Hello friend
Joined January 2021
- Tweets 43
- Following 180
- Followers 292
- Likes 421
12 Photos and videos
Pinned Tweet
16 Mar 2024
Salut đđŒ
Jâai Ă©cris un article qui est un retour dâexpĂ©rience dâune attaque rĂ©elle sur un rĂ©seau Wi-Fi WPA2-Enterprise.
NâhĂ©sitez pas Ă me donner votre avis đ
virtualsamuraii.github.io/neâŠ
#redteam #wifi
7
24
110
7,037
VirtualSamurai retweeted
7 Nov 2025
You're starting a #redteam engagement tomorrow...Where would you train without spending tons of money ?
We are releasing a new redteam lab with :
- On-prem #ActiveDirectory
- 5 vulnerable machines
- Antivirus & Firewall
Available on November 8th here :
training.cyberwave.network
3
7
1,184
30 Oct 2025
NEW RED TEAM LAB đŽââ ïž
You're starting a red team engagement tomorrow...
- How would you manage to evade defense solutions (AV/EDR) ?
- Where would you train without spending tons of money ?
If you don't have the answers to these questions, don't worry, I got you covered.
I'm planning to release a new #redteam lab on @cyb3rw4v3 consisting of :
- A fictional company "on-prem" Windows #ActiveDirectory domain
- 5 intentionally vulnerable machines
- Antivirus and firewall
This vulnerable playground simulates a real world enterprise network, implements common vulnerabilities and misconfigurations and goes through the whole cyber kill chain (initial access, privilege escalation, lateral movement, defense evasion...).
Forget about the building/deploying/hosting part and focus only on what matters : your skills and tradecraft.
I'm also doing a #giveaway competition. I'm offering free access to the lab for 3 individuals !
How to join :
1ïžâŁ Like
2ïžâŁ Retweet
Winners announced on November 1st @ 5 PM UTC 2
3
6
13
1,170
1 Nov 2025
And the winners are :
- @L0rd5ud0
- @trevorsaudi
- @f0rk3b0mb
Congrats ! I will reach out via private message ;)
1
3
374
1 Nov 2025
Guys, please join our discord server so I can easily reach out.
discord.gg/gUjngstEvG
1
1
161
9 Jul 2025
During a Red Team engagement, one must be aware of every action, even when it comes to Wi-Fi testing.
Sometimes, we have to send "deauthentication" packets to authenticated devices using tools like Aireplay-ng, in an attempt to capture a handshake and access the targeted network through Wi-Fi.
While defenders could quite easily monitor the deauth attacks using the following filter on Wireshark : wlan.fc.type_subtype == 12, sometimes attackers forget to use the appropriate options that could really enhance their OPSEC.
For example, there's two options "-h" and "-s" in Aireplay-ng that both allow us to specify the source MAC address, replacing it with the access point's MAC address to mimick a legitimate deauth packet sent by the router.
1
7
246
21 Dec 2024
Hey there đđŒ
I have been using an Ansible playbook to deploy a phishing server on a cloud instance for my engagements.
Thought it might be useful for cyber security professionals out there.
github.com/VirtualSamuraii/fâŠ
1
35
129
8,097
7 Dec 2024
Salut đđŒ Voici un petit article qui explique comment il est possible de personnaliser des outils publics pour contourner les antivirus.
Ici, il sâagira de personnaliser lâagent Apollo du C2 Mythic pour contourner Windows Defender.
virtualsamuraii.github.io/reâŠ
2
16
614
2 Sep 2024
OSINT : Certaines entreprises divulguent des informations bien trop précieuses dans leurs offres d'emploi.
C'est par exemple le cas ici, l'entreprise en question donne mĂȘme la marque de son EDR. Ceci peut aider les attaquants Ă dĂ©velopper des malwares (implants, loaders, packers) taillĂ©s spĂ©cifiquement pour contourner cet EDR.
Dans le cadre d'un exercice Red Team, généralement les attaquants collectent ce genre d'informations pour mieux préparer leurs TTPs.
Mais en dehors du cadre légal, les ransomgangs et autres groupes étatiques (APT) peuvent en profiter pour déployer des rançongiciels ou des portes dérobées (espionnage industriel).
2
11
797
I've just started a blog on #maldev and #redteaming. Nothing fancy yet, just me trying to see if I've understood correctly.
The first post is about a custom version of GetModuleHandle and GetProcAddress in #go.
Check it out: blog.atsika.ninja/posts/custâŠ
5
33
104
13,522
8 Jul 2024
Hello world đ
In 2022, @0xNarek and I studied an APT named Serpent Group that has been discovered by @proofpoint and @VMware TAU.
This threat actor targeted numerous french government entities during the 2022 presidential campaign.
We reproduced their TTPs and came up with our own custom Serpent C2 Server.
github.com/VirtualSamuraii/sâŠ
1
6
11
1,079
5 Aug 2023
Salut, shalom, salam camarades.
Voici la 3eme partie de la série « Anatomie des EDR ».
Cette fois ci, on va voir les processus, services, PPL et clés de registre Windows, utilisés par un EDR.
virtualsamuraii.github.io/reâŠ
#redteam #windows #edr #maldev
10
38
3,598
9 Jun 2023
Hello,
Voici la partie 2 de la sĂ©rie dâarticles Anatomie des EDR.
Cette fois ci, on va voir le fonctionnement des drivers dâun EDR avec plus de dĂ©tails (kernel, callbacks, minifilters, etc).
virtualsamuraii.github.io/reâŠ
#redteam #maldev #edr #blueteam
1
13
28
2,237
27 May 2023
Salut salut,
Voici un premier article que jâai pondu pour dĂ©crire de maniĂšre trĂšs vulgarisĂ©e ce quâest
concrĂštement un EDR.
Jâai pris #SentinelOne en exemple car il est considĂ©rĂ© comme Ă©tant lâun des leaders.
virtualsamuraii.github.io/reâŠ
#redteam #maldev
3
17
43
4,289
7 May 2023
Hi there,
I just started my own blog to share some of my research.
The first two posts are disclosed vulnerability reports affecting #wordpress plugins for which it got assigned CVE-2022-3558 and CVE-2022-3634 a few months ago.
virtualsamuraii.github.io/vuâŠ
299