Sensitive young man
Joined April 2018
- Tweets 1,646
- Following 519
- Followers 1,650
- Likes 5,390
179 Photos and videos
Jun 5
Chat what are we even doing???
🔥 Just dropped a NEW PowerShell reverse shell in the PSSW100AVB repository!
✅ 100% AV bypass (June 2026)
✅ Ready for red team operations
👇Act fast — 2-5 days before this gets flagged too.
github.com/tihanyin/PSSW100A…
#Powershell #RedTeam #AVBypass #ReverseShell
2
8
615
kevin retweeted
May 28
Last time I dealt with MSRC.
Responsibly disclosed an issue with legacy auth that allowed me to spray passwords at <redacted endpoint> and avoid smart lockout.
Receives email.. 5 months after initial case opening.
“Doesn’t meet the bar for servicing”
Microsoft silently fixed. Closed case.
microsoft.com/en-us/msrc/blo…
18
87
675
88,704
kevin retweeted
A question I get quite often when advocating for people to write blogs is some variation of: Is it worth even doing blogs/writeups of "simple" things like ctfs or setting up things in a lab?
The short answer is: yes, absolutely.
The long answer is more nuanced:
3
4
96
7,508
kevin retweeted
Mar 16
Incredibly proud of the team in putting together our latest @TrustedSec BlackHat class. It's going to be an absolute blast and development is underway.
Hope to see you there!
blackhat.com/us-26/training/…
7
32
146
9,803
kevin retweeted
Mar 6
We are still seeing this on engagements, so I wrote a tool.
DameFlare is a Python 3 exploit for CVE-2019-3980. Unauthenticated RCE as SYSTEM via smart card auth bypass.
Full credit to @TenableSecurity for the original research/POC.
github.com/boydhacks/damefla…
1
7
722
kevin retweeted
Feb 19
An awesome example for a Messenger payload
Feb 19
Blink and you’ll miss it 🦎 In our latest blog, @GuhnooPlusLinux explains how Notepad plugins can be leveraged for code execution and how to quietly blend into a trusted process. Read now! hubs.la/Q043PvTs0
1
6
471
kevin retweeted
Feb 19
Blink and you’ll miss it 🦎 In our latest blog, @GuhnooPlusLinux explains how Notepad plugins can be leveraged for code execution and how to quietly blend into a trusted process. Read now! hubs.la/Q043PvTs0
2
25
41
5,709
Jan 19
Making an infinity casserole sauce where I save some of each one and put it into the next
1
1
178
kevin retweeted
24 Nov 2025
Our Targeted Operations experts @curi0usJack, @oddvarmoe, @jarsnah12, and @GuhnooPlusLinux are live on #Reddit right now for an AMA! Ask your questions, get pro-level answers. Join the conversation now! reddit.com/r/cybersecurity/c…
1
12
30
21,102
15 Nov 2025
What's a good encryption algorithm for someone just getting into crypto?
2
213
2 Nov 2025
Heartbreaking: Ordained Christian pastor posts worst take you've ever seen on social media
1
187
kevin retweeted
30 Oct 2025
Titanus already getting weaponized. Won't be long before more red teams realize this is a coffloader level release.
29 Oct 2025
Tools such as PsExec.py from Impacket are usually flagged for lateral movement due to the pre-built service executable that is dropped on the remote system. However, some vendors also flag Impacket based on its behaviour.
With RustPack, you can easily create service executables that won't be detected by signatures or behaviour-based detection. 😎
In this demo video, an unsigned service executable is generated. This will only fire the payload on a system with the hostname 'Win11' — environmental keying will prevent the payload from showing up in a sandbox or cloud analysis.
To avoid Impacket detection, we drop and execute the binary via the recently released Titanis protocol library from @TrustedSec:
github.com/trustedsec/Titani….
The result is an Adaptix C2 connection in the SYSTEM context. 🫡
#Pentest #RedTeam #Malware #OST
1
37
251
35,481