Olivia
Online
Phantom Security Group
@phantomcybersec
Automating the hard parts of Offensive Security. Creators of EvadeX and ApeX
United States
Joined July 2024
109 Following
303 Followers
71 Posts
This was an interesting case we found when testing @Surfacesec’s phishing detection engine.
It involves HTML smuggling but not in the way we typically think of it from a red team perspective.
https://t.co/i2Mzuwj6Pg
@Surfacesec just released their platform and as a red teamer, it’s good.
- Adaptive learning of auth endpoints
- Surface Vision: Patent-pending architecture of visual and code signals to catch phishing.
- Sovereign architecture: Your data stays yours
I’ve linked their post below
At @phantomcybersec we save your Red Team time and, in-turn, save you money. Operators get to spend more time operating and less developing and debugging.
Purchase EvadeX, with our Guarantee that it will bypass your target security product, and your operators will thank you.
When you train with offensive tooling that pushes beyond what most real-world APTs are capable of, real incidents stop feeling chaotic. EvadeX gives red teams access to advanced, continuously evolving evasion so exercises demand clearer thinking than an actual attacker ever will.
EvadeX just got a solid round of upgrades. We’ve recently updated a number of anti-analysis features, improved our C# obfuscator, and expanded the portal with in-depth details and operator resources so you can make your operations more evasive based on the C2 framework you use.
Great talking with Matteo Wong @TheAtlantic the other day about smishing and the Smishing Triad, along with the new Google lawsuit against the group.
Highly recommend reading Matteo’s article here: https://t.co/KSucriHcZl
drawn-out setups.
💻 This offer is available only to verified members or red teams at legitimate companies based in NATO countries or Australia. Verification is required before a license is issued.
Reach out today: info(@)https://t.co/y4QL8lDEJR
🛑 Stuck trying to bypass EDRs every engagement, or paying providers who make you chain 5 to 10 options before anything even runs? Try EvadeX with a one-week trial you can use on real engagements to test templates, validate evasions, and see how a simple selection beats long, …
A little shocked and awstruck that we are even on the radar of this multi-billion dollar company, but shows we are doing something right.
All while using our simple point and click evasion templates. That outcome demonstrates our focus on practical, repeatable effectiveness rather than flashy one-offs.
Learn more at https://t.co/jZWfFTfWm1
We design EvadeX and our evasion templates to be resilient, not a long, drawn out process of chaining a bunch of steps together to hopefully work on your end.
CONT. BELOW
A recent red team engagement highlighted why that approach matters: “We were able to get a working payload using EvadeX and Adaptix C2 that could run commands within a sensitive environment, including interacting with LSA/SAM, without detection from CrowdStrike with Overwatch.”
New EvadeX Release Tonight!
This includes multiple new features and execution techniques along with a new C# obfuscater to assist in your post exploration needs.
Register here: https://t.co/7UzvEc8JUP
BYOVD is no longer required on modern Windows. a bunch of recent msft kernel patches just shove vulnerable kernel code behind a privilege check. I wonder if we will see threat actors leveraging this like they did BYOVD. no bringing along a driver and loading also means less IOCs
From Hacking to Entrepreneurship: The PhantomSec Story https://t.co/8jSlHipp0f
Register here: https://t.co/7UzvEc8JUP
Are you an offensive security engineer, manager, director, or just a 1337 hacker who will be at DEF CON? Join the PhantomSec team after for our Post-DEF CON Meetup!
Will be a great place to grab a drink, some food, and to chat with other offsec folks after the busy week.
@phantomcybersec Thought this was cool, so here's a rust library of the PoC in the blog post: https://t.co/LUcSY5E9Og
FileFix - A ClickFix Alternative
https://t.co/OMU7UADf9J
Last Seen Users on Sotwe
Trends for you
Most Popular Users
Elon Musk 
@elonmusk
240.4M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.7M followers
Cristiano Ronaldo
@cristiano
110.1M followers
Narendra Modi
@narendramodi
107M followers
Rihanna
@rihanna
97.5M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.8M followers
KATY PERRY
@katyperry
87.4M followers
Taylor Swift
@taylorswift13
81.2M followers
Lady Gaga
@ladygaga
72.8M followers
Kim Kardashian
@kimkardashian
69.7M followers
Virat Kohli
@imvkohli
69.5M followers
YouTube
@youtube
68.7M followers
Bill Gates
@billgates
63.7M followers
The Ellen Show
@theellenshow
62.5M followers
Neymar Jr
@neymarjr
62.2M followers
CNN
@cnn
61.9M followers
X
@x
60.8M followers
Selena Gomez
@selenagomez
60.5M followers