-
Tweets287
-
Followers74
-
Following421
-
Likes234
C2 Redirectors: Advanced Infrastructure for Modern Red Team Operations. xbz0n.sh/blog/c2-redire… TLDR: The blog is about setting up and using different types of C2 redirectors. #c2 #Infrastructure #redirectors
When I'm conducting my own research on infosec topics and stumble upon interesting blogs, white papers, talks, or books, I feel both humbled and motivated, as if I'm walking in the footsteps of giants.
okay, hear me out. it's NOT hard to achieve whatever you're pursuing in life. whatever you're trying to do right now, anyone with a braincell and an internet connection can do it. the difference between them and you is that they're taking consistent action every single day. they're not just dreaming or talking about it; they're grinding, learning, and adapting. they're willing to fail, learn from those failures, and keep pushing forward. they don't let fear or doubt paralyze them. they're seeking out knowledge, connecting with mentors, and leveraging resources. success isn't reserved for the exceptionally gifted or lucky; it's for those who are relentless, resilient, and resourceful. stop overthinking, start executing, and watch how quickly things start to change. it's not about being perfect but it's about making progress, however small, every day. you have the tools, you have the capability. now, it's time to take action and make it happen. EVERYONE faces obstacles and setbacks, but the ones who succeed are those who view these challenges as opportunities to grow. they don't waste time on excuses or blame; they take ownership of their journey and stay focused on their goals. they're not afraid to step out of their comfort zones and take risks, knowing that real growth happens when you push beyond your limits. they understand that every step forward, no matter how small, brings them closer to their dreams. they're not waiting for the perfect moment; they're making the moment perfect by taking action now. they prioritize their time, cut out distractions, and stay disciplined. they're not bogged down by analysis paralysis; they make decisions, learn from the outcomes, and keep moving forward. so, if you're serious about achieving your goals, stop waiting for a miracle and start creating your own. the only thing standing between you and your success is the action you're willing to take. make today the day you start making your dreams a reality. there's a reason why I went from being a depressed, loser girl with no future ahead to someone who's actually taking action on myself, someone who moved to a new country by themselves and someone who can finally say they're making money. and all of that within 6 months. it's not because I suddenly became smarter or luckier; it's because I decided to stop making excuses and start taking control of my life. I set clear goals, broke them down into actionable steps, and committed to working on them. I faced my fears head-on, embraced the discomfort of change, and refused to let setbacks define me. I surrounded myself with positive influences, sought out mentors, and consumed knowledge like my life depended on it, and guess what...... because it did. the only person who could change my life was me, and I wasn't going to wait around for someone else to save me. I took risks, made sacrifices, and stayed focused on my vision. I learned to be patient with myself, understanding that progress takes time and that every small step forward is a victory. I stopped comparing myself to others and started competing with the only person who actually matters: myself. I found strength in my struggles and I continue to use my past as fuel to drive me forward. I celebrate my wins, no matter how small, and use them as fuel to keep going. I keep my eyes on the prize, staying disciplined and determined even when the road gets tough. you are NOT alone, you are NOT hopeless, and you are NOT stuck. there are countless people out there who've faced similar challenges and emerged stronger. you have a community of dreamers, doers, and fighters who understand what you're going through and are cheering for your success. reach out, connect, and find your tribe. share your journey, your struggles, and your triumphs. you’ll find that support and encouragement can come from the most unexpected places. life is full of ups and downs, but it’s the persistence through the downs that defines your path. stay committed to your vision, keep pushing forward, and don’t let temporary setbacks deter you from your ultimate destination. your dreams are within reach if you’re willing to work for them. so take a deep breath, gather your strength, and step boldly into your future. you have the power to change your narrative, to create a life that excites and fulfills you. believe in your potential, take consistent action, and watch as you transform into the person you’ve always aspired to be. your journey is uniquely yours, and every step you take is a testament to your resilience and determination.
