they say a picture speaks a thousand words 👀😱
doing some ClickFix resaerch ahead of the 8pm "From Threat Intlligence to Threat Hunting" with @insecurity_ltd & emma kocek on Discord, which seemed to fit well 👌
Our first 2026 training is now taking registrations!
Join us for Hacking Enterprises - 2026 Red Edition at @BlackHatEvents Asia #BHASIA in Singapore on 21-22 April.
https://t.co/9tfuzvZWaQ
#pentest#redteam
Let's go Black Hat Europe 2025! Join https://t.co/sLZ6ePxhbJ to level up your penetration testing or threat hunting skills https://t.co/PhrH5Z9Kcd #BHEU
It's @brucon soon! We're running our 3-day Hacking Enterprises - 2025 Red Edition #training and there's still some places left.
After, hope to see you at the conference for talks, games, and possibly even a beer 😉
https://t.co/NXDdDBc20F
#hacking#pentesting#cybersecurity
Want to learn how to phish, embed C2, evade AV, escalate, exfiltrate and persist across trusts?! Of course you do. It’s just a fraction of what’s covered in 3-days of Hacking Enterprises – 2025 Red Edition by @Stealthsploit and @rebootuser at #BruCON0x11. https://t.co/0X86U8TF7a
Team Hashcat took first place in the Jabbercracky contest at #DEFCON33! Thanks to HashMob for putting up a great fight and congrats on 2nd place! We're looking forward to your write-up! Huge thanks to Jabbercracky, @Stealthsploit, and @PasswordVillage for organizing!
Following my @securityfest talk yesterday I've released Hashcatalyst, a wrapper that helps automate non-distributed workflows by chaining multiple attacks with no downtime. https://t.co/E0nPeUmutk
#hashcat
We have a list of all our speakers and workshop who have confirmed so far up on our site:
https://t.co/VNHRl9nJt8
https://t.co/t9Ba12b0MP
If any of these excite you (they excite us) then the last ticket drop will be this Friday, May 2nd.
https://t.co/a3WPHIL53M
We're back at @BlackHatEvents USA running both our Hacking Enterprises and Defending Enterprises training, updated for 2024.
Join us to phish, enumerate, subvert, evade, and exfil, then join us again to alert, detect, monitor and hunt!
https://t.co/LppNsJ1Oms
#BHUSA
#BHASIA "Hacking Enterprises - 2023 Red Edition (Virtual)" is an immersive hands-on course on multi-layered offensive engagement, covering a multitude of TTP's. Learn to fully compromise a simulated enterprise. Register now -- https://t.co/j3Wp8rJf3t
A full 4-hour instructor-led walkthrough of our ⭐FREE⭐ #Password Cracking 101+1 training is running next week!
March 30, 1300-1700 BST.
https://t.co/eJr3pepYD9
Training VM: https://t.co/nNbiUuJbQ3
Detecting AD CS #subjectAltName (SAN) Abuse Using #KQL & #MicrosoftSentinel
Problems tackled:
1️⃣ #ADCS logging is poor...
2️⃣ How do we map events that have no correlating fields?
3️⃣ Can logical thinking be expressed through KQL?
https://t.co/7R0XP1EZpP
We've been promoting #LOLBAS detection using #MicrosoftSentinel and #KQL in our defensive training over the past few years, and it’s proven to be a popular query
Check out the details in our new article!
https://t.co/nkHUQdCgUN
⭐️ The Path to Pwnage ⭐️
Use the LOLBAS API to grab a list of known programs, then perform a check to see if the binary exists on the endpoint
If a match is found the full path of the identified item will be written to a text file for later review 🤟
https://t.co/ZCV8s0VMNM
Finally revamped my original @hashcat rule OneRuleToRuleThemAll.
The new and improved OneRuleToRuleThemStill has ~5% reduced rules with 0% performance drop against multiple breach datasets.
Link is in the blog. Happy cracking!
https://t.co/iDzFgQmh5G
#pentest#redteam
PSA:⭐FREE⭐ #cyber security #training
6/12 Catch Me If You Can - Seeing Red Through Blue (hands-on #threathunting workshop)
8/12 Cyber Awareness (digital footprints, attack surface reduction, social engineering and password security)
Sign up here: https://t.co/LppNsJ1gwU