おすすめツイート
If your agent gets flooded - detect the flooding. If code gets obfuscated - detect the obfuscation. If ETW gets silenced - detect the silence. If the EDR gets killed - detect the killing. If logs get cleared - detect the clearing. The act of hiding is often more suspicious than…
Places on Earth that don't look real - thread 🧵 1. Basilica Cistern, Istanbul
🚨 Top 5 Remote Access Tools Exploited by Threat Actors in the First Half of 2025. ⚠️ While legitimate and widely used by IT teams, Remote Monitoring and Management tools are increasingly used by threat actors to establish persistence, bypass defenses, and exfiltrate data.…
Jim Rohn explains the Secret to making more Money.‼️‼️
⏰ Scott Redler’s #630club - LIVE Stock Market Analysis $NVDA $TSLA $AMZN $SPY ➡️ FREE NEWSLETTER: t3live.com/show x.com/i/broadcasts/1…
With Gemini Live on Google #Pixel9, there’s a whole new way to talk with your phone: goo.gle/3Q8mbDu #TeamPixel
This might be one of the best reddit posts I've seen in a while no cap fr fr
Kobe is a 5x NBA Champion. He also holds the all-time record for missed shots. Babe Ruth is a 7x World Series Champion. He also led the MLB in strikeouts for 5 seasons. Tom Brady is a 7x Superbowl Champion. He also holds the record for most passes intercepted in Superbowl…
Binding to port 445 on Windows without WinDivert. This is highly useful for NTLM relaying. Big thanks to @zyn3rgy for the talk.
CrowdStrike is offering its partners a $10 Uber Eats gift card as an apology. When TechCrunch checked the voucher, the Uber Eats page provided an error message that said the gift card “has been canceled by the issuing party and is no longer valid.” : techcrunch.com/2024/07/24/cro…
Lots of interest in LLMs in reverse engineering, but most integrations have been superficial. Want to see how we are pushing the state of the art? See our latest blog post on an upcoming Sidekick feature: binary.ninja/2024/06/28/sid…
If you want to become a world-class programmer, read these 8 books:
ASN enumeration is an important yet frequently overlooked recon method. Finding the ASN can reveal the target's network ranges. Tools include: - asnlookup.com - bgp.he.net - @Yassineaboukir's Asnlookup And more! What tools do you like to use?
Nothing new to be fair. Have seen attackers using Live Response of MDE as well to execute commands, etc.
Abuse of Crowdstrike response shell access for C2. Don't forget that attackers can sometimes use EDRs and other security tools to go from compromising cloud accounts to compromising on-prem machines and user devices.
Moloch, a concept of a self-destructive race to gain rewards, poses a grave threat to humanity. This notion, stemming from an ancient god associated with sacrifice, embodies a race to the bottom with destructive consequences. danielmiessler.com/p/moloch-the-m…
Thanks for sharing. Basically rewrote a large part of my private agent to adapt this and it works wonderful. No more memory toggling. Every function now takes a KnSelf as a first param which is the instance passed. For function like beacon api can use a macro that gets it.
After reading @C5pider's blog I got an idea how to implement global shellcode context without NtProtectVirtualMemory: Add magic header to context struct, place context on stack, append its address to peb.ProcessHeaps and retrieve it from there when needed. No syscalls required.
United States トレンド
- 1. Chiefs 104K posts
- 2. Branch 30.8K posts
- 3. Mahomes 31.5K posts
- 4. #TNABoundForGlory 51.7K posts
- 5. #LoveCabin N/A
- 6. LaPorta 10.2K posts
- 7. Goff 13.5K posts
- 8. Bryce Miller 4,292 posts
- 9. #LaGranjaVIP 51.8K posts
- 10. Kelce 16K posts
- 11. #OnePride 6,316 posts
- 12. Dan Campbell 3,536 posts
- 13. Butker 8,392 posts
- 14. #DETvsKC 4,863 posts
- 15. Rod Wave N/A
- 16. Mariners 48.9K posts
- 17. Gibbs 5,517 posts
- 18. Pacheco 4,936 posts
- 19. Baker 54.4K posts
- 20. Collinsworth 2,962 posts
Something went wrong.
Something went wrong.