Security analysis of Windows cldflt.sys driver Credits Chen Le Qi (@starlabs_sg) starlabs.sg/blog/2023/11-e… #Windows
Debugging and Intel PT-ing the secure kernel and hypervisor by @AlanSguigna . The particular demo starts at around here youtu.be/9utI4qKCWH4?t=… I look forward to he and @ivanrouzanov 's session at @reconmtl too
Getting Started with Debugging Hyper-V for Vulnerability Research, Part 2. x.com/i/broadcasts/1…
Turns out, if you teach an entire generation of programmers to “never reinvent wheels”, you get an entire generation of programmers who are unable to invent new & better wheels, or who are incapable of maintaining the wheels that already exist
"don't recreate the wheel" this phrase in software has caused more problems than it solved
I wrote a blogpost on injecting code into a PPL process on Windows 11, without abusing any vulnerable driver. blog.slowerzs.net/posts/pplsyste…
If you are facing an EDR with PEB protection/obf which makes Ldr inaccessible & want to inject shellcode, just pass the VA of LoadLibrary (which is consistent across processes) to the shellcode via egg-hunting from your injector, enabling lib resolution without touching the PEB
Want to download VMware Fusion Pro and Workstation Pro for free? I wrote up a short guide to quickly navigate the new Broadcom support portal... mikeroysoft.com/post/download-…
Changes on EVERY page, new chapter "Cryptocurrency cryptography" inc. PoW, algebraic hashing & Poseidon, multi-signatures, threshold signatures, zero-knowledge proofs, and more. NEW: section about Ed25519; the new Linux PRNG; NIST's PQC standards nostarch.com/serious-crypto…
Great streams coming up on the Off By One Security Channel from @FuzzySec, @haxorthematrix, @yarden_shafir, @AlanSguigna, @jstrosch, and more coming soon!! Please let me know what additional topics you'd like to see? Join our Discord Server here: discord.gg/offbyonesecuri…
George Hotz says that everyone should learn C and Assembly.
PoC Exploit Released for 0-day Windows Kernel of Privilege Vulnerability (CVE-2024-21338) : github.com/Nero22k/Exploi… github.com/hakaioffsec/CV… Details : hakaisecurity.io/cve-2024-21338…
We posted our third writeup of N-day full chain series: Chaining N-days to Compromise All: Part 3 — Windows Driver LPE: Medium to System medium.com/theori-blog/ch…
@kyREcon This is cringe. He doesn't explain what he bypassed or even a high level overview how he bypassed CS. This is a frequent thing on LinkedIn.
Watching people tweet they bypassed a certain EDR is just cringe at this point. When you ask them what did they bypass, they dont know what. So let me take you back to school... Executing OpenSource tool is not a bypass. An EDR employs several mechanisms for detection. Getting a new implant for a twitter image is not evasion. To have a proper bypass, several conditions must be met. Lets see... 1. When you say you bypassed an EDR, what did you pass? Initial connection? Post-ex? Userland unhooking of DLLs? DLL callbacks? Exception handlers? Kernel hooks? Userland ETW or Kernel ETW? Yaras? If you didnt test any of this, how do you know that you bypassed it. 2. I know EDRs which simply allow connection and monitor it to gather more intel on threats, but will kill the implant upon interaction with local env. 3. The implant must be executed in the form of an initial access like an actual RT/TA would do. 4. All EDR functionalities must be enabled including internet for ML anomalies 5. Did you interact with the implant after getting a shell? Most EDRs will kill you on the moment of interaction with local files or processes due to call-stack scanning. 6. Does your implant leave "shouting traces" of "I exist" in memory which can be traced with a simple process monitor with a memory dump? Most importantly, have you ever reversed the EDR or its modules to understand what exactly is happening in the back end? Do you even know "WHAT" is actually being detected by the EDR? On the other hand, I just woke up and I guess I chose voilence today. So time to go back to sleep 😂.
Even Flow @NestTensorflow
0 Followers 658 Following
DanaSophia @Eo4BcwLqwrmw2
65 Followers 2K Following
duskxy @duskxy
37 Followers 1K Following
Bl4ckM1rror @Bl4ckM1rror
50 Followers 458 Following Sometimes friend of ntdll, only when is unhooked | Red Team Operator | Malware Developer | Windows Infernals
ibra&stuff @0xIbraheem
202 Followers 1K Following
IT CPE Academy @itcpecredit
269 Followers 3K Following Self-Study CPE Programs to help professionals acquire the skills, knowledge and certificates in IT and cybersecurity
tXambe @txambe
618 Followers 3K Following Apasionado de linux ( Debian ) Hacking Etico Pentesting CTF
leon @leonfourtwo
145 Followers 385 Following
Adam Hassan @Adamkadaban
198 Followers 623 Following https://t.co/Q84BarVxwd Security Engineer @ Microsoft (MORSE)
Clerk kent FCB🇦�... @ASSASS1NCJ
43 Followers 942 Following Culer, BARCA FAN, FUTURE CYBER SECURITY ENGINEER
Kuba @kczpl
0 Followers 244 Following
Student Of Things @studentofthings
1K Followers 2K Following Freedom focused cognitive dissonance creator.
