Profile_bird

Hey there! hdmoore is using Twitter.

Twitter is a free service that lets you keep in touch with people through the exchange of quick, frequent answers to one simple question: What are you doing? Join today to start receiving hdmoore's tweets.

Already using Twitter
from your phone? Click here.

hdmoore

  1. ooh! remote kernel code execution via internet explorer / EOT fonts: advisory: http://bit.ly/1bV2R2 (EOT Info: http://bit.ly/H5Vdd)
  2. ooh! remote kernel code execution via internet explorer / EOT fonts: advisory:http://bit.ly/1bV2R2 (EOT Info: http://bit.ly/H5Vdd)
  3. @marcusjcarey :)
  4. @gleeda there still is no guarantee that the system libs themselves are not corrupted, but COFEE doesnt solve that problem either
  5. @gleeda true, but many of those commands can be reimplemented as Metepreter native API calls, which run in memory.
  6. @andrerobitaille only once all of the bugs introduced by it are fixed :P but yes, it rocks :)
  7. @QuestOnSecurity its the library without the books :) if someone started publishing public modules/overlays, it could take off
  8. RT @EdiStrosar Speaking about 'spilled COFEE': Metasploit winenum script does it better: http://bit.ly/1HScWi (Feds should use Metasploit)
  9. RT @carnal0wnage metasploit msfconsole gets color! http://bit.ly/4w3Hxr & http://bit.ly/45MbSz
  10. @yun4n it was working, but it didnt show the prompt :P
  11. @andrerobitaille funny part is we only started tracking this stuff halfway through the year, we still have to dig the other changes out
  12. @justinelze is there a native ruby install for the android? jruby isn't supported until they fix a bunch of bugs
  13. Metasploit Framework 3.3 Release Candidate 1 published for community feedback: http://bit.ly/3NCk0G (new shiny!)
  14. @hmjgriffon it already is sorta, but you can jump the gun with: http://bit.ly/pwEOB
  15. an early look at metasploit 3.3 RC1, official announcements and updated installers/documentation still to come: http://bit.ly/3NCk0G
  16. A big welcome to Joshua Drake, who is joining the Rapid7/Metasploit team this week: http://blog.metasploit.com/
  17. @_natron_ once we fix the ole code in msf, ill just add an example - basically create lots of entries at the same level as the worddocument
  18. @jedatu its still the biggest ruby project out there in terms of lines of code (2 x puppet)
  19. @t0sspint happy to help once you get it :)
  20. watching @marcusjcarey and Matt W. on http://www.ustream.tv/dojosec