A.D.M.I.N @z3r0knowledge - Twitter Profile

3 days ago

This is the type of malware game hackers build to bypass kernel anti-cheat. The same techniques can be used by malware authors to evade EDRs. A UEFI bootkit that injects into Microsoft's own Hyper-V at ring -1 before the OS even loads (easier than building a custom hypervisor from scratch). Four phase bootloader. Hypervisor VM-exit interception. EPT page shadowing. MSR virtualization. EFI memory map ghosting. TPM measurement spoofing. Reads like malware. Because it is. Videos and full technical breakdown in the link. Author: https://t.co/iHtxyJSbwy #ReverseEngineering #Malware #AntiCheat

cr3ghost's tweet photo. This is the type of malware game hackers build to bypass kernel anti-cheat. The same techniques can be used by malware authors to evade EDRs.

A UEFI bootkit that injects into Microsoft's own Hyper-V at ring -1 before the OS even loads (easier than building a custom hypervisor from scratch).

Four phase bootloader. Hypervisor VM-exit interception. EPT page shadowing. MSR virtualization. EFI memory map ghosting. TPM measurement spoofing.

Reads like malware. Because it is. Videos and full technical breakdown in the link.

Author: https://t.co/iHtxyJSbwy

#ReverseEngineering #Malware #AntiCheat

5

343

62

313

32K

z3r0knowledge retweeted

Anthropic

@AnthropicAI

1 day ago

Our internal data shows Claude is accelerating AI development—a possible path to recursive self-improvement, or AI autonomously building a more capable successor. It’s happening faster than we thought, and the implications deserve greater attention. https://t.co/OVVPJO7VQx

2K

27K

4K

15K

17M

z3r0knowledge retweeted

Dave Gerry

@davegerryjr

2 days ago

Well, it’s been an interesting 24 hours to watch this play out and there’s been a lot of conversation about using submission data for training. I want to be very clear on Bugcrowd’s position. Hackers are and continue to be the heart of @Bugcrowd. We are a part of the community and value the work the researcher community does to help customers identify vulnerabilities. AI is here to stay and will play a large role in cybersecurity going forward. However, that doesn’t change our commitment to the hacker community. We’ve been exploring ways to bring hackers along for the journey - not replace them with AI - and have been working in conjunction with members of the community, our own team & our Hacker Advisory Board to figure out the right way to incentivize and monetize AI-driven products for the hackers contributing. We won’t get everything right, but you have our commitment to be transparent as we strive to get this right and chart a path towards a human+AI future.

1

22

8

1

3K

z3r0knowledge retweeted

LiveOverflow 🔴

@LiveOverflow

26 days ago

This should change the opinion of the last person who doubted AI

11

489

41

127

82K

Who to follow

Weasel Sec

@Weasel_Sec

RedTeam | PurpleTeam | PenTest | Chef . Views are mines 🇬🇧🇸🇬

ẗäüẗöl̈ög̈ÿ

@tautology0

vi is the best text editor. FACT! @tautology0 @[email protected] @tautology.uk

Luca db

@cyan_pencil

anxiety-fueled PhD student @HexhiveEPFL Convert coffee into flags while playing w/ @polygl0ts @0rganizers @flagbot_eth

A.D.M.I.N @z3r0knowledge

about 1 month ago

@dcuthbert Turns out you can have iterative cycles of insights if you categorise photos, videos etc. into an event timeline, enrich with world events. Geolocate, do facial recognition and map that to a family and friend tree.

0

1

0

23

A.D.M.I.N @z3r0knowledge

about 1 month ago

@dcuthbert This topic has fascinated me for a while and I have been working on adjacent topics for just over a decade. Would love to chat with you about it. My primary thesis was can I gain novel insights from event driven categorisation of family photos, documents, and geneology

1

0

25

A.D.M.I.N @z3r0knowledge

about 1 month ago

@dcuthbert So these kinds of systems could reduce the pressure on individuals to record photos, diaries, wisdom etc. and give power to the family unit rather than relying on state or parish records. Or this could descend into a dystopian nightmare.

