Dependency Confusion (@alxbrsn), hooking MiniDump (@Mari0Bartolome, @spotheplanet), SharePoint hacking (@acap4z), stealthy Windows IPC (@LloydLabs), direct syscall detection (@winternl_t), on-the-fly hooking from .NET (@FuzzySec), Windows LPE forever-day (@itm4n), defeat AV in safe mode (@_markmo_), and more!
An amazing payload generator (@Tyl0us), DynamicWrapperEx for COM fun (@am0nsec), Skype link spoofing (@mrd0x), getting into exploit dev (@dayzerosec), automated recon (@DhiyaneshDK), Relaying 101 (@theluemmel), and more!
Sudo LPE (@bl4sty), Cobalt Strike patching for evasion (@_xpn_), web bruteforcing (@Xst3nZ), customizing phishlets (@Bb_hacks), Kerberos LPE on Linux (@xassiz), shared file C2 (@scriptmonkey_), homograph tool (@evilsocket), and more!
DNS C2 sandwiches (@__Masq__), VBA process dumper (@JohnWoodman15), Windows Printer + NTLM relay fun (@aionescu + @eyal_karni), VM detection trick (@gsuberland), Anti-debugging with jobs (@JustasMasiulis), and more!
Containerd breakout PoC (@ChaosDatumz), the "glue" principle (@theluemmel), lockscreen bypass (@jonasLyk), VBox escape 0day (@Sauercl0ud), beacon shellcode generator (@ryanstvnson), browser backdoor (@_batsec_), nim obfuscation (@LittleJoeTables), and more!
Thread hijack BOF (@33y0re), anti-debugging tricks (@JustasMasiulis), leaking private YT videos (@xdavidhu), SysWhipers2 (@Jackson_T), Google Titan 🔑 side channel (@victorlomne), lsass handle reuse (@Jean_Maes_1994), and more!
SolarWinds news and dumping tool (@mubix), Android exploit from an iOS exploiter (@_bazad), C# runtime dependency resolution (@Jean_Maes_1994 + @_RastaMouse), direct syscalls in BOFs (@OutflankNL + @ajpc500), C# from Nim (@ShitSecure), Ubuntu LPE (@scannell_simon), and more!
Great breach analysis (@FireEye), HTTPS Signing in Burp (@sanktjodel), Ghidra VirusTotal plugin (@kasifdekel), Dynamic API hook evasion (@matterpreter), EDR hook detection in VBA (@TheXC3LL), Kerberos Bronze Bit attack (@jakekarnes42), PtH methods (@n00py1), and more!
Remote iOS RCE (@i41nbeer), decrypting AutoLogon creds (@secure_sean), the Unprotect Project (@fr0gger_ + @DarkCoderSc), C2 in C++ book (@shogun_lab), depixelization tool (@spibblez), SharpMapExec (@cube0x0), and more!
OffSecOps setup (@xenosCR), direct syscalls in CobaltStrike (@brsn76945860), VBA DLL linking (@rd_pentest), advanced red teaming (@BorjaMerino), invoking managed code in .NET DLLs (@_xpn_), shellcode execution via PostgreSQL extensions (@DarkCoderSc), and more!