ziggooner

mfw security

@techspence just wanted to make sure i wasn’t overlooking anything :)

@0xzig thats why i'm asking

Any red teamers out there using AI platforms for initial access with any level of success? I’m talking like some kind of prompt injection to code execution on a host

@curi0usJack @techspence !!!

@techspence If by "platforms" you mean big players like Anthropic/ChatGPT, then no as clients don't want their data shared.

@0xTib3rius @hetmehtaa we live in a society. human >

@hetmehtaa Structure and confidence that the course isn’t full of hallucinations, plus the personal experience of the person teaching the course?

You paid $500 for that cybersecurity bootcamp/course. Claude teaches you the same concepts better, faster, and answers your specific questions. The bootcamp's moat was 'we gatekeep knowledge.' AI broke the gate. Why would anyone pay for courses anymore?

@LorenzoMeacci banger blog post

Built an evasive CS RL with Crystal Palace that bypasses Elastic EDR. The evasion lives inside the blob. Not in how it got there. Blog: lorenzomeacci.com/bypassing-edr-… Source: github.com/kapla0011/Kapl…

@HackingDave hacker dads 🤞💕

Cell reception is always bad at the volleyball tournaments and the coach couldn’t stream live videos to family that couldn’t make it. Built this thing - wireless AP to cellular built amplifiers inside the battery casing with Omni directional antennas and our own private WiFi. We cookin and streaming now 😂

@sekurlsa_pw @techspence just open browser and go to hax.lol

@techspence Don’t send “funny” emails. Ignore it or lock your coworker’s computer. Maybe I’m a grumpy fuck but don’t touch my computer if I accidentally leave it unlocked. Seriously.

Yes, you should lock your computer when you get up and walk away while at the office. No, you're not gonna get hacked in the 3 minutes that you're gone from your desk getting some water. YMMV

Dunno about you but I always run @SpecterOps certify from non-domain-joined systems. It freaked me out that SID resolution would not work. That is because LSA is used, which won't work in runas sessions. Now it does SID resolution via LDAP queries: github.com/GhostPack/Cert…

Today I pushed a majorly overdue feature to #x64dbg Automate and its MCP, remote debugging! Analysis targets can be isolated while driving x64dbg over the network. Full functionality is available over the wire. Also, Linux client support 🐧🎉

@vokaysh @HackingLZ @moyix can confirm

@HackingLZ @moyix and medium effort

MAJOR CORRECTION: I accidentally had this set to Sonnet 4.6 (had to reinstall laptop recently and hadn't recreated the config!). So this should NOT be taken as an indication of frontier capability for Claude/Opus.

🤢🤢🤢 KALI SLOP LINCOX

@_RastaMouse @C5pider i drove nixos for a few months and agree with this wholly

@C5pider I dabbled with Nix but I prefer just the package manager over the whole OS.

The only thing that hasn’t worked well so far is the fan control for my AIO cooler.

@HackingLZ @CraigHRowland we love a good footgun😭 apnews.com/article/mcdona…

@CraigHRowland Most of the teams I talk with have a story about some random alert on a domain controller and someone else flipping it to be isolated by their EDR.

Enterprises assume nothing takes autonomous action without a change ticket, a rollback plan, and three approvals. That collision is going to be very entertaining to watch from the security side.

🙏

@HackingLZ @ZackKorman u don’t want claude in the kernel?

@ZackKorman Never

Who launches an EDR first, Anthropic or OpenAI?

@McDonalds 👋

Add this to your threat risk assessment and smoke it

@simplylurking2 the | jq pipeline will live forever !

normalize pulling out large JSON blobs of enum data and feeding into claude code/codex to make a pretty interface to make sense of it all later against live targets. goodbye one of jq bash scripts, it's been real

sentence is too light

@C5pider @avx128 congrats!

Havoc Professional Finally Released! 🕸️🕷️ Since our last blog post introducing the Havoc Professional framework and the Kaine-Kit, we've been refining the framework behind the scenes while also welcoming @avx128 as a new member of our team. This blog post covers the numerous features included in the initial release of Havoc Professional. I'm excited to finally share the work my team and I have put in over the past year. This is just the beginning of what we have planned. infinitycurve.org/blog/release