Dor @Dor00tkit
375 Followers 663 Following
Carl Nykvist @CarlNykvist
199 Followers 1K Following
Polar Bear @PolarBe16276372
53 Followers 896 Following
Dr. Wesley McGrew @McGrewSecurity
18K Followers 2K Following https://t.co/J2fRTxUccG | Senior Cyber Fellow at @martinfederal | Offensive Computer Security; AI; Photography; DJ
kelly belly @KellybellyTvd
3 Followers 222 Following
cat name | less @catpipeless
39 Followers 521 Following
Adam Petersen @adamwp1993
291 Followers 1K Following InfoSec Engineer | PJPT, PNPT | Wannabe Ethical Hacker, Roller Coaster Enthusiast, Combat Sports Enjoyer
riviere @iamriviere
1 Followers 178 Following
Fábio C Premoli @fpremoli
14 Followers 111 Following
Milan Gabor @MilanGabor
3K Followers 4K Following Ethical hacker, security researcher, presenter, @BSidesLjubljana organizer
Logan 64 @Logan6410
10 Followers 52 Following
darccau @darccau
7 Followers 379 Following
Anshuman Srivastava @TweetAnshumaan
335 Followers 6K Following Networking + Cyber Security - Firewalls + Ethical Hacking & Penetration Testing Enthusiast
Metric Code @M3tr1c_r00t
507 Followers 459 Following 20 | CyberSec Enthusiast! | CTF Team: https://t.co/jUcgS66Ain | Non SpeCiAlIsT ;)
Carter @CarterZupancich
0 Followers 77 Following
Kim @K1mW1ns
72 Followers 820 Following
n[0}body, Security Mi... @curtisko
1K Followers 951 Following Tweets are my own. A different version of you exists in the minds of everyone who knows you.
Caroline @cxstephens
3K Followers 2K Following
Sammi @sammisecurity
3K Followers 1K Following I snack and hack | security consultant | certified bitch | I like computers and anime (She/Her)🏳️🌈
Injectyll-HIDe @Injectyll_HIDe
124 Followers 402 Following Injectyll-HIDe is an open-source hardware implant that is being released soon. Stay tuned for more to come...
MoleRat @Cyber_Mole
20 Followers 64 Following In a free society, if you believe the world should be a certain way but don't worl to push it there, even in small ways, you're just whining.
V_To_The_K Ⓥ @V_to_the_K
4K Followers 2K Following 'Give a man a 0day and he'll have access for a day, teach a man to phish and he'll have access for life.' #snackoil and #lolzcrew inaugural member.
Valerie Thomas @hacktress09
6K Followers 3K Following Security Consultant, hacker, author, DEF CON Trainer, public speaker, social engineering specialist, and proud mom. Scary to some, but fascinating to others.
Boris Larin @oct0xor
19K Followers 706 Following Former console hacker (PS3/PS4). Hunting in the wild 0-days at Kaspersky GReAT. All tweets are my own.
DebugPrivilege @DebugPrivilege
41K Followers 2K Following Not active anymore on X. Problem solver with a passion for troubleshooting complex issues.
leon @leonfourtwo
145 Followers 385 Following
Kevin Thomas @mytechnotalent
2K Followers 132 Following Author of the world’s most popular Reverse Engineering Tutorial
daem0nc0re @daem0nc0re
6K Followers 204 Following Ph.D. in Physics, Kernel / Hardware Security, Microsoft MVP
Elliot Arledge @elliotarledge
40K Followers 299 Following low taste kernel engineer | KernelBench-Hard | made the 12 hr CUDA course | https://t.co/2hzezpoDwQ | @shipfr8 alum
Traceix @usetraceix
18K Followers 405 Following Making file analysis less magical. AI designed to help, not replace you.
Stefan Reinalter @molecularmusing
6K Followers 544 Following Founder of Molecular Matters • C++ & low-level programming • Created Live++ (@liveplusplus) https://t.co/BmiRmrEyxK
hextree.io @hextreeio
8K Followers 2 Following 🌱 Grow your cybersecurity skills with concise and well-edited video courses - in early-access, sign-up now! Created by @LiveOverflow and @ghidraninja.
Andy Sayler @AndySayler
2K Followers 886 Following Information Security, Public Policy, and Baking. InfoSec @Workday, ex-#InfoSec @twitter. (he/him)
🌙 Pepper Raccoon �... @pepperraccoon
4K Followers 3K Following Artist • Anti-Racist • Latinx Queer • Hacker Pal • She/they • SHOP HERE: https://t.co/HwsxsBPLMN. All social links below ✨
Skytalks @dcskytalks
7K Followers 147 Following A ‘sub-conference’ that gives a unique platform for researchers to share their research, for angry hackers to rant about issues in the industry off-the-record
Boulder #CitySec @bouldersec
370 Followers 126 Following 7 PM @ the Rayback Collective the first Thursday of every month! See: https://t.co/kMuofOSccu or https://t.co/nLUFLqwDDd .
