Recently, I’ve been experimenting with Return Address Spoofing and developed a tool to call any WinAPI and spoof the return address. For a deeper dive, check out my blog post:hulkops.gitbook.io/blog/red-… #maldev #RedTeam #OffensiveSecurity #malware

I just pwned OpSalwarKameez24-1: Super-Star in Hack The Box! @hackthebox_eu labs.hackthebox.com/achievem… #HackTheBox #htb #CyberSecurity #EthicalHacking #InfoSec #PenTesting

I'm thrilled to share my latest project: AuthStager. This is a proof-of-concept tool that generates a shellcode stager with authentication. github.com/HulkOperator/Auth… Shout out to @MalDevAcademy, which is hands down the best resource to learn maldev.

After a little break, it’s time to get back to the @SANSOffensive Intro to C workshops! 😁 Always free. Always recorded. Register online when you have a chance.

Excited to share my hardest research about UAC 🤯 "Bypassing UAC with SSPI Datagram Contexts" 🔥 Enjoy the read! 👇 splintercod3.blogspot.com/p/…

Free Malware Analysis Course, covers malware concepts, malware analysis, and black-box reverse engineering techniques class.malware.re/ #cybersecurity #malware

😱 Passed the #OSEE certification! Can't believe I did it! Thanks again @Blomster81 , @_sickn3ss_ and @xct_de from @offsectraining for this journey to remember. Read about my endeavors and tips for researchers that contemplate starting this as well. gerr.re/posts/osee-review #BHUSA

I'm super thrilled to share that I passed the OSCP last month. Thank you, @offsectraining, really loved the updated material. Here's my blog sharing my experiences and advice to prepare for this journey: thehulksec.com/index.php/202… #oscp #TryHarder

If you are threat hunting, the easiest way to hunt for DLL sideloads is to check the path of the process. Most red teams will run their payloads from C:\programdata, Temp, Public, Appdata or from desktop. Most windows applications don't run from these locations unless until they are C# applications. And if you find some signed process suspicious, you can always check the file creation time to validate if it was recently copied to the host. Unsigned DLLs are an easy give away. For the red teams, note that Microsoft itself doesn't sign all their DLLs. This means if you simply add telemetry to your DLL to make it look like a genuine company, you would be able to evade most hunts. Also, please don't use built-in Microsoft binaries and run them from abnormal locations. There are several other better sideloads from Cisco/Citrix and generic IT apps which work much better than the MS ones. #RedAndBlueTips

PowerShell Obfuscation Bible A collection of techniques, examples and a little bit of theory for manually obfuscating PowerShell scripts to achieve AV evasion. github.com/t3l3machus/PowerS… #infosec #pentesting #redteam t.me/hackgit/8331

Google Search Operators Cheat Sheet 👉🏿Full HD Image: github.com/Ignitetechnologie… #infosec #cybersecurity #cybersecuritytips #pentesting #redteam #informationsecurity #CyberSec #networking #networksecurity #infosecurity #cyberattacks #cybersecurityawareness #bugbounty #bugbountytips

Linux Folder Structure

Our very own Senior Technical Recruiter Amy Krutz shared valuable advice on how to write an effective cybersecurity resume: youtube.com/watch?v=zZSiml6v… Some tips 👇🧵

⬇️ Resources for a Successful #Cybersecurity Job Hunt ⬇️ 🔴Build a Strong Resume ➡Resume Now: resume-now.com/build-resume ➡Novoresume: novoresume.com/ ➡Information Technology resume examples: jobhero.com/resume/examples/…

Malware Analysis Series has exactly 450 pages so far: MAS_1: exploitreversing.com/2021/12… MAS_2: exploitreversing.com/2022/02… MAS_3: exploitreversing.com/2022/05… MAS_4: exploitreversing.com/2022/05… MAS_5: exploitreversing.com/2022/09… MAS_6: exploitreversing.com/2022/11… MAS_7: exploitreversing.com/2023/01…

I’ve spent the last 8 weeks looking for the best AI tools on the internet. Here are some of the best ones 👇 🧵

Need an almost invisible, post-exploitation, persistent, fileless, LPE backdoor? There are many, but this one looks really beautiful for me: type "sc.exe sdset scmanager D:(A;;KA;;;WD)" from an elevated command prompt.