Just gotten back from @BSidesLeeds which was a fantastic event as always, thanks to everyone who came along to my talk, it was great to speak to so many people about such a diverse range of topics plus help those looking to break into the industry. A few folks asked about my course too, it can be found at lms.zsec.red and if you use code LTR101-10Y until end of August you can get 10% off too! I took the time this week in-between writing slides to reverse engineer the badge that @punksecurityuk put together for the BSides event and pulled the firmware apart and wrote it up as a blog post. You can find the full breakdown and write up here, warning it does spoil the functions of the badge so if you do want to hack it yourself be pre-warned: blog.zsec.uk/bsidesleeds2026…

If you’re an IT admin and you’re looking to get into pentesting, working towards internal pentesting is a great path. Because the hard part about pentesting is the remediations and guidance you need to provide the clients. And as an IT admin you likely have experience with the technologies and internal components you will now be poking at.

Cobalt Strike 4.13 has a new Aggressor hook to support BOF cocktails. Here's a quick walkthrough: rastamouse.me/bof-cocktails-…

Always happens when I take time off I end up writing things, here's the latest post blog.zsec.uk/baselining-wind… all about learning the baselines of Windows, it doesn't cover everything and anything because it'd end up being a book but I've spun up a lab with observability and tried to write some detections for UBA and baselining. Enjoy!

🕹️ SPEAKER ANNOUNCEMENT 🎮️ We're excited to have @zephrfish presenting his talk 'Archaic Creativity: Pulling At Infinite Threads'. Catch Andy's talk on Track 1, and keep an eye on our website and socials for the full schedule release! #BSidesLeeds #SpeakerAnnouncement

It’s been 10 years since I published my first book(LTR101), so to celebrate I’m giving 10% off my red team course, Malwareless Adversarial Emulation (MAE). MAE focuses on practical, real-world offensive tradecraft including malwareless operations, tunnelling, AD CS abuse, cloud pivoting, and detection-aware operations. Check it out here: lms.zsec.red Discount code: LTR101-10Y Valid until the end of August 2026. Thanks to everyone who has supported my work over the years. I genuinely appreciate it. #RedTeam #CyberSecurity #InfoSec #OffensiveSecurity #AdversaryEmulation #RedTeaming #CyberTraining #Malwareless

Remember, tomorrow is our second, and last, big ticket drop. Three sittings, 9:10, 13:00 and 19:00. Make sure you have your F5 fingers ready if you want to make sure you bag one before they sell out. ti.to/steelcon/2026

This image was my tldr

Nice email to get this morning from @Steel_Con So that confirms I’ll be speaking at Steelcon this year, more details to come soon on what the talk is but the title will be: Nutcase Running The Asylum: Overengineer it like you'd steal it

The #BSidesLDN2026 sponsorship call is open. If you want to reach the people who actually build, break, and defend systems, this is where they are. More information: bsides.london/sponsors

Exciting news: Zero-Point Security has joined @fortraofficial and will work alongside the @_CobaltStrike, @OutflankNL, and @_CoreImpact teams to develop the next generation of offensive security training! Get more details on the blog cobaltstrike.com/blog/new-mo…

The second round will be at 12 and the final round at 7pm. Kids tickets will be with the main drop after we have announced the speakers. And it looks like we might not be able to disable locking, we are working on it.

Here's a little project I spun up to track token usage across my various side projects, I've been working on training a local model and RAG but wanted to see how much my MCPs were costing me github.com/ZephrFish/TokenBu… maybe it'll be useful for you

A reminder, our first day of ticket sales is this Wednesday. These are before the talk announcements so are perfect for those who know all the talks are going to excellent and just want to guarantee their place. ti.to/steelcon/2026

@Starlink mini is unreal - took it on hols just plugged it in and threw it outside the room and getting 200mb 100 meters away by the poolside bar 😆🍺☀️

This is actually a pretty big deal. Nice work @_EthicalChaos_.

You've got till Friday 3rd to submit your talks and workshops. We've got plenty of talks but could do with a few more workshops, so if you've got an idea, but aren't sure, submit it anyway and let us decide forms.gle/hLXt1dibQrA6CUSM6

For all the malware analysts out there, how often do you see more advanced tradecraft out there utilizing memory execution techniques like reflective loading, BOF execution, etc... used outside of simulated attack scenarios?

People mentioning nmap and MSF don’t understand what a red team is.