Matt Nelson @enigma0x3
33K Followers 374 Following @specterops | Enjoys abusing features | https://t.co/aN1kcQxRJt
Jan 'Duchy' Neduchal @DuchyRE
3K Followers 767 Following Stuff at @sentinelone. Ex @vxunderground staff. Opinions are my own and not of my employer.
Orange Cyberdefense's... @sensepost
9K Followers 317 Following Work like hell, Share all you know, Abide by your handshake, Have fun. - Dan Geer
A. Hacker @armitagehacker_
231 Followers 44 Following Developer of Armitage and Cobalt Strike--Tools for Red Teams.
@bsidesboulder@infose... @BSidesBoulder
492 Followers 73 Following 🎉 BSides Boulder 2024 will be held in-person on June 13th, 2024! 🎉
L0Psec @L0Psec
4K Followers 2K Following reverse engineer | arm64 :) | macOS/iOS | YouTube: https://t.co/VdHNCl0Qfl
Phillip Koskinas @deteccphilippe
9K Followers 129 Following frontman @bandmrfrosty, anti-cheat @riotgames, formerly @amazongames
Marc-André Moreau @awakecoding
6K Followers 2K Following Remote desktop protocol expert, OSS contributor and Microsoft MVP. I love designing products with Rust, C# and PowerShell. Proud to be CTO at Devolutions. 🇨🇦
pikuma.com @pikuma
26K Followers 491 Following An education platform created to teach the fundamentals of #ComputerScience and #Mathematics for amateurs, enthusiasts, and hobbyists.
Linux Kernel Security @linkersec
10K Followers 0 Following Links related to Linux kernel security and exploitation. Maintained by @andreyknvl and @a13xp0p0v.
Mark @offlinemark
7K Followers 2K Following trying hard. streaming kernel dev - https://t.co/aO5X4jXGQD blogging about life, art & systems programming. non-expert work: @ableton, ex @trailofbits
Felipe Alejandro @fwrnr
3K Followers 713 Following Hacking vagrant. Flexing on computers, every bone and muscle, and previously: Vulnerability Research @NCSC / @interruptlabs / @pwc_uk
Snow @_sn0ww
41K Followers 1K Following Your friendly neighborhood Con-Artist | @sec_defcon Co-Founder | 3x Black Badge | Trainer/Keynote |💍@jc_socal | She/her 🏳️🌈
Anti-Cheat Police Dep... @AntiCheatPD
44K Followers 34 Following We specialize in gathering intelligence on cheats to detect and disrupt cheating vendors. We are not affiliated with anyone, this is voluntary work.
Nick Peterson 🇺�... @nickeverdox
3K Followers 291 Following @RiotGames - anticheat team. Opinions expressed are obviously my own. https://t.co/foRcgwMV3U
Smukx.E @5mukx
24K Followers 213 Following Adversary Simulation & Malware Research Lead | Developing powerful softwares for Red Team Engagements | 0x15 Y/o
CactusCon @CactusCon
4K Followers 93 Following Arizona's hacker con. CactusCon 14: Feb 6 & 7 2026 in beautiful Mesa, AZ. https://t.co/29lnaRVQy9 + LinkedIn, Bluesky, Mastodon
Totally_Not_A_Haxer @NotAHaxxor
60 Followers 6 Following Penetration tester Game cheat developer Legacy developer Modern developer Authentication / Security developer Writer Mathematics Reverse engineer
sapir federovsky @sapirxfed
5K Followers 199 Following Doing things @wiz_io And then doing more things at home | Failed research blog: https://t.co/j2HT1Tpscs | Trying to be more chill🧘♀️
dr4k0nia @dr4k0nia
5K Followers 57 Following INACTIVE Security Researcher I specialize in .NET malware analysis and tooling My Blog ✍🏻 https://t.co/UetpEwyAGq
Student Of Things @studentofthings
1K Followers 2K Following Freedom focused cognitive dissonance creator.
sinusoid @the_bit_diddler
2K Followers 2K Following Offensive research dude. Occasional CTF player (looking for a team!)
Man in the Purple Tux @ThePurpleTux
46 Followers 390 Following College student pursuing Cyber Security. Love Hacking and Solving puzzles.
j00ru//vx @j00ru
37K Followers 821 Following (Mostly) Windows hacker & vulnerability researcher. Google Project Zero. @DragonSectorCTF
Zach Hanley @hacks_zach
2K Followers 439 Following Vulnerability Researcher | Attack Engineer @horizon3ai
James Horseman @JamesHorseman2
1K Followers 116 Following Vulnerability Researcher | Attack Engineer @horizon3ai
Almond OffSec @AlmondOffSec
955 Followers 1 Following Offensive Security team at Almond - Follow us also on https://t.co/cIfn3rvLxC



































