Kevin Haubris

about 2 years ago

What started as a basic scanner project evolved into a comprehensive endeavor. In our latest post, Kevin Hubris reflects on XZ Utils backdoor news, exploring detection methods pre and post-upgrades. Read it now! https://t.co/AANBY9hfMp #Security #Blog

0

28

15

4

5K

kev169 retweeted

Mike Hunhoff @mehunhoff

almost 4 years ago

🚨 Today we're excited to release Ghidrathon, a Ghidra extension that adds modern Python 3 scripting (including Python 3.10) to Ghidra! Blog 👉 https://t.co/oA1aY813R0 GitHub 👉 https://t.co/8wy30NmNoN

5

551

218

88

0

Research Practice Lead @Trustedsec gamer and nature enthusiast

about 4 years ago

@curi0usJack @Flangvik @_xpn_ @HackingLZ You can stream it, just the stream will be a black screen labeled “REDACTED” lol

1

6

0

Who to follow

freefirex

@freefirex2

David Boyd

@fir3d0g

Christian. Husband/Father. Veteran. Hacker @TrustedSec. Traveling Man. Speaker. Gamer. Geek. Jedi. Chaotic Good.

Steve McKenzie

@jarsnah12

I do security and stuff, sometimes cosplaying as a sysadmin. All opinions are shared by my employer and are hilarious. https://t.co/SZOWltaTQI

kev169 retweeted

about 4 years ago

Find out how building memory loaders can allow you to simulate BOFs for Linux and Mac using new Cobalt Strikes BOF internal functions in our newest #security #blog https://t.co/E6Fa9ykF07

0

77

38

14

0

about 4 years ago

@timb_machine @HackingLZ @_xpn_ Only tested on Linux and Mac, but just pushed up a change to get a debug build to run on FreeBSD.

0

2

0

Olaf Hartong @olafhartong

about 4 years ago

@HackingLZ Best part is that with this loader the object files (built for linux) run on Linux, mac, and anything else that uses the same calling conventions. :)

0

2

0

kev169 retweeted

freefirex @freefirex2

about 4 years ago

The research team @TrustedSec is happy to announce we're releasing some of our previously internal bof's. Most of it is using windows API's for primitives that can build up to larger actions. If that interests you see more here https://t.co/VW7BZqmWar

8

506

206

80

0

kev169 retweeted

over 4 years ago

My colleague @gijs_h posted an awesome blog on converting BOFs to shellcode, which enables you to use them with other/custom C2s. Shoutout to @TrustedSec for the COFFLoader. https://t.co/7exsNqC6t1 #FalconForce #RedTeam #Shellcode

1

142

56

28

0

kev169 retweeted

over 5 years ago

Join Senior Research Analyst Kevin Haubris in making memories in “COFFLoader: Building your own in-memory loader or how to run BOFs” by following his process breakdown ✨#blog https://t.co/szZk4NJ56c

1

122

61

11

0

kev169 retweeted

over 5 years ago

Join @Carlos_Perez and Christopher Paschen for our next #webinar, "Using #Research to Gain Attack Intelligence," on Wednesday, November 4 at 1pm Eastern. Register now to get a glimpse into some of TrustedSec’s internal, proprietary tooling. https://t.co/RRLfKRKRfR

0

22

15

2

0

kev169 retweeted

SF Biz @bizsiouxfalls

almost 6 years ago

Now hiring: The first leader for the newly formed Cyber Incubator and Economic Development Center at @DakotaState. https://t.co/rNjnVecHNd

0

22

7

0

kev169 retweeted

almost 6 years ago

Cobalt Strike 4.1 allows code to be run in a more #OPSEC friendly manner. Senior Research Analyst Christopher Paschen outlines less obvious restrictions of Beacon Object Files and shares his #workflow to assist anyone tasked with writing in this format! https://t.co/EgoBiTZuB7

0

134

76

9

0

about 6 years ago

@jaredhaight @brysonbort @Carlos_Perez So more of the steps from "I've identified a need for a custom tool" through to "Stable tool developed and ready for use" just using a agent and C2 as an example.

0

kev169 retweeted

about 6 years ago

#TrustedSec is expanding its training with online, public offerings! @HackingDave shares how these instructor-led courses will help further educate our #InformationSecurity community and industry #TrainingTuesday https://t.co/leg2iKRVRN

0

218

86

37

0

about 6 years ago

@MagisterQuis That, and if it’s in c or c++ the valgrind output, if I see tons of errors or memory leaks I’ll just write it from scratch, easier than fixing.

0

1

0

kev169 retweeted

Jason Lang

@curi0usJack

over 6 years ago

Hey @ATTHelp - *PLEASE* consider raising the 100GB data cap on rural workers using wireless LTE hotspots (no fixed wireless here). We could use a break right about now...

0

17

4

0

kev169 retweeted

Lesley Carhart

@hacks4pancakes

over 6 years ago

Get yourself a job / gig at some point in your career where you have no access to Google - sone facility with no phones or internet allowed or accessible for one reason or another. You will be stretched in ways you didn’t think possible and read man pages you’ve only skimmed.

96

877

80

20

0

over 6 years ago

@JoshPauli lol, come to think about it, it has been a while since I tweeted anything huh

0

over 6 years ago

Check it out, latest blog post on selinux and auditd.