Prepakis Georgios

@AndrewCDormsn @marinaiced DW I’ll get more, it’s a competition

@kernelstub @marinaiced Eh I already have my Microsoft, GitLab, AWS CVEs. I want a Nasa one next. That's the goal not even a bounty or LOR just a Nasa branded CVE :)

Windows LPE -> Priv Util via embeded psexec-> nt-authority\system Eden is a great project which I contributed to made by @marinaiced , using it I managed to escalate from base user permissions to system level.

@AndrewCDormsn Goodnight :P

@AndrewCDormsn That's whats up! I Also discovered like 6 LPEs with COM Hijacking, made it autoscan are CLSIDS and use the DLL on everything until it pops a nt-authority shell :P

@kernelstub I was just working on a LPE :3 Its gonna be so good MS is failing. Trying to make it into RCE :3

Defensive patch Tuesday semantic diff cli for Windows build snapshots for drivers, dlls, and more. Microsoft, don't kill me. Thank you. github.com/kernelstub/Cog…

@SanthProject Yeah then you're gonna lose it due to a lawsuit. but you can say My Seriously Roalcoaster Creation - MSRC

@kernelstub lowk someone could make a lot of money selling this

New merch dropped by MSRC

@SanthProject LMFAO

@kernelstub im not important enough to get phishing emails i guess 🥲

Can you guys stop sending me phishing emails on subdomains that don't even exist? do it properly.

Don't forget to join our matrix chat! We got a lot of nice people, people with knowledge, threat actors, and so on. Everyone is welcome!!! #cybercats-chat:matrix.org" target="_blank" rel="nofollow noopener">matrix.to/#/#cybercats-c…

@hegx86 Thank you thank, I am trying. I have to build everything out of necesity...

@kernelstub cool stuff : )

I made this Windows security research toolkit for LPE, persistence, COM hijacking, and attack surface enumeration. Leave a star and follow on GitHub so I can feed my 10 kids <3 github.com/kernelstub/Fer…

@ypsehlig Thank you! Let me know if you find any bugs or have any issues I could fix or anything that could be done better!

@kernelstub Will try! Starred so I can find it again

@Bewgsyy Thank you ^^

@kernelstub Best of luck with it, it does look interesting

Valid Burpsuite alternative github.com/skuntir/proxer

OKAY IT'S RELEASE, GO CHECK IT OUT! github.com/kernelstub/Cog…

I do not know if I should release this any time soon. Basically, it compares two Windows build snapshots to quickly spot security related changes between updates. It highlights meaningful differences and generates reports to make patch analysis and manual review easier

@Bewgsyy The ai slop is the docs, readme, and I plan to use AI for performance fix because I have absolutely no idea how to fix it nor does a friend of mine, kind of stuck tbh.

@kernelstub this is beautiful i hope its not AI slop though.

@encrypted_past So it checks for ACL missconfigs, but not more than that. You can add my discord, or join here #cybercats-chat:matrix.org" target="_blank" rel="nofollow noopener">matrix.to/#/#cybercats-c… and contact me on Matrix for more stuff that would be useful to add, but so far it has support for a lot of things.

@kernelstub I have to stop being lazy, would it make sense to check ACLs and any related system drivers against ms blocklist and loldrivers? I haven't looked so i don't know if you're already doing it.

@ajohnston97629 I know, but I mean project worthy.

@kernelstub If AI can build it and then use it to spot vulnerabilities you can safely assume 40 other people already have the vulnerabilities as well and so the information is essentially public. The bugfix commits to the Linux kernel are already being watched too.

@intelkink @xploitrsturtle2 Guys.... don't I have a say...

@intelkink @xploitrsturtle2 STAY AWAY.

@kernelstub @xploitrsturtle2 You should be :3

@intelkink @kernelstub wtf