Dell BIOS Passwords: Weak XOR Encryption Allows Recovery from SPI Flash (CVE-2026-40639) - new research from @craigsblackie and @R3n5k1 from @AmberWolfSec https://t.co/eTRU43n8PF
@singe@z3ro2504@sensepost Maybe I'm wrong... but I believe it's the same concept that https://t.co/NcxudXCip6 (6 years ago) or this approach that avoids NtQueryInformationProcess to find the shellcode in env vars https://t.co/SF7pEJNtEF
I've been pretty quiet recently, mainly because we've been cooking up a few things at @MDSecLabs - some of which will be revealed over the next month or so. One of the most exciting things is a HUGE new @nighthawk_c2 release. It's packed with "stacks" of new OpSec - incl. 3 new CET compat masking. But most exciting of all, we have a super sexy new cross platform UI 🔥
New blog post is up looking at how LLMs are making local EDR rulesets, YARA rules, and behavioral detections trivial to extract. This post focuses on how simple the harness can be. Buckle up h4xx0rs, the next few months are gonna get interesting! https://t.co/QvzXsPA01F
Now that ppl is getting banned here, imagine if we start just dropping our contents in blogs instead of using social networks for chasing clout. We can even alert when new post are released. We could call it "Really Simple Shit"(RSS) and let the people read them by the morning ☕
Acabo de terminar el libro de @TheXC3LL y quería compartir algunas reflexiones.
Quiero empezar diciendo que este libro parece inocente.
A simple vista puede verse como un "libro de historietas de batalla" para entretener... y lo cierto es que entretenido es. (1/5)
New blog by my colleagues Dave (@johnnyspandex) and Adam:
Microsoft Graph API - Hidden Exclusions with Overly Scoped Permissions 🧐
https://t.co/pku1PIYigh
I just wrote a new blog on bypassing CA policies in Entra ID that have a resource exclusion, and why you probably want to enable baseline enforcement if you have such policies. Enjoy!
https://t.co/a1rGl3wss8
¡Hemos llegado a la ponencia de clausura! Es turno de Juan Manuel Fernández y su charla “Tickets Please: Let's talk about AD-Joined Linux Environments" #offensive#pointofview#ESCIX@TheXC3LL