Part 2 of my schannel research is out: b.poc.fun/decrypting-sch…. It is much shorter and focuses mainly on session resumption. As always, feedback is very welcome, especially RE TLS1.3 resumption in schannel.
Some time ago I had a task where I needed to extract TLS session keys from win apps that use schannel (i.e. mstsc). Did some reversing and ended up creating a frida script that hooks key creation in lsass. Feedback welcome! b.poc.fun/sslkeylog-for-…
NSA: we are open sourcing a multi million line of code SRE tool to democratize the malware analysis space. Microsoft: Hold my beer blogs.windows.com/buildingapps/2…
InfoSec is such a fast paced profession that can be a time eater if you let it. Don’t feel bad for sacrificing some knowledge for personal physical and mental health. Spend time with friends. Play video games. Go to the gym. Learn a new hobby. The world will keep spinning :-)
𝗕𝗟𝗨𝗘𝗦𝗣𝗔𝗪𝗡
is an active defense and endpoint detection and response tool which means it can be used by defenders to quickly detect, identify, and eliminate malicious activity and malware across a network.
github.com/ION28/BLUESPAWN#blueteam#redteam#edr#infosec
Docker for Pentesters
My hope in this post is to demonstrate some of my usecases and workflows, and illustrate how I think pentesters and security professionals in general can greatly benefit from Docker.
blog.ropnop.com/docker-for-pen…#docker#pentest#infosec#linux
3 Followers 174 FollowingRecruiting webshell engineers to penetrate websites, with a monthly salary of up to $100,000. If interested, please contact https://t.co/MQUBGheQ9A
7K Followers 2K FollowingGlobal leader in hands-on learning for enterprise and cloud security education. Join 40000+ infosec professionals from 130+ countries
655 Followers 3K FollowingGNU/Linux sysadmin with a taste for devops, cybersecurity, and programming.
I tweet about my work, open source, cryptography, privacy, freedom, and jiat0218.
586 Followers 2K FollowingBuilder, cybersec ninja who builds on both Solana and Inj.. thecollected.(sol)(eth)(inj) 🎒 🟧
This is not a resume.
Founder of.. thecollected... is coming.
64 Followers 1K FollowingCyber ninja...I use twitter to keep up to date on Red Teaming, Pentesting, APT TTP's, etc...& to retweet/like tweets containing information I want to reread.
7K Followers 77 FollowingProfessional redteamer and malware development enthusiast ! I will share some tips and experiences. Look at my work here : https://t.co/cxLBvW7pcI
5K Followers 427 FollowingCyberSecurity researcher and founder of BallisKit. I have a passion for all infosec subjects especially redteam and writing offensive tools!
3K Followers 124 Followingcybersecurity enthusiast, author. speaker, mathematician. Love my wife and kids. Author of MD MZ, MalWild and Maldev for Ethical Hackers (2022-2024) books.
4K Followers 33 FollowingI'm a security researcher who uses this platform to share my projects and research. Opinions are my own.
https://t.co/UiWgKq40sV
80 Followers 111 FollowingFreelancer, C++ guy, JS backend dev, #ASN1js and #PKIjs author, ASN.1 specialist, Windows security specialist, writer of articles about ASN.1, CAdES etc.
15K Followers 0 FollowingConsultancy and Training from a trusted supplier of offensive security. Red Team and Adversary Simulation by ActiveBreach team | https://t.co/fqpbJ9WDXD | https://t.co/UvOhGA4Zou
155K Followers 0 FollowingThe free and flexible app for your private thoughts. For help and deeper discussions, join our community: https://t.co/QsDArfFkkv
3K Followers 389 FollowingRed Teamer & Security researcher
Maintainer of #NetExec, #DonPAPI, dploot, certsync, and all the stuff on my github repo
bsky: https://t.co/zISpgvDSWc
4K Followers 689 FollowingAll I know is that I know nothing. I like Windows, Active Directory and IoT/Hardware hacking.
"Responsable mais pas coupable" de PetitPotam
23K Followers 477 FollowingHead of Trust Security, DM for booking |
Master of hand-to-hand audit combat |
C4/Immunefi/Sherlock VIP |
Hacked Embedded, IoT, iOS in past life
4K Followers 599 FollowingElastic Security Labs is democratizing security by sharing knowledge and capabilities necessary to prepare for threats. Spiritually serving humanity since 2019.
2K Followers 186 FollowingDelivering trusted smart contract audits and contributing to blockchain space since 2017.
Mitigate risks and boost confidence with acclaimed and reliable team.