The latest/greatest mem dumper BOF (@anthemtotheego), CLR usage logging evasion (@bohops), Windows deception engineering (@ollieatnccgroup), MobileIron enumeration (@OptivSourceZero), common vulns and mis-configs (@ShitSecure), macOS persistence (@theevilbit), and more!
Bloodhound Enterprise (@_wald0), reproducing ProxyLogon (@amlweems), Wireshark 1-click RCE (@positive_sec), free IOC API (@abuse_ch), VM detection trick (@gsuberland), IoT 🐚s via PCI (@_p0ly_), opensource AirTags (@Sn0wfreeze), and more!
Exchange RCE [ProxyLogon] (@orange_8361), Windows DNS RCE [SIGRed] (@chompie1337), C# AV Bypass (@ShitSecure), Google Chrome LPE (@KLINIX5), SaltStack API vulns (@dozernz), SACL honeypots (@jmoosdijk), Universal loader in Go (@symbolcrash1), and more!
JSON interop vulns (@theBumbleSec), PHPWind RCE presentation (@orange_8361), infra automation (@cedowens), AMSI knowledge (@ShitSecure), actual magic (@JustineTunney), modular password spraying (@0xZDH), and more!
Ubuntu LPE (@Gr33nh4t), open source FIDO2 🔑 (@SoloKeysSec), new ways to copy shellcode in VBA (@TheXC3LL), unconventional exploitation (@itm4n), harvesting hashes (@domchell), M1 mac malware (@ForensicITGuy), BOFs outside of CS (@TrustedSec), and more!
Dependency Confusion (@alxbrsn), hooking MiniDump (@Mari0Bartolome, @spotheplanet), SharePoint hacking (@acap4z), stealthy Windows IPC (@LloydLabs), direct syscall detection (@winternl_t), on-the-fly hooking from .NET (@FuzzySec), Windows LPE forever-day (@itm4n), defeat AV in safe mode (@_markmo_), and more!
An amazing payload generator (@Tyl0us), DynamicWrapperEx for COM fun (@am0nsec), Skype link spoofing (@mrd0x), getting into exploit dev (@dayzerosec), automated recon (@DhiyaneshDK), Relaying 101 (@theluemmel), and more!
Sudo LPE (@bl4sty), Cobalt Strike patching for evasion (@_xpn_), web bruteforcing (@Xst3nZ), customizing phishlets (@Bb_hacks), Kerberos LPE on Linux (@xassiz), shared file C2 (@scriptmonkey_), homograph tool (@evilsocket), and more!
DNS C2 sandwiches (@__Masq__), VBA process dumper (@JohnWoodman15), Windows Printer + NTLM relay fun (@aionescu + @eyal_karni), VM detection trick (@gsuberland), Anti-debugging with jobs (@JustasMasiulis), and more!
Containerd breakout PoC (@ChaosDatumz), the "glue" principle (@theluemmel), lockscreen bypass (@jonasLyk), VBox escape 0day (@Sauercl0ud), beacon shellcode generator (@ryanstvnson), browser backdoor (@_batsec_), nim obfuscation (@LittleJoeTables), and more!