@KINGSABRI profile picture
๐“ข๐“ช๐“ซ๐“ป๐“ฒ @KINGSABRI
Joined March 2009
  • Tweets 21,045
  • Following 2,146
  • Followers 8,310
765 Photos and videos
Black Hat Ruby โ€” Offensive Ruby programming book for hackers & pentesters Available on Amazon, Order your copy Now! amazon.com/dp/B08JHSF6GT #BlackHatRuby #Rubyfu #BlackHat #Ruby #Redteam
Book Cover, foreword (@muts) & coverword (@hdmoore)

ALT Book Cover, foreword (@muts) & coverword (@hdmoore)

Table of Content

ALT Table of Content

54
171
590
๐“ข๐“ช๐“ซ๐“ป๐“ฒ retweeted
Jacob Paullus@psycep_
Apr 17
gopacket is live! Check it out, it is intended to be a full reimplementation of Impacket in Go (it is in beta please send me bug reports) github.com/mandiant/gopacketโ€ฆ

GitHub - mandiant/gopacket: Gopacket is a clean Go implementation of Impacket, a library intended...

Gopacket is a clean Go implementation of Impacket, a library intended for working with network protocols. - mandiant/gopacket

github.com
7
126
421
60,813
๐“ข๐“ช๐“ซ๐“ป๐“ฒ retweeted
#Vร˜ID@0x4161
May 14
Active Directory Home Lapโš ๏ธ ุจุญูƒู… ุงู†ูŠ ู…ุง ู„ู‚ูŠุช ุจูŠุฆู‡ Active Directory ุชูƒูˆู† Local ูˆ ู…ุฎุตุตู‡ ู„ู„ุฏุฑุงุณู‡ ุบูŠุฑ GOAD ุงู„ูŠ ุฌุฏุง ุซู‚ูŠู„ ุจู†ูŠุช Lab ูˆ ุฑูุนุชู‡ ุจ GitHub ุชู‚ุฏุฑ ุชุญู…ู„ู‡ ุงู„ุญูŠู† ุนู†ุฏูƒ ุนู† ุทุฑูŠู‚ Vagrant ุงู„ู€Environment ุนุจุงุฑู‡ ุนู† Parent/Child Domain - ูˆ ุฌู‡ุงุฒูƒ ุงู†ุช ูŠุงู„ู€Attacker github.com/0x4161/active-dirโ€ฆ

GitHub - 0x4161/active-directory-lab: Active Directory attack lab โ€” 36 scenarios covering enumera...

Active Directory attack lab โ€” 36 scenarios covering enumeration, Kerberos, delegation, ACLs, ADCS, coercion, persistence, and cross-domain attacks - 0x4161/active-directory-lab

github.com
7
17
283
19,630
๐“ข๐“ช๐“ซ๐“ป๐“ฒ retweeted
striga
@striga_ai
May 11
PoCs for Apache Tomcat Unauth RCE (CVE-2026-34486) and Apache httpd Pre-auth RCE (CVE-2026-23918) are now public on our Github. Tomcat exploit is fully reliable. httpd chain works in a controlled lab setup with a known info leak. github.com/striga-ai/CVE-202โ€ฆ github.com/striga-ai/CVE-202โ€ฆ

GitHub - striga-ai/CVE-2026-34486: EncryptInterceptor fail-open bypass in Apache Tomcat Tribes...

EncryptInterceptor fail-open bypass in Apache Tomcat Tribes clustering leading to unauthenticated RCE via Java deserialization. - striga-ai/CVE-2026-34486

github.com
4
184
739
93,814
๐“ข๐“ช๐“ซ๐“ป๐“ฒ retweeted
ๆ›พๅ“ฅ
@AabyssZG
May 10
HashDump-BypassEDR๏ผšgithub.com/AabyssZG/HashDumpโ€ฆ ้€š่ฟ‡็ณป็ปŸ็™ฝ็จ‹ๅบ Reg.exe ็š„ๆ‹“ๅฑ•ๅบ”็”จ๏ผŒๅทงๅฆ™็ป•่ฟ‡EDR็š„ๆ‹ฆๆˆช็‚น๏ผŒๅฎž็Žฐ็ป•่ฟ‡EDRไปŽ่€ŒDumpHash๐Ÿ˜ˆ ่ฏฅๆ–นๆณ•้’ˆๅฏนWindows็ณปๅˆ—ๅ‡ๆœ‰ๆ•ˆ๏ผŒๆ“ไฝœ้šพๅบฆไธๅคง๏ผŒๅ…ทๆœ‰ๅฎžๆˆ˜ไปทๅ€ผ๐Ÿฅณ ๆœฌ้กน็›ฎๅฎžๆˆ˜ๆ–‡็ซ ๏ผšblog.zgsec.cn/archives/EDR-Dโ€ฆ ๆบไปฃ็ ๅ’ŒReleaseๅทฒๅ‘ๅธƒ๏ผŒๅธˆๅ‚…ไปฌ้บป็ƒฆ็‚นไธชStar๏ผŒไธ‡ๅˆ†ๆ„Ÿ่ฐข๏ผ๐Ÿ˜

