Olivia
Online
HoangSpecial
@SpecialHoang
Security Researcher | Pentester | Red Team | APT69
Philadelphia, PA
Joined December 2018
46 Following
1.3K Followers
82 Posts
@timmisiak look at rsp for example is great. The stack window is there but most the time I want to scroll further and beyond alongside with a more intuitive understanding of where I am in the stack is the only reason I am still on windbg :(. Thanks again for the great product!
@timmisiak big fan of windbgx. Everything is much better and more fluid. However, just a feedback and it is that hotkey-only new windows suck. I had to ask tons of people after googling resulting in nothing useful (it was ctrl + shift + m). Would love a more intuitive way!
@timmisiak Thanks for the reply Tim! I appreciate it. One last suggestion (and maybe I am a coconut and haven't figure it out yet) but the ability to view memory as other forms (Pointer and Symbol to be specific) would be godsend. The ability to scroll &
@layle_ctf @ColtonSkees On top of that, what DB implemented is more than many other manufacturers does to secure their signed drivers. Go get some CVEs and clout there instead where the source is not open to the public unlike CE (https://t.co/YUcY89AHNZ).
@layle_ctf @ColtonSkees Because DB and CE's job is to provide hackers with a hacking tool. Not adding more and more security on top of already existing ones. Plus, it is open source. So this will require DB to:
1. wild goose chase on an open source software to keep you happy.
2. everyone signs their own
@layle_ctf But why tho? DarkByte wrote one of the greatest tool that every game hacker relies on and give it out for free. Why wouldn't you honor his wishes to keep things safe?
@leoloobeek Next time Leo, I promise
Are there any Write-What-Where primitive left in W10 x64 1909? Seem like Gh?4 RGNOBJ is the only one intact and I'm not even sure if that is usable as a primitive. @msftsecurity, give back my GDI objects!
New COM post (and PoC) just published. This one journeys into COM server development, building a component for offensive use cases that can then be loaded with registration-free COM. Feedback welcome.
https://t.co/ccJBSLiXsn
During a recent long-term red team op, we bypassed CloudFlare to obtain a foothold on a subsidiary. AD forest exploitation followed, which allowed for compromising the parent company. This post focuses on bypassing CloudFlare WAF.
https://t.co/WpGN9aMw0i
@vysecurity When your opponent is a kernel level anticheat that disregards usability, privacy, stability, and compatibility, Modern EDR Solutions (TM) looks cute in comparison.
@james0x40 nice! is this with sandbox escape as well?
@n4r1B Amazing work. Loves the attention to detail and how far you go into each of WD's module and structure =)
@BillDemirkapi Similarly, I also happen to get to use forced exception through pointer destruction which is another nice trick to pair up with VEH. AGAIN, sorry for necroing this haha.
Ever want to hook functions stealthily? Check out my new blog! Vectored Exception Handling Hooking!
https://t.co/9ghSxH9t5h
@BillDemirkapi Sorry for replying to something a year back, was scrolling through my Twitter and realized I never replied, my fault. I think you know this by now that a lot of games do anticheat do use DR register as a way to stop debuggers from placing hwbp but your comment is correct =).
@leoloobeek @bohops @Oddvarmoe @xenosCR @ConsciousHacker @curi0usJack @CyberWarship @EranShimony @PhilipTsukerman @mrgretzky One of the smartest hacker I know. The man, the legend, leoloobeek
@jasc22 @TomahawkApt69 @NCCGroupInfosec @leoloobeek If you can show me the code. It have a custom cmd that you can use, just ends with &. This should let you execute anything in cmd as admin. Sorry for the late reply, holiday and travel. Do let me know if you need more help we can hit up DM.
Thanks to @NCCGroupInfosec for releasing their write up on CVE-2019-1405 and CVE-2019-1322. I figured it is time for me to learn some COM stuff so I whip up a PoC.
Source: https://t.co/Ucpa7SykiS .
Video: https://t.co/h45WJKhMMO
Thanks to @leoloobeek and @TomahawkApt69
@vm_call This was always a known thing in project's file is it not? Just give a quick look around project file and solution file before opening.
Last Seen Users on Sotwe
ZADDY BALL๐ COMMS FULL!
Seen from Peru
sqwe
Seen from United States
Fazeelat Anti
Seen from Pakistan
Femmedoll
Seen from United States
Kohei Kurihara - Privacy for all together ๐ 
Seen from United States
Gloire zwane the anal lover๐จ๐ฆ๐
Seen from Pakistan
IBU CANTIK
Seen from United States
sedaserhat_1907
Seen from Turkey
JANDA DESAH
Seen from Indonesia
wiisal casablanca
Seen from France
Most Popular Users
Elon Musk
@elonmusk
240.6M followers
Barack Obama
@barackobama
119.2M followers
Donald J. Trump
@realdonaldtrump
111.7M followers
Cristiano Ronaldo
@cristiano
110.5M followers
Narendra Modi
@narendramodi
107M followers
Rihanna
@rihanna
97.6M followers
NASA
@nasa
92.2M followers
Justin Bieber
@justinbieber
90.9M followers
KATY PERRY
@katyperry
87.6M followers
Taylor Swift
@taylorswift13
81.5M followers
Lady Gaga
@ladygaga
73M followers
Virat Kohli
@imvkohli
69.8M followers
Kim Kardashian
@kimkardashian
69.8M followers
YouTube
@youtube
68.7M followers
Bill Gates
@billgates
63.9M followers
Neymar Jr
@neymarjr
62.6M followers
The Ellen Show
@theellenshow
62.4M followers
CNN
@cnn
61.9M followers
X
@x
60.8M followers
Selena Gomez
@selenagomez
60.7M followers