
impulsive@weezerOSINT

the same technique giving cheaters wallhacks in Valorant is the same one being used in malware to pwn you. Still working no patch, undetected from AV's and AC's. I pulled the source from a cheating forum, built it, and ran it on my fully patched Windows 11 machine. it reads memory straight out of another running program without needing admin, without loading a driver, without calling any API that your EDR monitors. it just uses two normal Windows functions that have existed since the 90s, SetWindowsHookEx and SendMessage. I reversed the root cause in Ghidra. two functions that ship in every copy of Windows ntdll.dll and shell32.dll will blindly execute whatever function pointer you hand them through a window message. Microsoft's own exploit protection CFG signs off on it because they're legitimate functions. no CVE. no patch. 279 stars on GitHub. Microsoft won't fix it because they consider same-privilege process interaction "by design." Chinese researchers found the same technique in live malware back in 2023.

English
1
0
2
417
impulsive
impulsive@weezerOSINT·
@lookAroundallth this variant was dropped 6 months ago, i built this OS via UUP dump a few months ago. Furthermore one of my last posts was on a 6 year old CVE still not being patched and abused on current windows
English
0
0
7
2.5K
,,,
,,,@lookAroundallth·
@weezerOSINT wow man youre saving the world by notifying us of a 3 year old malware program
English
2
0
2
2.6K
impulsive
impulsive@weezerOSINT·
@Sven_Viking yeah same privilege level. thats exactly why this is scary
English
2
0
18
2.9K
Johan Johansson
Johan Johansson@TheRealTroff·
@weezerOSINT And they went to substantial lengths to fix it, because as you say, it violated privilege (and user IIRC) separation. What is it that you want fixed here? I personally think windows hooks are a bad idea, but it would break a lot of toys people like.
English
1
0
5
888
impulsive
impulsive@weezerOSINT·
@RektByHielke that would be the classic DLL injection variant, this one's a different beast
English
1
0
6
5.2K
Hielke
Hielke@RektByHielke·
@weezerOSINT It was even blocked by the MoHAA anti-cheat, which is really old. It was called DMW if i recall correctly
English
1
0
3
5.8K
impulsive
impulsive@weezerOSINT·
og shatter attack was privilege escelation, Microsoft killed that with UIPI in Vista. this one doesn't need elevation at all, just chains two functions already sitting in ntdll and shell32 and CFG lets it through. whole thing is on GitHub as a copy paste framework and Microsoft says its by design lol
English
1
0
21
6.1K
Johan Johansson
Johan Johansson@TheRealTroff·
@weezerOSINT Shatter attacks must be at least 20 years old. I’m not really sure what you think should be changed here? If you are relying on a security boundary that never existed, you’re just doing it wrong.
English
2
0
30
6.9K
impulsive
impulsive@weezerOSINT·
the origin story here is wild. this was built by a cheat dev who sold it privately for $$$. a customer leaked it on UnknownCheats and the author rage dumped the full source on GitHub out of spite chinese researchers caught this in live malware samples in 2023.
English
2
1
113
11.7K
impulsive
impulsive@weezerOSINT·
github.com/waryas/WaryasS… been floating around cheat forums for years. Chinese security researchers found the same technique deployed in live malware in 2023. full source code published on GitHub November 2025. I'm running it May 2026 on a fully updated machine. still works. no CVE assigned. zero response from Microsoft.
impulsive tweet media
English
1
8
116
14.4K

Keşfet

@Shellcod3 @AidanOsint @Sven_Viking @sinfulrawr @vxdb @coffeebreak_YT @UmbraAtrox_ @nkkomata