GitHub - AabyssZG/HashDump-BypassEDR: Windows็ป•่ฟ‡EDRๅฎž็ŽฐDumpHash

Windows็ป•่ฟ‡EDRๅฎž็ŽฐDumpHash. Contribute to AabyssZG/HashDump-BypassEDR development by creating an account on GitHub.

github.com
8
166
623
40,176
๐“ข๐“ช๐“ซ๐“ป๐“ฒ retweeted
๐Ÿฅ๐Ÿณ๏ธโ€๐ŸŒˆ Benjamin Delpy
@gentilkiwi
Apr 17
Just pushed a minor update to #mimikatz 2 ๐Ÿฅ(no - it's *NOT* the version 3) to support specific GMSA DPAPI passwords in LSA secrets to be able to to decrypt Masterkeys > github.com/gentilkiwi/mimikaโ€ฆ Only for @topotam77 convenience ;)
6
116
519
64,370
๐“ข๐“ช๐“ซ๐“ป๐“ฒ retweeted
VirusTotal@virustotal
Apr 16
VirusTotal Inside the Agent Loop VT-community plugins for OpenClaw and Hermes agent more info: blog.virustotal.com/2026/04/โ€ฆ
6
21
48
5,351
๐“ข๐“ช๐“ซ๐“ป๐“ฒ retweeted
๐™ ๐™€ ๐™‡ ๐™„ ๐™“ ๐™ˆ@felixm_pw
Apr 15
Introducing Combat Theater, a malware technique emulator built for blue teams, detection engineers and security researchers to perform testing and detection validation quickly and easily. Check out the introduction blog to learn more! combat.theater/blogs/introduโ€ฆ

13
69
281
59,303
๐“ข๐“ช๐“ซ๐“ป๐“ฒ retweeted
Zero-Point Security@_ZeroPointSec
Apr 2
Exciting news: Zero-Point Security has joined @fortraofficial and will work alongside the @_CobaltStrike, @OutflankNL, and @_CoreImpact teams to develop the next generation of offensive security training! Get more details on the blog cobaltstrike.com/blog/new-moโ€ฆ

New Mouse in the House: Zero-Point Security Training Joins the Fortra Family

Fortra has acquired Zero-Point Security, and Daniel Duggan (RastaMouse) is joining the team to build out the next generation of offensive security training.

cobaltstrike.com
11
52
330
17,629
๐“ข๐“ช๐“ซ๐“ป๐“ฒ retweeted
Cobalt Strike@_CobaltStrike
Apr 2
Never been happier to have a mouse in the house. ๐Ÿญ @_RastaMouse of @_ZeroPointSec has officially joined @Fortra! The mind behind Red Team Ops, one of the most respected training courses in offensive security, is now building what's next with us. Details: ow.ly/6RhV50YCkyr
10
35
195
8,137
๐“ข๐“ช๐“ซ๐“ป๐“ฒ retweeted
Moritz@m_r_tz
Apr 1
The FLARE team now freely distributes its quality reverse engineering and malware analysis educational content at github.com/mandiant/flare-leโ€ฆ. Launched with: - Malware Analysis Crash Course - Go Reversing Reference - Intro to TTD

GitHub - mandiant/flare-learning-hub: Free educational content on reverse engineering and malware...

Free educational content on reverse engineering and malware analysis from the FLARE team - mandiant/flare-learning-hub

github.com
6
401
1,257
65,275
๐“ข๐“ช๐“ซ๐“ป๐“ฒ retweeted
Panos Gkatziroulis ๐Ÿฆ„
@ipurple
Mar 28
BridgeHead - Native C access to Active Directory over ADWS, no .NET, no WCF, no HTTP stack github.com/ZakiPedio/BridgeHโ€ฆ

GitHub - ZakiPedio/BridgeHead: Native C access to Active Directory over ADWS, no .NET, no WCF, no...

