@0xffhh profile picture
JMP RSP @0xffhh

offensive security addict. @falconforceteam co-founder. speed maniac.

Joined March 2010
  • Tweets 464
  • Following 329
  • Followers 389
29 Photos and videos
JMP RSP retweeted
Wild West Hackin' Fest@WWHackinFest
22 Sep 2023
Sponsor Spotlight | @falconforceteam We would like to thank FalconForce for being a Silver Sponsor for Deadwood 2023! Check out all about their company and services here: falconforce.nl/?utm_campaign…
6
7
3,169
JMP RSP@0xffhh
23 Nov 2022
Having an implant running undetected on an edr protected machine is all cool, but detecting TAs is just ~20% about detecting their implant. Detecting the stuff they do with their implant is what matters way more. Local priv esc, cred dumping, lateral movement, etc. Just saying 🤷‍♂️
1
3
20
JMP RSP@0xffhh
10 Oct 2022
Hey @KLM, i’m waiting for 6 months already for a claim to be handled. Don’t you think it’s about time to fix this? Already called you a few times and you keep saying ‘it’s busy’. So taking the shaming route now…
4
JMP RSP@0xffhh
20 Jul 2022
Does anyone have a working .NET core gadget for a deserializing vulnerability with json.net? The documented .NET framework gadgets don’t work in core. #SharingIsCaring
JMP RSP retweeted
FalconForce Official@falconforceteam
17 Jun 2022
It’s #FalconFriday and summer is here! Take a refreshing dive into our newest blog, where we will shed some light on how Certipy and Rebeus work with UnPAC-the-hash and shadowing creds, and how to detect these techniques with our free #Kusto detections. medium.com/falconforce/falco…
1
9
19
JMP RSP@0xffhh
18 May 2022
Does anyone know what the status is of API Monitor? Is in dead? Will it ever get an update or be open sourced? I have so many usecases and/or feature requests…🤯 Cc: @rohitab
1
3
JMP RSP@0xffhh
4 Mar 2022
👇👇
Olaf Hartong@olafhartong
4 Mar 2022
I'm exited to announce that our 4-day Advanced Detection Engineering for Windows training has been accepted for @BlackHatEvents in Las Vegas. This will be an in-person training! Looking forward to see you there! blackhat.com/us-22/training/… #DetectionEngineering #Sysmon #MDE #DFIR
1
JMP RSP@0xffhh
19 Nov 2021
Putting a fake password for honey account in GPP passwords. Mwuahahah 😈
2
8
JMP RSP@0xffhh
17 Oct 2021
Replying to @Staatsloterij
@Staatsloterij kunnen jullie vertellen waarom jullie mij spam sturen op een e-mailadres wat uitgelekt is bij een hack? Het gaat om mails verstuurd van promotrades. Marketing mails sturen door gelekte emails te kopen is behoorlijk illegaal…🙄
2
1
JMP RSP@0xffhh
17 Oct 2021
Cc voor @NLLoterij (Lotto.) die hetzelfde doet.
JMP RSP@0xffhh
15 Sep 2021
Does anybody know the max number of APIs you're allowed to use in a CS BOF? I'm apparently hitting a limit, but don't know what the limit is and don't know if the limit is the number of unique APIs or total number of calls to Win32 APIs. Any help and retweet appreciated.
2
1
JMP RSP@0xffhh
4 Sep 2021
A while back, I encountered this at the local pet store. It roughly says that the data of anyone buying a sturgeon should be registered and disclosed to dutch intelligence at request. Can someone explain why the (dutch) intelligence is interested in sturgeons? Cc: ⁦@AIVD
2
1
JMP RSP@0xffhh
4 Sep 2021
To be precise, I get the point that the sturgeon is endangered, but why is the dutch intelligence interested in (this?) endangered animal? Whats the relationship with national security?
JMP RSP@0xffhh
10 Aug 2021
JMP RSP retweeted
FalconForce Official@falconforceteam
6 Aug 2021
Happy Friday everybody! This edition of #FalconFriday we focus on detection backup tampering on Azure. medium.com/falconforce/falco… #FalconForce #AzureBackup #DetectionEngineering #DFIR
5
9
JMP RSP@0xffhh
5 Jul 2021
Reverse engineering undocumented windows api’s is so frustratingly slow.😑😑 Luckily, the pot of offensive gold and the end of the rainbow is big 😈😈mwuahaha
1
4
JMP RSP@0xffhh
23 Jun 2021
Stay tuned for the AD CS detection rules. @falconforceteam is currently working hard to write and test reliable detections usable in production environments. Don't forget to checkout the whitepaper by @tifkin_ and @harmj0y, they've done most detection engineering already. THNX
8
JMP RSP@0xffhh
18 Jun 2021
I got my shot yesterday but I think I got the wrong one. Instead of Pfizer, I'm seeing an AstraZeneca WiFi everywhere I go :( Anybody managed to crack the handshake already and get the master password?
5
JMP RSP@0xffhh
30 May 2021
😞😞
MotoGP™🏁
@MotoGP
30 May 2021
We’re deeply saddened to report the loss of Jason Dupasquier On behalf of the entire MotoGP family, we send our love to his team, his family and loved ones You will be sorely missed, Jason. Ride in peace
JMP RSP retweeted
Peleg Hadar@peleghd
11 May 2021
CVSS 9.9! The vulnerability we ( @OphirHarpaz) found, CVE-2021-28476 (Hyper-V RCE), was patched today! Our research, fuzzer and vulnerability details was submitted to @BlackHatEvents and @defcon, there is a lot to look forward to. msrc.microsoft.com/update-gu…

5
84
284
JMP RSP@0xffhh
17 Mar 2021
I wonder if there is a positive correlation between those who agree with ‘guns dont kill ppl, ppl kill ppl’ and those who agree with ‘github shouldn’t have removed the exchange poc’. Not judging, just curious...🤷🏻‍♂️
Load more