SearcheeBot

Telegram-каналлар оламидаги сизнинг йўлбошчингиз.

TGStat Bot

Telegram'дан чиқмай туриб каналлар статистикасини олиш

Telegram Analytics

TGStat хизмати янгиликларидан бохабар бўлиш учун обуна бўл!

TGAlertsBot

Каналингиз репостлари ва эсловлари ҳақида хабар беради.

Statistika Saralanganlar

Offensive Twitter

@OffensiveTwitter

Kanal geosi va tili: Hindiston, Inglizcha

Toifa: Kriptovalyutalar

~$ socat TWITTER-LISTEN:443,fork,reuseaddr TELEGRAM:1.3.3.7:31337
Disclaimer: https://t.me/OffensiveTwitter/546

Связанные каналы | Похожие каналы

Kanal geosi va tili

Hindiston, Inglizcha

Toifa

Kriptovalyutalar

Statistika

Postlar filtri

O‘chirilganlarni yashirish

Repostlarni yashirish

Offensive Twitter

28 Sep, 11:57

😈 [ trickster0 @trickster012 ]

I just released my C2 I was working on, on my free time. Feel free to play around make your own forks if you like it. It needs a lot of work but it is a fully rust one with small implant and working sleep obfuscation.

🔗 https://github.com/trickster0/NamelessC2

🐥 [ tweet ]

941 0 17 4

Offensive Twitter

27 Sep, 20:28

👹 [ sn🥶vvcr💥sh @snovvcrash ]

Got curious how the new App-Bound Chromium Encryption can be bypassed, so here’s a minimal PoC for decrypting the Local State key as a non-elevated user via an RPC call to the elevator service (path validation must still be taken into account though):

🔗 https://gist.github.com/snovvcrash/caded55a318bbefcb6cc9ee30e82f824

🐥 [ tweet ]

1.5k 0 30 4 16

Offensive Twitter

27 Sep, 13:58

😈 [ Mandiant (part of Google Cloud) @Mandiant ]

🚨 Mandiant observed #LummaC2 stealers leveraging a new obfuscation technique to thwart analysis tools and stifle reverse engineering efforts.

Read about this tactic, and how we developed an automated method for removing this protection layer →

🔗 https://bit.ly/47IImbK

🐥 [ tweet ]

1.7k 0 24 1 7

Offensive Twitter

26 Sep, 14:35

00:03

Video oldindan ko‘rish uchun mavjud emas

Telegram'da ko‘rish

UnderConf. От сообщества – для сообщества

Keynote-спикеры и докладчики крупных конференций, авторы ваших любимых телеграм-каналов про ИБ, ведущие самых известных воркшопов и легенды индустрии в одном месте – на UnderConf, 29.09.

@crytech7, Сергей Голованов a.k.a. @sk1ks, @n0nvme и другие представят свои последние разработки и исследования, а Сергей Норд, локпикеры Autopsy Will Tell и хардварщики “Танец Роботов” параллельно проведут для вас топовые воркшопы.

На конференции также будет развернута лаборатория Pentest Lab, где можно будет разобраться в сценариях различных атак на части сетевой инфраструктуры компании.

В середине дня пройдут дебаты между Алексеем Гришиным и @i_bo0om о том, как расходятся интересы специалистов и бизнеса.

Подробная программа уже доступна на сайте.

Канал | Чат

Не рекламы ради, а просто поделиться, куда я решил заглянуть в честь начала отпуска

2k 0 15 1 5

Offensive Twitter

26 Sep, 13:59

😈 [ Fox-IT @foxit ]

Check out our latest blog from our Red Team about EDR evasion through malware virtualisation:

🔗 https://blog.fox-it.com/2024/09/25/red-teaming-in-the-age-of-edr-evasion-of-endpoint-detection-through-malware-virtualisation/

🐥 [ tweet ]

1.9k 0 46 2

Offensive Twitter

25 Sep, 19:51

😈 [ Check Point Research @_CPResearch_ ]

10 years of DLL hijacking - featuring abused executables that shouldn't have existed, exported and malicious DLLs with discount bin "packing." Includes a PoC for app developers to pre-emptively stop hijacking without dealing with a certificate authority.

🔗 https://research.checkpoint.com/2024/10-years-of-dll-hijacking-and-what-we-can-do-to-prevent-10-more/

🐥 [ tweet ]

3.1k 0 58 5

Offensive Twitter

24 Sep, 18:23

😈 [ Will @BushidoToken ]

I am happy to share another new resource I recently made called The Russian APT Tool Matrix 🇷🇺

🔗 https://blog.bushidotoken.net/2024/09/the-russian-apt-tool-matrix.html
🔗 https://github.com/BushidoUK/Russian-APT-Tool-Matrix

🐥 [ tweet ]

ищем себя, пацаны

2.4k 0 69 1 20

Offensive Twitter

24 Sep, 14:54

😈 [ DSAS by INJECT @DevSecAS ]

Recursive Loader

Explanation of code: The following code is inspired by APT Linux/Kobalos. Kobalos was malware, suspected to be tied to the Chinese government, which was fully recursive. It was novel malware.

🔗 https://github.com/Evi1Grey5/Recursive-Loader

🐥 [ tweet ]

2.4k 0 35 9

Offensive Twitter

22 Sep, 16:35

😈 [ Remko Weijnen @RemkoWeijnen ]

Proof of Concept to leverage Windows App to create an LSASS dump

🔗 https://github.com/rweijnen/createdump

🐥 [ tweet ]

3k 0 51 9

Offensive Twitter

22 Sep, 10:21

😈 [ Orange Cyberdefense Switzerland @orangecyberch ]

💻🛡️ In this series of blog posts, Clément Labro (itm4n) one of our ethical hacker, explores yet another avenue for bypassing LSA Protection in Userland.