Native C access to Active Directory over ADWS, no .NET, no WCF, no HTTP stack. - ZakiPedio/BridgeHead

github.com
20
75
3,365
#ุงู„ุชุตูˆูŠุฑ_ูŠุฎุฏู…_ุงู„ุนุฏูˆ
1
2
541
๐“ข๐“ช๐“ซ๐“ป๐“ฒ retweeted
Mr.Z@zux0x3a
Mar 10
I am releasing a new toolkit I built for IIS-based lateral movement and code execution within IIS worker pool process's memory. Phantom ASPX Loader & PhantomLink -- a two-part toolkit for reflectively loading native DLLs into IIS w3wp.exe worker processes via ASPX. github.com/zux0x3a/Phantom/tโ€ฆ
4
78
248
16,817
ุดูƒุฑุง ู„ @fatoomdes
1
245
๐“ข๐“ช๐“ซ๐“ป๐“ฒ retweeted
ููˆุงุฒ ุงู„ู„ุนุจูˆู† ๐Ÿ‡ธ๐Ÿ‡ฆ
@fawaz_dr
Feb 27
ูˆูŽุญู’ุฏูŠ ูˆุฑููŠุญู ุงู„ูƒูŽูŠู’ุฏู ุชููˆู‡ูู†ู ู‚ููˆูŽู‘ุชูŠ ูˆูŠูƒุงุฏู ุฑูŽู…ู’ู„ู ุชูŽู…ูŽุงุณููƒูŠ ูŠูŽู†ู’ู‡ูŽุงู„ู ูˆุงู‡ูŠ ุงู„ู‚ููˆูŽู‰ ุฑูŽุบู’ู…ูŽ ุงูƒู’ุชูู…ูŽุงู„ู ููุชููˆูŽู‘ุชูŠ ูุนูŽุณูŽู‰ ุบูŽุฏุงู‹ ุชูŽุชูŽุจูŽุฏูŽู‘ู„ู ุงู„ุฃูŽุญูˆุงู„ู ุฃูŽุฏู’ุฑูŠ ุจุฃู†ู‘ ุงู„ู„ู‡ูŽ ุฌูŽุงุจูุฑู ุนูŽุซู’ุฑูŽุชูŠ ูˆุจุฃู†ู‘ ุนูู‚ู’ุจูŽู‰ ุงู„ูƒุงุฆุฏููŠู†ูŽ ูˆูŽุจูŽุงู„ู ุจุงู„ุจูŽูˆู’ุญู ุฃูŽู…ู’ ุจุงู„ุตูŽู‘ู…ู’ุชู ุฃูŽูƒู’ุจูŽุญู ุฏูŽู…ู’ุนูŽุชูŠุŸ ุดุงุฎูŽ ุงู„ุณูู‘ุคุงู„ู ูˆุณูŽูŠู’ุทูŽุฑูŽ ุงู„ุฅุดูƒุงู„ู ุงู„ุจูŽูˆู’ุญู ูˆูŽูŠู’ู„ูŽ ุงู„ุจูŽูˆู’ุญู ูŠูŽูู’ุถูŽุญู ู„ูŽูˆู’ุนูŽุชูŠ! ูˆุงู„ุตูŽู‘ู…ู’ุชู ุฑูŽุบู’ู…ูŽ ุฃูŽู…ูŽุงู†ูู‡ู ู‚ูŽุชู‘ุงู„ู! ุดุนุฑ: ู‚ุฏู…ูˆุณ ุฃู„ุญุงู† ูˆุชูˆุฒูŠุน ูˆู…ู†ุชุงุฌ: ุนุจุฏุงู„ู…ุญุณู† ุจู† ุฌุฒุงุน @anamsmmy youtube.com/watch?v=LHfcuIw6โ€ฆ
2:32
2
18
69
12,525
๐“ข๐“ช๐“ซ๐“ป๐“ฒ retweeted
Mr. OS@ksg93rd
Feb 20
#OpSec #Red_Team_Tactics 1โƒฃ. Initial Access. The Art of Getting In 0xdbgman.github.io/posts/iniโ€ฆ // Payload Development (DLL Sideloading, Shellcode Loaders, Syscalls), HTML Smuggling, Phishing (QR Code Quishing, Teams Phishing), AitM/MFA Bypass (Evilginx, Device Code Phishing), Psw Spraying, Exploiting Public-Facing Apps, Vishing, Physical Access (Rubber Ducky, Bash Bunny), Supply Chain attacks with real-world APT case studies 2โƒฃ. Red Team Infrastructure. The Full Picture: From Domain to Beacon 0xdbgman.github.io/posts/redโ€ฆ // C2 Frameworks, Redirectors, CDN Relays (Azure, AWS, GCP), Serverless Lambda, Cloudflare Tunnels, Phishing Infrastructure, Mail Servers, Malleable Profiles, and full OPSEC hardening 3โƒฃ. Persistence: The Art of Staying In 0xdbgman.github.io/posts/perโ€ฆ // 50 techniques across Windows, Scheduled Tasks, WMI, Services, DLL/COM/AppDomainManager, UEFI Bootkits, Active Directory, Linux, macOS, and Cloud (Azure/AWS/GCP, Kubernetes)

