- 📖 I’m currently working on threat hunting
- 📘 I’m currently learning everything 🤣
- 🎭 I’m looking to explore purple teaming
- ☑️ 2023 Goals: Contribute more to Open Source projects
- Exploiting DLL Hijacking with Rust & Golang: Step-by-Step Guide
- ShellBag Forensics
- Let's Talk About MUICache
- AV Bypass
- Hide And Seek With Active Directory: Secrets For Persistence and Deception
- How To Pivot Through A Network With Mythic C2 And Ligolo-NG
- How attackers can bypass phishing-resistant MFA | Use these protections!
- Threat Hunting with VirusTotal - Introduction to VT Intelligence
- Memory Forensics Made Easy, with SANS and Intezer
- 🔴 Malware Mondays Episode 01 - Identifying Malicious Activity in Process Monitor (ProcMon) Data
- cowbe0x004 starred alerting-detection-strategy-framework
- cowbe0x004 starred osv.dev
- cowbe0x004 starred Respotter
- cowbe0x004 starred turbinia
- cowbe0x004 starred dftimewolf
- cowbe0x004 starred awesome-lists
- cowbe0x004 starred NativeDump
- cowbe0x004 starred batch-obfuscator
- cowbe0x004 starred Supershell
- cowbe0x004 starred C2IntelFeeds
- RT Devansh (⚡, 🥷): If you, like many, think relying just on
cat
command's output is enough to be sure about the integrity of a bash file. Think ... - RT Alh4zr3d: Red Teamers: Windows Subsystem for Linux (WSL) is more and more common, especially on dev workstations. Don't neglect it! WSL rev shell: ...
- RT Grzegorz Tworek: Need an almost invisible, post-exploitation, persistent, fileless, LPE backdoor? There are many, but this one looks really beautif...
- RT Mr. Rc: Are you interested in learning reverse engineering in 2023? I've spent the this year studying RE, and I want to share all the resources tha...
- RT Oliver Lyak: Today we're publishing new techniques for recovering NTLM hashes from encrypted credentials protected by Windows Defender Credential G...