CEO and Co-Founder of Octopwn
Joined June 2014
- Tweets 6,815
- Following 444
- Followers 11,929
- Likes 5,538
772 Photos and videos
SkelSec retweeted
Jun 11
After “The Art of Evasion” @x33fcon I’m publishing NimSyscallPacker to the public. This is the most advanced public Packer/Loader I’m aware of:
github.com/S3cur3Th1sSh1t/Ni…
7
110
352
16,577
SkelSec retweeted
Jun 8
🚨 New advisory by @Kruxinator & Christian Hager: Local privilege escalation in @genetec 's #RabbitMQ deployment (#CVE-2026-25112)
Writable dir missing binary SeImpersonatePrivilege = SYSTEM via Rotten Potato 🥔
Patch available. Apply now!
🔗 r.sec-consult.com/genetec
#privesc
9
18
2,942
SkelSec retweeted
Jun 5
alternatively, coffee snacks
silicon wafers would make phenomenal coffee coasters. who's building this?
13
59
1,532
44,447
SkelSec retweeted
May 28
I recently tore apart SuperBox streaming devices and found that "free TV" has a serious catch. Our new report breaks down how these boxes are weaponized into residential proxies via exposed ADB ports, root access & rogue apps bundling Popanet. plume.com/superproxy-researc…
2
4
802
SkelSec retweeted
Apr 27
Anyone interested in what you need for proper loader development in 2026? My talk for @x33fcon was accepted, so I'll take about Malware again. 🔥 It's a unique talk and will only be held there this year! Hope to see some of you in Poland. 😎
8
12
117
6,148
SkelSec retweeted
Apr 20
I often need to explore Windows kernel crashdumps when I'm on Linux/macOS.
WinDbg unfortunatelly doesn't work in Wine.
So... I did a thing. It's multiplatform - doesn't depend on dbgeng.dll nor DIA. WinDbg-flavored.
And it's fast. Really fast.
github.com/vmi-rs/ephemera
6
74
403
26,799
Highly recommend reading this if you're into windows kernel vuln research!
Juian found some cool vulns using this technique -which we can't publish :/ -
Something new is also coming out for pypykatz bc of this in the upcoming months
Apr 20
Finally, it is published 😁 Making Vulnerable Drivers Exploitable Without Hardware - my latest research on driver vulnerability hardware-gating, explaining the concept of hardware-dependent code and diving deep into creative deployment techniques - software-emulated phantom devices, driver restacking, and forced driver replacement — all explored through the lens of Bring Your Own Vulnerable Driver (BYOVD) attacks:
atos.net/wp-content/uploads/…
29
168
19,994
SkelSec retweeted
Apr 17
Just pushed a minor update to #mimikatz 2 🥝(no - it's *NOT* the version 3) to support specific GMSA DPAPI passwords in LSA secrets to be able to to decrypt Masterkeys
> github.com/gentilkiwi/mimika…
Only for @topotam77 convenience ;)
6
116
519
64,337
Shit like this makes my blood boil, and ppl wondering why I'm pushing out less and less public code...
Apr 14
New Mimikatz
Researchers took an old version of Mimikatz and taught it how to dump credentials from the latest operating systems!
The research: medium.com/@tanrikuluatahan/…
The repo:
github.com/tanrikuluatahan/m…
#redteam #pentesting
14
23
395
76,514
SkelSec retweeted
Duuuude VulDB is the worst, they made public all 3 of my original disclosures that include the fully working root shell exploits ....
3
4
39
12,140
SkelSec retweeted
Mar 18
WSUS fake updates for LPE or RCE when HTTP is being used? This one took many days and troubleshooting with claude but now we have a C2-Capable tool for the full stack including poisoning plus fake update delivery - the only thing we need is a low privileged C2 session! 🔥
5
41
210
13,763
🔥🐉 New GOAD Lab: DRACARYS
I’ve just released a new free lab environment on GOAD: DRACARYS.
The challenge includes 3 VMs and the objective is simple:
Start with no authentication and work your way up to Domain Admin.
Have fun exploiting it! 🔥🐉
mayfly277.github.io/posts/Dr…
12
98
298
17,711
SkelSec retweeted
Spread the word! @phrack CFP with demoscene cracktro is live. Turn up the volume and enjoy the awesome stylings of @PiotrBania with some hopefully inspiring text from phrack staff :)
phrack.org/
6
135
252
41,050