- 📖 I’m currently working on threat hunting
- 📘 I’m currently learning everything 🤣
- 🎭 I’m looking to explore purple teaming
- ☑️ 2023 Goals: Contribute more to Open Source projects
- AV Bypass
- Hide And Seek With Active Directory: Secrets For Persistence and Deception
- How To Pivot Through A Network With Mythic C2 And Ligolo-NG
- How attackers can bypass phishing-resistant MFA | Use these protections!
- Threat Hunting with VirusTotal - Introduction to VT Intelligence
- Memory Forensics Made Easy, with SANS and Intezer
- 🔴 Malware Mondays Episode 01 - Identifying Malicious Activity in Process Monitor (ProcMon) Data
- Analyzing Windows Malware on Linux: Getting Started Tips and Examples
- Shortcuts for Understanding Malicious Scripts
- The State of Malware Analysis: Advice from the Trenches
- cowbe0x004 starred batch-obfuscator
- cowbe0x004 starred Supershell
- cowbe0x004 starred C2IntelFeeds
- cowbe0x004 starred WinProcessShot
- cowbe0x004 starred Shellcode-Loader
- cowbe0x004 starred RemoteKrbRelay
- cowbe0x004 starred Certiception
- cowbe0x004 starred ShellSweep
- cowbe0x004 starred Lifetime-Amsi-EtwPatch
- cowbe0x004 starred smbclient-ng
- RT Devansh (⚡, 🥷): If you, like many, think relying just on
cat
command's output is enough to be sure about the integrity of a bash file. Think ... - RT Alh4zr3d: Red Teamers: Windows Subsystem for Linux (WSL) is more and more common, especially on dev workstations. Don't neglect it! WSL rev shell: ...
- RT Grzegorz Tworek: Need an almost invisible, post-exploitation, persistent, fileless, LPE backdoor? There are many, but this one looks really beautif...
- RT Mr. Rc: Are you interested in learning reverse engineering in 2023? I've spent the this year studying RE, and I want to share all the resources tha...
- RT Oliver Lyak: Today we're publishing new techniques for recovering NTLM hashes from encrypted credentials protected by Windows Defender Credential G...