[New Post] The Tale of SettingContent-ms Files: medium.com/specter-ops-po…
Includes: One click hyperlink execution, Office 2016 OLE block list evasion and ASR child proc rule evasion.
Received tons of great questions on our previous Autoruns Evasion research. Wanted to specifically highlight how to make two INF-based Scriptlet techniques work (includes a PoC to "bypass" Windows signing error by tainting the CA w/self-signed catalogs :) medium.com/@KyleHanslovan…
I just got pointed to youtube.com/watch?v=NOJx-G… by @KacperSzurek - great to see another awesome researcher doing YouTube stuff :)
Please sub him to motivate him, we do need more of this stuff! :)
The Windows syscall tables from my blog are now on GitHub, updated with Windows 10 1803 and formatted as CSV/JSON for easier use in software. Enjoy! github.com/j00ru/windows-…
New blog post about messing with AMSI in WSH to get my DotNetToJScript to not be detected without needing to be admin/modify registry. tyranidslair.blogspot.com/2018/06/disabl…
Here is my write up on how I discovered and exploited a privilege escalation bug affecting Windows 10, Server 2016, and Visual Studio (CVE-2018-0952): atredis.com/blog/cve-2018-…
2K Followers 3K FollowingAlthough by day I work in IT, at night I investigate and write about the paranormal. Catch my current blog post at https://t.co/FLONfY943S !
11K Followers 79 FollowingUK's best combined Information Security Conference and training event. Newsletter https://t.co/2P1WTeSK4E run by @alien8 https://t.co/lXrBRhPg83
47K Followers 2K FollowingChief Technical Innovation Officer @crowdstrike. Windows Internals author and trainer. He/Him. RTs are not endorsements, opinions are my own.
47K Followers 521 FollowingКомпьютерные трюки, безопасность, программирование и администрирование сетей.
Hacker is a widely acclaimed publication for IT enthusiasts
2K Followers 616 FollowingWe empower organizations with resilient, self-healing capabilities that prevent
and neutralize even the most advanced cyber threats.
8K Followers 151 FollowingFor contact in the security community. NOTE: All the tweets are totally my personal opinions, not about any of my current employer stuff.
5K Followers 2K FollowingeEye is now part of BeyondTrust. You can stay up to date on our vulnerability management solutions and threat research by following us @BeyondTrust.
17K Followers 4K FollowingThe official Twitter stream for the HITBSecConf conference series held annually in Europe (Amsterdam), Asia (Bangkok), & The Middle East (Abu Dhabi)
35K Followers 256 FollowingWe help secure the world’s most targeted organizations and products. We combine security research with an attacker mentality to reduce risk and fortify code.
12K Followers 24 FollowingAn annual awards ceremony celebrating and making fun of the achievements and failures of security researchers and the wider security community.