leco

3 months ago

One bit flip to corrupt it all: Exploitation of an old Linux kernel vulnerability using PageJack, a modern technique to create Use After Free bugs. Here @AzazheI shows you how https://t.co/MLKX0pykhe

quarkslab's tweet photo. One bit flip to corrupt it all:
Exploitation of an old Linux kernel vulnerability using PageJack, a modern technique to create Use After Free bugs.

Here @AzazheI shows you how

https://t.co/MLKX0pykhe https://t.co/jNGjuaSZyN

0

176

42

115

10K

_lec0_ retweeted

POC_Crew

@POC_Crew

3 months ago

#Zer0Con2026 - SPEAKER 🌐 Mathieu Farrell(@Coiffeur0x90) from Quarkslab - “Breaking the Backbone of Global ISP Networks” For more: https://t.co/15bGQDgjGc

POC_Crew's tweet photo. #Zer0Con2026 - SPEAKER 🌐

Mathieu Farrell(@Coiffeur0x90) from Quarkslab - “Breaking the Backbone of Global ISP Networks”

For more: https://t.co/15bGQDgjGc https://t.co/BKGRd2C6BN

0

20

4

2K

Who to follow

Red Team enthusiast | Malware development enjoyer | Adversary Simulation at @quarkslab

Threat Hunting Specialist.

_lec0_ retweeted

3 months ago

Another antivirus 🛡️, another unfulfilled promise 😣. @kaluche_ turns Avira's protection into a privilege escalation playground. 3 LPE vectors via symlink abuse (CVE-2026-27748, CVE-2026-27750) and unsafe deserialization (CVE-2026-27749). Find out more: https://t.co/uVzyUWCjzh

quarkslab's tweet photo. Another antivirus 🛡️, another unfulfilled promise 😣. @kaluche_ turns Avira's protection into a privilege escalation playground. 3 LPE vectors via symlink abuse (CVE-2026-27748, CVE-2026-27750) and unsafe deserialization (CVE-2026-27749).
Find out more: https://t.co/uVzyUWCjzh https://t.co/aipOEFZqnE

3

132

38

48

10K

3 months ago

Excellent research on why macOS antivirus solutions should not blindly trust Process IDs. 👉 https://t.co/YjGvRsmNuV Shoutout to the Mathieu Farrell for the solid work.

0

2

0

18

4 months ago

🔥🔥🔥

4 months ago

🥳 ProxyBlob V2 is now available 🎉 As promised, here is the new version of ProxyBlob, boosted with aznet. Az-what 🤔? This version introduces a new Go module called aznet that allows you to use Azure storage services (not just blobs 😏) as a direct replacement for net.Conn! 🏎️https://t.co/AZDniVnzGY 🌐https://t.co/BkczwWO1xi Complete documentation is available in the aznet repo to understand how it works 📚

_atsika's tweet photo. 🥳 ProxyBlob V2 is now available 🎉

As promised, here is the new version of ProxyBlob, boosted with aznet. Az-what 🤔?

This version introduces a new Go module called aznet that allows you to use Azure storage services (not just blobs 😏) as a direct replacement for net.Conn!

🏎️https://t.co/AZDniVnzGY

🌐https://t.co/BkczwWO1xi

Complete documentation is available in the aznet repo to understand how it works 📚

1

69

29

27

6K

0

1

0

43

7 months ago

@_0b1d1 PDF

0

11

_lec0_ retweeted

9 months ago

Here is the associated blog post ⤵️ https://t.co/BmxPMxfeBB

0

1

0

215

_lec0_ retweeted

9 months ago

BYOVD is a well-known technique commonly used by threat actors to kill EDR 🔪 However, with the right primitives, you can do much more. Find out how Luis Casvella found and exploited 4 vulns (CVE-2025-8061) in a signed Lenovo driver. 👇 https://t.co/yKVfTYi61L

quarkslab's tweet photo. BYOVD is a well-known technique commonly used by threat actors to kill EDR 🔪
However, with the right primitives, you can do much more.
Find out how Luis Casvella found and exploited 4 vulns (CVE-2025-8061) in a signed Lenovo driver.
👇
https://t.co/yKVfTYi61L https://t.co/KiwKiFAWS0

2

164

56

52

12K

_lec0_ retweeted

Jean @Jean_Maes_1994

12 months ago

🚨 Open to work — AI Security/ red team / adversary sim 8+ yrs in offensive sec, ex-Cobalt Strike, SANS instructor (12 w/y) Looking for flexible, senior/principal roles w/ impact > hours DMs open or connect via: https://t.co/H3zhFxV2hB

1

63

22

11

16K

_lec0_ retweeted

about 1 year ago

ProxyBlob is alive ! We’ve open-sourced our stealthy reverse SOCKS proxy over Azure Blob Storage that can help you operate in restricted environments 🔒 🌐 https://t.co/KO4AYUDTmb Blog post for more details right below ⬇️

3

113

45

51

9K

_lec0_ retweeted

about 1 year ago

From classic HTML pages to advanced MFA bypasses, dive in with @_atsika in an exploration of phishing techniques 🎣. Learn some infrastructure tricks and delivery methods to bypass common detection. 👉https://t.co/zkhi1RxnDk (promise this one is legit 👀)

quarkslab's tweet photo. From classic HTML pages to advanced MFA bypasses, dive in with @_atsika in an exploration of phishing techniques 🎣.
Learn some infrastructure tricks and delivery methods to bypass common detection.
👉https://t.co/zkhi1RxnDk
(promise this one is legit 👀) https://t.co/SM4yvpuadn

0

176

64

105

25K

over 1 year ago

@andremoulu @CellebriteLabs Je suis partant !

0

117

_lec0_ retweeted

Nick Aleks @Nick_Aleks

almost 2 years ago

I’m giving away 10 FREE signed copies of our new book, Black Hat Bash! 🎉 Want one? Repost for a chance to win. #BlackHatBash #free #Giveaway

143

1K

278

116K

_lec0_ retweeted

Proton Drive

@ProtonDrive

almost 2 years ago

Say hi to Docs: end-to-end encrypted collaborative document editing in Proton Drive ✍️ Create, edit, and share documents securely 🤝 Collaborate in real-time with live cursors, presence indicators, and comments ↕️ Import/export with ease 1 / 2

ProtonDrive's tweet photo. Say hi to Docs: end-to-end encrypted collaborative document editing in Proton Drive

✍️ Create, edit, and share documents securely
🤝 Collaborate in real-time with live cursors, presence indicators, and comments
↕️ Import/export with ease

1 / 2 https://t.co/UGDbg6iO3Z

142

2K

265

130

199K