0

8

A.D.M.I.N @z3r0knowledge

about 1 month ago

@dcuthbert It seems to me that the latter loss of that historic family context disproportionately affects families from less affluent backgrounds or from countries that didn’t have continuous record keeping.

1

0

12

z3r0knowledge retweeted

Justin Elze

@HackingLZ

about 2 months ago

Think about the red teams you respect most. Now think about how they actually breach mature environments with strong stacks and strong defenders. It's almost never a memory corruption 0day. It's abuse of functionality.

13

210

28

24

21K

z3r0knowledge retweeted

Banana

@banana_baeee

about 2 months ago

Guys look Claude helped me - a random guy in his basement - build a wetlab and do vibe genomics! I sequenced my whole genome despite zero lab experience, without my DNA leaving home! I put together my notes and a step by step guide here: https://t.co/T5x6PKkwjW It was a lot easier than I was expecting! Ultimately I hit ~16x coverage and compared my results against my 600k raw 23andme SNPs, and it held up!

banana_baeee's tweet photo. Guys look Claude helped me - a random guy in his basement - build a wetlab and do vibe genomics!

I sequenced my whole genome despite zero lab experience, without my DNA leaving home!

I put together my notes and a step by step guide here:

https://t.co/T5x6PKkwjW

It was a lot easier than I was expecting!

Ultimately I hit ~16x coverage and compared my results against my 600k raw 23andme SNPs, and it held up!

93

3K

314

3K

310K

z3r0knowledge retweeted

Pedro Domingos

@pmddomingos

about 2 months ago

TL;DR: Top hacker calls Anthropic’s bluff.

122

6K

495

1K

303K

z3r0knowledge retweeted

Justin Elze

@HackingLZ

about 2 months ago

After the last couple days people are going to be really surprised when they find out there are hundreds of post breach write ups and CTI reports online detailing how companies actually get popped.

7

93

5

18

9K

z3r0knowledge retweeted

OreooerO @OOreooer

2 months ago

Wow this is actually insane. @Xbow just dropped a paper claiming they’ve achieved AGI using mice to train cyber security models. Not simulated. Real mice. And the results are… disturbingly good.

OOreooer's tweet photo. Wow this is actually insane.

@Xbow just dropped a paper claiming they’ve achieved AGI using mice to train cyber security models.

Not simulated. Real mice.

And the results are… disturbingly good. https://t.co/i4B4Cn7KRq

0

2

0

52

z3r0knowledge retweeted

vx-underground

@vxunderground

3 months ago

> be me > be red teamer > industry disrupted > omg > we all using PentAGI now > compromise target using email lure > c2 access to network machine > need lateral movement > spend 45 minutes reading pentagi readme > "omg this is gonna be so sweet" > needs docker instance > docker not installed > windows applocker denies installs > omg im so disrupted

60

2K

115

797

168K

A.D.M.I.N @z3r0knowledge

3 months ago

@myexploit2600 Another thing that is funny is seeing the difference between folks who think security is just vulns in code vs those who actually understand the real landscape.

0

1

0

27

A.D.M.I.N @z3r0knowledge

3 months ago

@myexploit2600 Yeah luckily the moat is still huge. And tbh, the people building these systems, with the exception of Armadin, are either doing automated appsec or seeing if models can be made to do naughty things post training and calling it red teaming.

1

0

60

z3r0knowledge retweeted

Justin Elze

@HackingLZ

3 months ago

Prior to the recent “pentest agent” wave on GitHub, app testing hadn’t really been framed as “pentesting” in a long time.

3

30

3

4

3K

z3r0knowledge retweeted

AI Security Institute

@AISecurityInst

3 months ago

Can AI agents conduct advanced cyber-attacks autonomously? We tested seven models released between August 2024 and February 2026 on two custom-built cyber ranges designed to replicate complex attack environments. Here’s what we found🧵