Olivia
Online
Bilal
@0xcc00
Writing buggy code
Joined July 2021
293 Following
604 Followers
60 Posts
I've been seeing posts all over about the state of CTFs post-LLM. I've seen many attempts to explain why this is just a new evolution of CTFs, but I fundamentally disagree. I believe the original spirit is gone and I've written why in my blog.
https://t.co/tgUZOGkhGV
Alhamdulillah! Successfully conducted training class for the @FIRSTdotOrg conference in #Tashkent, #Uzbekistan 🇺🇿! Happy to meet my friends and colleagues in person
You are true professionals!
#hacking #conference #research #malware #purpleteam #threatintel #maldev #programming
A small rant:
The State of Art in Red Team is whatever you want to believe
https://t.co/ZihtNl8WEF
[Defeating Jiagu Android packer the wrong way]
While testing an APK, i found that it was packed using Jiagu. This article serves as a quick documentation on how i unpack it the wrong way
Article: https://t.co/mJIfnZHE4A
![0xcc00's tweet photo. [Defeating Jiagu Android packer the wrong way]
While testing an APK, i found that it was packed using Jiagu. This article serves as a quick documentation on how i unpack it the wrong way
Article: https://t.co/mJIfnZHE4A https://t.co/HeoYjBIpem](https://pbs.twimg.com/media/G_UraU3W4AAaBH3.jpg)
Who to follow
Octoberfest7
@Octoberfest73
Red Team | Offensive Tool Dev | 2x Course Author @ Zero-Point Security
Thomas Seigneuret
@_zblurx
Red Teamer & Security researcher
Maintainer of #NetExec, #DonPAPI, dploot, certsync, and all the stuff on my github repo
bsky: https://t.co/zISpgvDSWc
Kleiton Kurti
@kleiton0x7e
A web security guy, Red Team Enthusiast and wannabe Malware Developer. Opinions and views are my own.
AdaptixC2 v1.0 is out!
Full update post: https://t.co/uyz4iTYAW0
She was in international waters and then kidnapped by Israel. Where are those "don't tread on me" guys at?
Many are asking if they can move their Next.js projects from Vercel to Replit?
Yes!
- Go to Import then GitHub
- enter repo URL
- Agent will take care of the rest
It will set up the dev and deployment environments!
For companies moving lots of work, happy to help + discount.
AdaptixC2 v0.9 is out!
https://t.co/mL8AAS83TK
* New dock-based client
* Public Web-API
* New BOFs in Extension-Kit
Full changelog: https://t.co/9dlUFMQ8wU
@Gn0miez You can also connect the client through burp, which what i did during the MCP development in order to extract the APIs rather than digging into the code
@Gn0miez Hey, this is how they implemented the teamserver api, the code is mimicking the client, when the client send a custom bof it sends the binary also. As everything is stored and precompiled in the client side.
Israel murders five journalists in targeted airstrike in Gaza.
Al Jazeera journalists Anas al-Sharif and Mohammed Qreiqea, and camera operators Ibrahim Zaher, Mohammed Noufal, and Moamen Aliwa have been killed in a targeted Israeli airstrike.
Two weeks ago, UN Special Rapporteur Irene Khan warned that Israeli threats and smear campaigns were “a blatant attempt to endanger [Al-Sharif’s] life and silence his reporting on the genocide in Gaza.”
In July, the Committee to Protect Journalists said it was gravely concerned for his safety, warning he was being “targeted by an Israeli military smear campaign.”
Shortly before the strike, al-Sharif posted to X: “Non-stop bombing...For two hours now, the Israeli aggression has been intensifying on Gaza City.”
Well over 200 journalists and media workers have been killed in Gaza since October 2023.
![wikileaks's tweet photo. Israel murders five journalists in targeted airstrike in Gaza.
Al Jazeera journalists Anas al-Sharif and Mohammed Qreiqea, and camera operators Ibrahim Zaher, Mohammed Noufal, and Moamen Aliwa have been killed in a targeted Israeli airstrike.
Two weeks ago, UN Special Rapporteur Irene Khan warned that Israeli threats and smear campaigns were “a blatant attempt to endanger [Al-Sharif’s] life and silence his reporting on the genocide in Gaza.”
In July, the Committee to Protect Journalists said it was gravely concerned for his safety, warning he was being “targeted by an Israeli military smear campaign.”
Shortly before the strike, al-Sharif posted to X: “Non-stop bombing...For two hours now, the Israeli aggression has been intensifying on Gaza City.”
Well over 200 journalists and media workers have been killed in Gaza since October 2023.](https://pbs.twimg.com/media/GyB4H4iXEAAi6e8.jpg)
@delete_exploits Its because you are accessing the front-end directly, what you need to do is accessing it via the reverse proxy (caddy) via https on port 443
In your case its https://localhost/internal
Inducing PhishyFish ><(((º>....... A quick 2FA phishing framework
https://t.co/WXEw33ojMx
@delete_exploits Hey, its expected as you are browsing the “blocked page” any page you view is by default blocked unless you browse to the correct path, with you specified by -S option.
For example: -S internal -> https://t.co/1lOd80YsID
@hardc1dr @al3x_n3ff @0xcc00 As Alex stated, it doesn't actually "read" the file in that way, but I do think this should be easy enough for vendors to build detections for based on raw disk reading alone. I tested this with a top 5 EDR and it did not alert, even with dumping the extracted files to disk..
You can now even dump LSA/SAM hashes from normal Windows machines using -o TARGET flag.
Dumping the NTDS.dit from disk - A new NetExec module💾
Isn't it super annoying when AV blocks your access to the SAM/SYSTEM hives?
The new "ntds_dump_raw" module made by @0xcc00 parses the disk image directly, allowing you to extract the NTDS.dit or SAM database🚀
My module “ntds_dump_raw” is now out in NetExec🔥
Can’t wait for your feedback.
Dumping the NTDS.dit from disk - A new NetExec module💾
Isn't it super annoying when AV blocks your access to the SAM/SYSTEM hives?
The new "ntds_dump_raw" module made by @0xcc00 parses the disk image directly, allowing you to extract the NTDS.dit or SAM database🚀
“I want to eat because I haven’t eaten for five days”
Don’t ignore her voice.
she’s still hungry!
@s3cdev Lets move it into DM
I've been playing with MCP, Releasing AdaptixC2_mcp a PoC that exposes Adaptix-C2 APIs to gemini-cli, enabling it to control a beacon and to simulate a threat actor behavior.
Code: https://t.co/ewqGuES5z4
Last Seen Users on Sotwe
Most Popular Users
Elon Musk 
@elonmusk
240.2M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
109.3M followers
Narendra Modi
@narendramodi
106.9M followers
Rihanna
@rihanna
97.4M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.6M followers
KATY PERRY
@katyperry
87M followers
Taylor Swift
@taylorswift13
80.8M followers
Lady Gaga
@ladygaga
72.4M followers
Kim Kardashian
@kimkardashian
69.5M followers
Virat Kohli
@imvkohli
68.9M followers
YouTube
@youtube
68.6M followers
Bill Gates
@billgates
63.5M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61.5M followers
X
@x
60.9M followers
Selena Gomez
@selenagomez
60.1M followers