Initial Access: Modern Intrusion Techniques

Red Teamer & Low-Level Developer. Deep dives into Windows Internals, Kernel Exploitation, Driver Analysis, and Red Team techniques.

0xdbgman.github.io
2
100
367
15,937
๐“ข๐“ช๐“ซ๐“ป๐“ฒ retweeted
Moritz@m_r_tz
Feb 17
Happening right now (open till Sat, 2/21/26)! A week-long CTF dedicated exclusively to reverse engineering. Hosted by crackmes.one, inspired by the legendary Flare-On Challenge. crackmesone.ctfd.io/

Crackmes.one

crackmes.one
5
31
145
10,320
๐“ข๐“ช๐“ซ๐“ป๐“ฒ retweeted
GitHub Projects Community
@GithubProjects
Feb 8
Stop guessing why a process is running on your system.
8
187
1,599
87,331
ุดุฑุญ ุฌู…ูŠู„ ูˆู…ุจุณุท ุฃุญุณู†ุช!
Turki@0xTurkiNeptune
Jan 31
ูƒูŠู ุงู„ู€EDR ูŠู‚ุฏุฑ ูŠูƒุดู ุงู„ู…ุงู„ูˆูŠุฑ ููŠ ุงู„ู€runtime ุŸ ูƒุชุจุช ู…ู‚ุงู„ ุฃุดุฑุญ ููŠู‡ ุงู„ููƒุฑุฉ ุจุดูƒู„ ู…ุจุณุทุŒ ุฃุชู…ู†ู‰ ูŠููŠุฏูƒู… medium.com/@0xTurki/how-edr-โ€ฆ
3
1,523
It was a nice one buddy. I personally enjoyed it.
AbuMuslim (ุฃุจูˆู…ูุณู’ู„ูู…)
@m19o__
Jan 30
ูƒู„ ู…ุฑุฉ ุจุณุฌู„ ุญุงุฌุฉ ุจู‚ูŠุช ุฃููƒุฑ ู…ู„ูŠูˆู† ู…ุฑุฉ ู‚ุจู„ ู…ุง ุฃู†ุดุฑ. ุงู„ุชุนุฑุถ ู„ู„ู†ุงุณ ู…ุจู‚ุงุด ุณู‡ู„ ุฒูŠ ุงู„ุฃูˆู„ุŒ ูˆุจู‚ูŠุช ุฃู‚ู„ ุชุญู…ู„ ู„ู‚ู„ุฉ ุงู„ุฃุฏุจ ูˆุงู„ุชุทุงูˆู„ุŒ ูˆู…ุจู‚ุงุด ุนู†ุฏูŠ ุทุงู‚ุฉ ุฃุณุชู‚ุจู„ ูƒูˆู…ู†ุช ุณุทุญูŠ ุฃูˆ ู…ุชุนุฌุฑู. ูˆุฑุบู… ูƒุฏู‡ุŒ ุจุญุงูˆู„ ุนู„ู‰ ู‚ุฏ ู…ุง ุฃู‚ุฏุฑ ุฃุดุงุฑูƒ ุงู„ู„ูŠ ุงุชุนู„ู…ุชู‡ ูˆุงู„ู„ูŠ ู„ุณู‡ ุจุชุนู„ู…ู‡. ู„ุฃู†ูŠ ูุงูƒุฑ ูƒูˆูŠุณ ู‚ูˆูŠ ุฅุญุณุงุณ ุฅู†ูƒ ุชุจู‚ู‰ ุชุงูŠู‡ ูˆู…ุด ู„ุงู‚ูŠ ุญุฏ ูŠุงุฎุฏ ุจุฅูŠุฏูƒ. ูˆุจุตุฑุงุญุฉุŒ ุจุญุงูˆู„ ุฃุนู…ู„ ู„ุฃุฎุฑุชูŠโ€ฆ ู…ุญุฏุด ุถุงู…ู† ุนู…ุฑู‡ุŒ ูˆูŠู…ูƒู† ุจุนุฏ ู…ุง ู†ู…ุดูŠ ู…ู† ุงู„ุฏู†ูŠุง ูŠูุถู„ ููŠ ุญุงุฌุฉ ุงู„ู†ุงุณ ุชูุชูƒุฑู†ุง ุจูŠู‡ุง. ุขู‡ุŒ ุจูŠุญุตู„ ุฎู„ุงูุงุช ุจูŠู†ูŠ ูˆุจูŠู† ู†ุงุณุŒ ูˆุฏู‡ ุทุจูŠุนูŠ. ุจุณ ุงู„ู†ุงุณ ุงู„ู…ุญุชุฑู…ุฉุŒ ุงู„ู„ูŠ ุนู†ุฏู‡ุง ุฃุตู„ุŒ ุนู…ุฑู‡ุง ู…ุง ุชุฎู„ูŠ ุงู„ุฎู„ุงู ูŠูˆุตู„ ู„ุชุทุงูˆู„ ุฃูˆ ุนุฏุงูˆุฉ. ุงู„ูˆู‚ุช ุงู„ู„ูŠ ุจู‚ุถูŠู‡ ููŠ ุงู„ุชุญุถูŠุฑ ู„ุฃูŠ ุญู„ู‚ุฉ ู…ุด ู‚ู„ูŠู„ุŒ ูˆุฏู‡ ูˆุณุท ุดุบู„ ูˆุญูŠุงุฉ ูˆุถุบุท. ูุทุจูŠุนูŠ ุฌุฏุงู‹ ุฅู† ุงู„ุชุฑูƒูŠุฒ ู…ูŠูƒูˆู†ุด ุฏุงูŠู…ุงู‹ ููŠ ุฃุญุณู† ุญุงู„ุงุชู‡ุŒ ูˆูˆุงุฑุฏ ุฃู‚ูˆู„ ุญุงุฌุฉ ุบู„ุท. ุงู„ู…ูˆุถูˆุน ู…ุด ุฃูƒู„ ุนูŠุดุŒ ูˆู„ุง ููŠู‡ ุฃูŠ ู…ู‚ุงุจู„ ู…ุงุฏูŠุŒ ูˆู„ุง ุญุชู‰ ุนู†ุฏูŠ ุดุบู„ ุฎุงุต ุจุณุชููŠุฏ ู…ู†ู‡ ุจุณุจุจ ุดุนุจูŠุชูŠ. ุงู„ุญู„ู‚ุฉ ุฏูŠ ุจุงู„ุฐุงุชุŒ ูƒู†ุช ุนุงูŠุฒ ุฃุนู…ู„ู‡ุง ุฎู…ุณ ุณุงุนุงุชุŒ ูˆู…ุด ู…ุชุฃูƒุฏ ุฅู†ู‡ุง ูƒุงู†ุช ู‡ุชูƒููŠ ูƒู„ ุงู„ู„ูŠ ููŠ ุฏู…ุงุบูŠ. ูุงู„ู†ุตูŠุญุฉ ุงู„ูˆุญูŠุฏุฉ: ู…ุชุฏุฎู„ุด ุนู„ู‰ ุญุงุฌุฉ ุฒูŠ ุฏูŠ ูˆุงู†ุช ู…ุชูˆู‚ุน ุชุงุฎุฏ ูƒู„ ุงู„ุฅุฌุงุจุงุช. ุฃู†ุง ุจุญุงูˆู„ ุฃูุชุญ ุจูŠุจุงู† ูˆุฃุชูƒู„ู… ููŠ ูƒู„ ุฌุฒุก ุดูˆูŠุฉ ุนุดุงู† ุงู„ุตูˆุฑุฉ ุชุจู‚ู‰ ุฃูˆุถุญ. ูˆูƒู„ ุจูˆุฏูƒุงุณุช ู„ู‡ ุฌู…ู‡ูˆุฑ ู…ุฎุชู„ูุŒ ูˆู„ูƒู„ ู…ู‚ุงู… ู…ู‚ุงู„. ุฎู„ูŠูƒูˆุง ุฎูุงูโ€ฆ ูˆุฒู‚ูˆุง ู…ุนุงูŠุง ูƒุงู… ุณู†ุฉ ู‡ู†ุนูŠุดู‡ู….
1
2
1,102
Load more