Jonathan Renard

@icanhazshell

Red Team Operator; Penetration Tester; Lifetime n00b

Washington, DC
toshellandback.com
Joined August 2015
4 Photos and videos Photos and videos

Tweets

You blocked @icanhazshell

Are you sure you want to view these Tweets? Viewing Tweets won't unblock @icanhazshell

  1. Pinned Tweet
    Aug 16

    New blog post: Exploiting vulnerable 2.4 GHz wireless peripherals (aka mousejacking) to make it rain shells! Link:

    3 replies 103 retweets 118 likes
  2. Retweeted
    Sep 7

    Using Malleable C2 to exfil files via an HTTP header or URI? Nice! Be advised: no magic! Your throughput will suffer. It's a limited channel

    3 replies 16 retweets 38 likes
  3. Aug 30

    Truth...

    Replying to @jepayneMSFT
    Malware is shiny and interesting, but an internet facing non-MFA entrance point with minimal logging is just as useful to an attacker.
  4. Aug 28

    Having a trusted agent read on != purple teaming

  5. Jul 17

    I'll be hanging out at and in just a week or so! If you see me, feel free to say hello... I'll be the one with the beard

    1 reply 4 likes
  6. Jun 6

    New blog post in the works! Stay tuned...

  7. Retweeted
    May 31

    I’m still looking for a company that’s willing to host a class in the NoVA/DC area. Incentives are available.

    4 retweets 3 likes
  8. Jun 5

    DA is just the beginning, not the end goal. After DA, it's time to prove impact. You aren't trying to impress other hackers...

    5 likes
  9. Apr 10

    I don't always touch disk, but when I do, I make sure it's the standard Metasploit EXE template...

    1 retweet 4 likes
  10. Mar 28

    Not sure what the big fuss around the "Rubber Ducky" USBs is all about... they look pretty childish to me! :P

  11. Mar 16

    Blog's visual makeover is coming along nicely. If you had any feedback, let me know! (Still working through the "mixed content" SSL issue)

  12. Mar 3

    I always wanted to be ATD...

    3 retweets 10 likes
  13. Mar 3

    Today is my last day at . Great company and people; thanks for everything these past two years!

    1 reply 5 likes
  14. Feb 24

    Anyone have experience with migrating to a new blogging platform and retaining pageranking / reputation with Google?

  15. Feb 11

    It took a year, but I finally have a new blog post. This time, the topic is lateral movement with PSExec! Link:

    3 replies 80 retweets 113 likes
  16. Jan 30

    This is a new one... X-XSS-Protection: 0 Thanks for the assist, web server!

  17. Jan 11

    After many failed attempts, finally popped XSS by HTML encoding the following payload: <img src="x:x" onerror="al\u0065rt(1)>. w00t w00t!

    3 retweets 8 likes
  18. Retweeted
    14 Dec 2016

    Part of the appeal of infosec to me is their aren't really any experts; the pace of change is so fast you will always be learning.

    6 replies 15 retweets 61 likes
  19. 12 Dec 2016

    O rly?

    1 retweet
  20. Retweeted
    22 Nov 2016
    Replying to

    I never assume breach. I just breach.

    3 replies 44 retweets 120 likes

@icanhazshell hasn't Tweeted yet.

Loading seems to be taking a while.

Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.

    You may also like

    ·