Olivia
Online
L
@x86shell
Snr SOC Analyst @ { REDACTED }
Joined February 2015
508 Following
1.7K Followers
791 Posts
@Random_Robbie The orange one is brilliant mate
POSTING ZERO DAYS OR EXPLOITS PUBLICLY DOES NOT MAKE YOU A CRIMINAL
Microsoft has pissed off the entire security community once again
imagine getting sim swapped by a peanut
@vxunderground kernel AC is bad but the 6 vulnerable kernel drivers written in 2007 required to make my keyboard flash pretty colours is perfectly a'ok
New blog post covering what's changed in Amatera Stealer 4.0.2 Beta! Plus a bug I found that can be used as a vaccine.
- XTEA-encrypted strings
- C2 protocol changes (AES -> ECDH P256 + ChaCha20-Poly1305) making decryption more difficult
- SysCall SSN encoding, decoded just before WoW64Transition
https://t.co/EksdoSDQno
"my dog ate my homework" how about "the homework platform got ransomed" idk
@UK_Daniel_Card Not yet, I'll let you know if we do
Finally, it is published 😁 Making Vulnerable Drivers Exploitable Without Hardware - my latest research on driver vulnerability hardware-gating, explaining the concept of hardware-dependent code and diving deep into creative deployment techniques - software-emulated phantom devices, driver restacking, and forced driver replacement — all explored through the lens of Bring Your Own Vulnerable Driver (BYOVD) attacks:
https://t.co/COJ0BKpZQe
e49c2732fb9861548208a78e72996b9c3c470b6b562576924bcc3a9fb75bf9ff
ed8560c1ac7ceb6983ba995124d5917dc1a00288912387a6389296637d5f815c
8c8f5f095d65d3f33ce89a77dfbe84a79bb29d2e0073a57a23dcc014d0683c2e
46f5eea70d536f7affe40409d7aaa5fa0009f0dc4538ba2867cb7569737db859
617b67a8e1210e4fc87c92d1d1da45a2f311c08d26e89b12307cf583c900d101 92ff08773995ebc8d55ec4b8e1a225d0d1e51efa4ef88b8849d0071230c9645a f7d335205b8d7b20208fb3ef93ee6dc817905dc3ae0c10a0b164f4e7d07121cd fcb81618bb15edfdedfb638b4c08a2af9cac9ecfa551af135a8402bf980375cf
1/2
🚨 ACTIVE SUPPLY CHAIN ATTACK
Two malicious versions of `axios`, the npm package with 300M+ weekly downloads, were just published via a hijacked maintainer account and have deployed a cross-platform RAT to affected machines.
Affected: `[email protected]` and `[email protected]` 👇🧵
poking this 70f with a stick for its secrets
@IzzyBoopFPV Awesome writeup!
All #Gootloader domains I am aware of & their URLs. https://t.co/T7p6FC7lEx & https://t.co/A8pFqpOQin.
Domains protected by @Cloudflare. Whois protected by @gnamedotcom (cc @dowomain @brandomainable). SSL protected by @googlecloud. Reported to @abuse_ch, @google (SB) and @bing
@IceSolst Vyvanse
@UK_Daniel_Card Even worse if the account you're using needs PIM for Sec admin, elements popping in and out as the page loads, random data not being available etc.
NEW BLOG: The Great VM Escape 💕
We caught threat actors deploying a VMware ESXi exploit toolkit in the wild - potentially was a zero-day developed over a year before VMware's disclosure 👀
If anyone has thoughts on it let me know, but I needed almost a full case of beer to wrap my head around this one 🍺
Full technical breakdown 👇
https://t.co/wXT9c7ytVh
Last Seen Users on Sotwe
Most Popular Users
Elon Musk 
@elonmusk
240.1M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
108.8M followers
Narendra Modi
@narendramodi
107M followers
Rihanna
@rihanna
97.2M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.5M followers
KATY PERRY
@katyperry
86.8M followers
Taylor Swift
@taylorswift13
80.6M followers
Lady Gaga
@ladygaga
72.1M followers
Kim Kardashian
@kimkardashian
69.4M followers
YouTube
@youtube
68.6M followers
Virat Kohli
@imvkohli
68.5M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61M followers
X
@x
60.9M followers
CNN Breaking News
@cnnbrk
59.9M followers