checkymander

@checkymander

You are not you | You are now us | We are the only ones that you can trust.

Vrijeme pridruživanja: ožujak 2017.

Tweetovi

Blokirali ste korisnika/cu @checkymander

Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @checkymander

  1. proslijedio/la je Tweet

    “nurture”, the second porter robinson album coming 2020 i put my entire heart into this. the first song is coming out tomorrow

    Prikaži ovu nit
    Poništi
  2. proslijedio/la je Tweet
    27. sij

    Move Faster, Stay Longer blog about extending CS and tools to go with it.

    Poništi
  3. proslijedio/la je Tweet
    21. sij

    Added 2 more PoC scripts to the OffensiveDLR repo. One of which embeds the SSharp Compiler within a Posh script (Can be easily embedded from within any .NET language.) SSharp code compilation does not call csc.exe :)

    Poništi
  4. 20. sij
    Poništi
  5. proslijedio/la je Tweet
    17. sij

    I spent some time learning about blockdlls and parent process spoofing from and . Using a recent sample from SubTee, I modified it to spoof the parent process and inject x64 shellcode from a dll on UNC into hidden iexplore.exe.

    Poništi
  6. proslijedio/la je Tweet
    12. sij

    Here's the Gist to do both BlockDLLs and PPID Spoof: Both ALWAYS_ON & ALLOW_STORE seem to work. On my machine, MSEdge runs with ALLOW_STORE, so maybe better for blending in?

    Poništi
  7. 10. sij
    Poništi
  8. proslijedio/la je Tweet
    8. sij

    Atsuko Nishida -- the creator of many iconic Pokemon including Pikachu and Bulbasaur -- is notoriously camera shy. Very few photos exist, and she goes to great lengths to keep it that way. For example, in 2018 she spent an entire interview hiding behind this giant Pikachu doll.

    Poništi
  9. proslijedio/la je Tweet
    2. sij

    New year, new post! "Using InterPlanetary File System for Offensive Operations". I hope you enjoy it and have fun with IPFS. Lots more to do with this.

    Poništi
  10. proslijedio/la je Tweet
    29. pro 2019.

    [Blog] Wrote a basic guide on how to add Tasks in Covenant.

    Poništi
  11. proslijedio/la je Tweet
    27. pro 2019.

    SharpSploit v1.5 is out! Includes amazing work from , , , , and . Includes: lateral movement over SCM and PSRemoting, an AMSI bypass, CreateProcessWithToken, and DynamicInvoke improvements. 🔥🔥🔥

    Poništi
  12. proslijedio/la je Tweet
    25. pro 2019.

    Merry Gritmas ya filthy animals.

    Poništi
  13. proslijedio/la je Tweet
    23. pro 2019.

    Friends, We've added a new paper: 'Common Language Runtime Hook for Persistence' by It is a thoroughly written paper for both 'stage 0 malware' and .NET internals.

    Poništi
  14. proslijedio/la je Tweet
    21. pro 2019.

    Looking forward to going to with next year to present "Enabling All-In-Memory Operations"! 😀 We'll present our take on a methodology for designing tools and TTPs that enable operations from memory.

    Prikaži ovu nit
    Poništi
  15. 10. pro 2019.

    "Me and you, Clef, we're gonna make some cash. Grab this silver paint and just paint my ass"

    Poništi
  16. proslijedio/la je Tweet
    8. pro 2019.

    you can UAC bypass all executable files which are autoelevate true base on my first article. UAC Bypass All the things POCs: sample: Bluetooth uninstall device task (UAC Bypass to administrator)

    Poništi
  17. proslijedio/la je Tweet
    2. pro 2019.

    Messing around with some P2P C2 over IPFS (InterPlanetary File System).

    Poništi
  18. proslijedio/la je Tweet
    30. stu 2019.

    Here is a recent writeup that I did. It's not as indepth as I want. I'll write a definitive guide for hunting these bugs starting with 0 knowledge when I'm home in a few weeks. I'll also upload all my pocs to github, including recent bugs. I'm pissed. Bye

    Poništi
  19. proslijedio/la je Tweet
    28. stu 2019.
    Prikaži ovu nit
    Poništi
  20. proslijedio/la je Tweet
    21. stu 2019.

    Potential forensics source: log of .NET processes that have executed on a box, with what Assemblies they loaded from disk.

    Prikaži ovu nit
    Poništi

Čini se da učitavanje traje već neko vrijeme.

Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.

    Možda bi vam se svidjelo i ovo:

    ·