Init1Security @init1security - Twitter Profile

3 days ago

Adrian Novoa a Red Team Operator here at Init1Security, talking about Initial Access in 2026, has presented at LayerOne Security in Pasadena CA. https://t.co/PiS3KOZPSj #redteam

0

16

3

10

2K

Init1Security

@init1security

5 days ago

@XavierRiveraX Thank you, very solid information we will have to start taking a look onto this!

0

274

Init1Security

@init1security

6 days ago

@domchell There is no nothing wrong with doing this, with MSRC infamy of blaming researchers and not even awarding them with reputation or even financially I see no moral ethics being crossed with researchers, consulting agencies holding onto 0days for engagements/ business related jobs.

1

3

0

1

503

Init1Security

@init1security

8 days ago

@LeighGi66657535 I don’t doubt it. It’s been a great method for us.

0

1

0

34

Init1Security

@init1security

13 days ago

@mqst_ Now this is a great checklist to consider when tackling Linux on CTF or real engagements, HackTricks always has great resources!

0

1

0

54

Init1Security

@init1security

13 days ago

@_RastaMouse Exciting news and eager to learn on the latest and greatest for Cobalt Strike!

0

223

Init1Security

@init1security

14 days ago

With VSCode Extensions, old becoming new again, remember the "vsix" file type is a file NOT blocked by email filters. 😉😉

Adam Chester 🏴‍☠️ @_xpn_

14 days ago

Everyone losing their minds over the Visual Studio Code payload hitting GitHub. The research was published on @MDSecLabs site in 2023! Red Teams have used this on assessments for ages!! Microsoft knows all of this and didn't bother to fix it!!! IT'S BEEN IN INITIAL-ACCESS FRAMEWORKS FOR YEARS!!!! https://t.co/ifTXR9N7Ur

9

166

41

46

23K

0

7

1

5

4K

Init1Security

@init1security

14 days ago

More true words couldn't have been said, we as offensive security researchers take research to the next level, OPSEC, in-memory techniques, BOFs, stack spoofing, creative injections and payload development, EDR evasion, but sometimes the best answer for APTs is just creativity and social engineering.

vx-underground

@vxunderground

14 days ago

Get it? The joke is that malware doesn't need kernel mode access to ruin your life. It can be a.. - Steam game - Video game mod - E-mail appointment reminder - VSCode solution - VSCode plugin - Windows Office Word File - PowerPoint presentation - Microsoft Excel File - File installation script - Outdated computer program - E-mail attachment - Compromised program installers - Compromised PyPi's - Compromised RubyGems - Compromised npm's - ISO files - OneNote notebooks - CHM help files - Malicious .reg files ... BUT DO NOT TRUST AN ANTI CHEAT. IT COULD BE MALWARE

15

345

29

23

16K

0

2

0

2

665

Init1Security

@init1security

14 days ago

Nothing but fire being released, excited to jump on this new training and try to sharpen my EDR evasion capabilities, but a custom EDR?? That sounds quite interesting approach personally we've worked on custom tools to evade EDR but the approach is mostly blackbox but if we have a custom one to learn in depth, I'm excited and congratulations on the new release!!

0

5

0

802

Init1Security

@init1security

16 days ago

@Snow_Wo1f A great technique to be used, especially seeing how Excel has vast options for Initial Access, unfortunately no longer working in Office 365 but we also have to consider not everyone is running the latest and greatest!!. Great blog

1

2

0

1

1K

Init1Security

@init1security

16 days ago

@cyber_rekk *Wireless, oops a slip of the fingers

0

33

Init1Security

@init1security

16 days ago

We offer Adversary Simulations and Emulations, Red Team Engagements, Penetration Testing and Witeless Testing, we focus and Azure and Active Directory, currently we are building training dedicated the Offensive/ Red Team capabilities and we try to offer live training in the US and Mexico, we also offer CTF style training currently available we have an Ai CTF that you are welcomed to try, since we are fine-tuning it still: https://t.co/3bBrZ4pth6

0

41