Karkas @CDC_FI - Twitter Profile

about 19 hours ago

@TwoSevenOneT Does not work for Trellix Endpoint Security (AV, not EDR) 10.7.20.14066 Does not work for Tanium Threat Response Agent (EDR) 7.6 Does (!) work for Trendmicro Deep Security Agent (AV, latest Version)

1

0

232

Karkas @CDC_FI

about 2 months ago

@FalconFeedsio Chipsoft != cipsoft

0

2

0

174

Karkas @CDC_FI

about 2 months ago

@HaifeiLi a lot ppl might not know that you can disable certain API Calls with registry Keys/GPOs: https://t.co/EEZXZnxGX0 HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Adobe\Adobe Acrobat\DC\FeatureLockDown\cJavaScriptPerms tBlackList=RSS.addFeed|Util.readFileIntoStream ...and you are safe :)

1

9

1

6

711

Karkas @CDC_FI

3 months ago

@dcuthbert met him countless times even in the smallest Cons where he held top notch talks and always stopped for questions... true legend. Will never be forgotten

0

2

0

479

Karkas @CDC_FI

3 months ago

@rebane2001 will it run doom?

0

330

Karkas @CDC_FI

4 months ago

@5mukx Dood it´s 2026... who cares about userland hooks?

2

12

0

2K

Karkas @CDC_FI

4 months ago

@eversinc33 @cyb3rops Looks like the boys (colleagues) and I are soldiers now

0

2

0

30

Karkas @CDC_FI

6 months ago

@yarden_shafir Once you reach the level "I´ve forgottn more stuff than the average Junior level Analyst knows" you enter the realm of the true masters

0

1

0

54

Karkas @CDC_FI

8 months ago

@VirtualAllocEx perfectly fine dood!

0

391

Karkas @CDC_FI

9 months ago

@techspence Let´s move everything to the cloud, they know how to do security

1

4

0

100

Karkas @CDC_FI

11 months ago

@d4rksystem @rpargman Awesome Kyle... looking forward to it!

1

0

40

Karkas @CDC_FI

about 1 year ago

@yarden_shafir It´s a Kookaburra, in germany we call it "laughing Hans" :D They are quite intelligent birds ;) Kookaburra - Wikipedia

1

0

102

Karkas @CDC_FI

over 1 year ago

Today I improved and rereleased a Project: https://t.co/TvBI9uUFCm The original Code by 0xNinjaCyclone had hardcoded Injection Process Name and static plain Shellcode. I wanted to load dynamic Shellcode from files into a process of my choice. To get rid of plain msfvenom shellcode detections by several AVs I made a basic XOR Encryption of the embedded shellcode. I also made a Visual Studio 2022 Template, ready to compile and run. Did not yet find the problem why not msfvenom shellcode crashes the hosting payload process. So just use msfvenom SC for now. I successfully tested with meterpreter_reverse_tcp

0

242

Karkas @CDC_FI

over 1 year ago

@m4ul3r_0x00 Early Cascade Injection, nice work, thanks

0

2

0

159

Karkas @CDC_FI

over 1 year ago

@_RastaMouse it realy is. But learn my lesson: Don´t Update (OTC Wifi Dongle) without backing up the SD Card first

0

1

0

90

Karkas @CDC_FI

over 1 year ago

@C5pider @Octoberfest73 yeah sure it´s not... did not yet look into the code when writing the comment. Will steal the best ideas anyway! btw, nice Framework @c5pider was hard to get into it, but yet fun to learn

0

97

Karkas @CDC_FI

over 1 year ago

@d4rksystem @jstrosch loved to see you working!

0

2

0

21

Karkas @CDC_FI

over 1 year ago

@kyREcon @OutflankNL yeah... exactly my thoughts man

0

170

Karkas

@CDC_FI

Last Seen Users on Sotwe

Trends for you

Most Popular Users