Joined August 2017
- Tweets 163
- Following 2,456
- Followers 888
- Likes 3,957
25 Photos and videos
Expl0itabl3 retweeted
Apr 2
There is this strange phenomena where people new to cybersecurity go way overboard trying to look cool and badass to give the facade of being really technical.
I'll tell you something right now. You probably won't like to hear it, but it is important.
Nobody cares about:
- Your certificates
- The conferences you've attended
- Your vendor swag
- What OS you're using
- How many LED's your computer has
Here is what your peers admire the most:
- If you're polite
- If you're willing to admit if you're wrong
- If you're easy to get along with
If you're just a chill nerd who is nice, easy going, willing to admit when you're wrong, you will go further than the big mean nerd with the galaxy brain
153
306
3,317
107,527
4 Apr 2025
🙌 @tijme
A recap of @tijme from #NullconGoa2025
1️⃣ Kong Loader 🍌 keeps malware undetectable in memory.
2️⃣ Outperforms sleep masks.
3️⃣ A new challenge for defenders
YouTube link: youtu.be/K3OY-ZNmMxo?feature…
#kongloader #offensivesecurity
4
315
3 Apr 2025
RT @0xBoku: As promised... this is Loki Command & Control! Thanks to @d_tranman for his work done on the project and everyone else on the t…
5
55
Expl0itabl3 retweeted
1 Mar 2025
I’ve started the development of a #Nimplant C2 beacon in truly position independent pure C-code.
It’s a PoC, highly opsec unsafe, but hopefully it inspires some people and sparks creativity! 👨💻
github.com/tijme/nimplant-be…
1
16
68
3,950
Expl0itabl3 retweeted
11 Feb 2024
Our @BSidesLondon Ivanti & Pulse Secure VPN kernel exploitation talk is live! The presentation is about shared research of my colleague Alex and me.
CVE-2023-38043, CVE-2023-35080 & CVE-2023-38543
youtube.com/watch?v=hmYK5yoR…
2
2
9
1,260
11 Dec 2023
👏👏
11 Dec 2023
#BSidesLondon2023 was fun! Had the opportunity to present a kernel exploit for PulseSecure VPN and Ivanti Connect Secure VPN. Shared research of my colleague Alex and me.
northwave-cybersecurity.com/…
1
1
309
12 Oct 2023
Truly an honor to be amidst such brilliant minds and passionate red teamers. 🔥 And those stroopwafels are simply the cherry on top! 🍒 Together with @tijme and @royrndrs 🥳
12 Oct 2023
A TLP RED conference for red teamers.
👌 quality content, some of the best red team firms present, and a group sized small enough so you can speak to everybody and discuss your ideas.
This is 🔥af and what we think confs should be like. We need more like this. #redtreat23
2
8
2,137
27 May 2023
Check out the insightful blog posts by @tijme , our respected Adversary Simulation lead and esteemed colleague.
26 May 2023
My new blog is live (tij.me/)! 🚀
• Fully open source (github.com/tijme/blog-v2).
• Automated SVG generation of IDA Pro graphs.
• Automated deployments via GitHub Pages.
• Support for all Jekyll plugins, even plugins unsupported by GitHub Pages.
3
496
Releasing a complete rewrite of "Understanding Windows Lateral Movements"
- 71 more slides
- Better explanations
- Less errors and bad assumptions
If you liked the 2019 version, you should check this one out
Available at attl4s.github.io/
8
347
809
79,789
31 Mar 2023
Highly recommended to join my awesome colleagues in this workshop!
31 Mar 2023
Thrilled to announce that I'll be giving a 2-hour Kernel Driver Exploitation lab at @HITBSecConf, together with my colleague Jan-Jaap. 🥳
If you want to develop your first malicious kernel driver (exploit), join us the 21st of April in Amsterdam!
4
334
After some months of very enjoyable research, I'm happy to release:
"Understanding a Payload's Life (featuring Meterpreter & other guests)"
Only slides are available at this time. You can find them at:
attl4s.github.io/assets/pdf/…
10
182
382
55,879
11 Mar 2023
Awesome research and writeup!
10 Mar 2023
We've just released the first post in the Cobalt Strike reflective loader blog series! 🥷This one took allot of effort and I am excited to share it with you! The better it does, the better i'll make the next ones 😉
securityintelligence.com/pos…
2
4
1,043
Expl0itabl3 retweeted
6 Mar 2023
2022 Year in Review
➡️Most common TTPs we saw in 2022
➡️Trends around IAB's
➡️Top detections
➡️Ransomware propagation methods
➡️and more!
thedfirreport.com/2023/03/06…
8
212
391
75,450
17 Feb 2023
Awesome work @chvancooten !!
17 Feb 2023
After almost 2 years of working on NimPlant as a personal side project, I’m proud to release it to the public! NimPlant is a light-weight, first-stage C2 implant written in Nim, with a supporting Python server and Next.JS web GUI.
Available here now! 👇
github.com/chvancooten/NimPl…
1
1
700
Expl0itabl3 retweeted
17 Nov 2022
Northwave has conducted research into the psychological effects of a ransomware crisis on people involved in mitigating a ransomware attack. The findings reveal the deep marks that a ransomware crisis leaves on all those affected.
northwave-security.com/wp-co…
1
4
5
Expl0itabl3 retweeted
9 Oct 2022
Cobalt Strike BOF to bypass UAC via the CMSTPLUA COM interface.
It masquerades PEB and utilises COM Elevation Moniker on the CMSTPLUA COM object to execute commands in an elevated context.
github.com/tijme/cmstplua-ua…
14
24
28 Sep 2022
Very nice elaboration of detections, bypasses and the fundamental why-question. Must read!
27 Sep 2022
The difference between signature-based and behavioural detections. As well as a little philosophy. 😎
s3cur3th1ssh1t.github.io/Sig…
3
1 Sep 2022
Didn't see this coming. Congratulations @OutflankNL! Very curious about what the future will bring us.
1 Sep 2022
Yeah!🤘@OutflankNL joins the @HelpSystemsMN family!
We're super excited about the new possibilities that lay ahead. Here's to even more R&D for our community, awesome offensive tools in OST and the most exciting red teaming gigs.
Details: outflank.nl/outflank-2.0/
1
16 Aug 2022
Super valuable to get acquainted with basic attack paths within Azure Active Directory. Thanks @nikhil_mitt !
16 Aug 2022
Congratulations to @Expl0itabl3 for clearing our Certified Az Red Team Professional exam! #AzADLab #CARTP #PentesterAcademy cc @nikhil_mitt bit.ly/3tT4M4v
4