Blog series:
🔗 https://itm4n.github.io/ghost-in-the-ppl-part-1/
🔗 https://itm4n.github.io/ghost-in-the-ppl-part-2/
🔗 https://itm4n.github.io/ghost-in-the-ppl-part-3/

Code:
🔗 https://github.com/itm4n/PPLrevenant
🔗 https://github.com/itm4n/Pentest-Windows/tree/main/NdrServerCallAll

🐥 [ tweet ]

3.4k 0 74 10

Offensive Twitter

21 Sep, 11:19

😈 [ konrad @konradgajdus ]

From Theory to Code: Implementing a Neural Network in 200 Lines of C

🔗 http://x.com/i/article/1837064930832404482

🐥 [ tweet ]

3k 0 23 3

Offensive Twitter

20 Sep, 01:56

😈 [ Justin Elze @HackingLZ ]

Pwning C2 frameworks

🔗 https://blog.includesecurity.com/2024/09/vulnerabilities-in-open-source-c2-frameworks/

🐥 [ tweet ]

3.5k 0 39 7

Offensive Twitter

19 Sep, 00:38

😈 [ Nikhil Hegde @ka1do9 ]

In this one, I go into great detail about how malware walks the Process Environment Block (PEB) to find particular DLLs and parses their export table to find address of functions.

🔗 https://nikhilh-20.github.io/blog/peb_phobos_ransomware/

🐥 [ tweet ]

3.8k 0 30 11

Offensive Twitter

17 Sep, 17:12

😈 [ Koen Van Impe ☕ @cudeso ]

Interesting approach shared by @Wietze on manipulating argv[0] to mislead security tools and analysts. A clever tactic for obfuscation!

🔗 https://www.wietzebeukema.nl/blog/why-bother-with-argv0

🐥 [ tweet ]

3.3k 0 54 13

Offensive Twitter

16 Sep, 17:14

😈 [ Aleem Ladha @LadhaAleem ]

I've fully automated the lab used for @_leHACK_ Active Directory 2024 workshop done by @mpgn_x64 and it's available for everyone ! 🔥
Also big kudos to @M4yFly for the playbooks and NetExec dev teams for this awesome tool !
Hope you enjoy, more to come

🔗 https://github.com/Pennyw0rth/NetExec-Lab

🐥 [ tweet ]

6.8k 1 109 1 18

Offensive Twitter

15 Sep, 20:15

😈 [ Usman Sikander @UsmanSikander13 ]

Basics to advanced process injection. Covering 25 techniques:

🔗 https://github.com/Offensive-Panda/ProcessInjectionTechniques

🐥 [ tweet ]

3.5k 0 81 1 11

Offensive Twitter

15 Sep, 15:47

😈 [ Kurosh Dabbagh @_Kudaes_ ]

Somebody asked if you can run a dll directly without rundll32 as you would do with an exe. You just need to remove the IMAGE_FILE_DLL flag from IMAGE_FILE_HEADER->Characteristics, which can be done with the option -e. Don't see much use for it tho ^^

🔗 https://github.com/Kudaes/CustomEntryPoint

🐥 [ tweet ]

4.9k 0 67 17

Offensive Twitter

14 Sep, 16:39

00:24

Video oldindan ko‘rish uchun mavjud emas

Telegram'da ko‘rish

😈 [ John Hammond @_JohnHammond ]

Well, this was a stupid insomnia project, but... 😂

Playground code is here:

🔗 https://github.com/JohnHammond/recaptcha-phish

🐥 [ tweet ][ quote ]

завирусилось, прикольно

4k 1 72 2 18

Offensive Twitter

14 Sep, 11:17

😈 [ Het Mehta @hetmehtaa ]

Reversing a VPN client to hijack sessions

🔗 https://rotarydrone.medium.com/decrypting-and-replaying-vpn-cookies-4a1d8fc7773e

🐥 [ tweet ]

3.7k 0 50 8

Offensive Twitter

14 Sep, 00:47

😈 [ Sam ☁️🪵 @Sam0x90 ]

Interesting ZIP trick with __Macosx__ folder and LNK executing ftp script to execute embedded pythonw.exe

zip > docx LNK > ftp.exe > disguised pythonw.exe > CS shellcode

#CTI #DetectionEngineering

🔗 https://www.ctfiot.com/203334.html

🐥 [ tweet ]

3.8k 0 58 10

20 ta oxirgi post ko‘rsatilgan.

16 755

obunachilar

Kanal statistikasi

Kanalda mashhur

😈 [ Cas van Cooten @chvancooten ] I just published the pre-recorded video version of my Nimplant...

😈 [ Aleem Ladha @LadhaAleem ] I've fully automated the lab used for @_leHACK_ Active Directory 2...

😈 [ Jiří Vinopal @vinopaljiri ] Inspired by @0gtweet, I created PoC: EXE-or-DLL-or-ShellCode tha...

😈 [ Praetorian @praetorianlabs ] 🔥 Bypassing fully patched endpoint detection with Goffloader W...

😈 [ Kurosh Dabbagh @_Kudaes_ ] Somebody asked if you can run a dll directly without rundll32 as ...