All posts in Uncategorized

■■■■□ AdStrike — AI Powered Active Directory Attack Framework 💀🔥 A modular red-team framework built for advanced AD operations, Kerberos workflows, ADCS abuse, credential access, lateral movement & attack-path analysis. ⚡ 🔥 58 interactive modules 🛡️ Kerberos-aware workflows 🤖 AI-assisted operator agent 📊 HTML / JSON / Markdown reporting ⚔️ BloodHound, Impacket, Certipy, NetExec integration…

■■■□□ Telegram, the FSB, and the Man in the Middle Investigation. The technical infrastructure that underpins Telegram is controlled by a man whose companies have collaborated with Russian intelligence services. https://www.occrp.org/en/investigation/telegram-the-fsb-and-the-man-in-the-middle

■■■■□ Free media links website. A guy named nbatman on Reddit accidentally built the most useful website on the internet. It’s called FMHY (Free Media Heck Yeah). This is the website Google delisted from search for DMCA violations, Reddit shadow-banned for promoting piracy, the Motion Picture Association flagged as a top piracy threat, and the…

■■■■□ The Vehicle May Be Sick: Denial of Diagnostic Services by Exploiting the CAN Transport Protocol. Hacking a Hyundai Elantra through the diagnostic protocol — and transferring a 4GB file over a CAN bus. Security researchers Seungjin Baek, Seonghoon Jeong, and Huy Kang Kim published research focused on attacks against automotive diagnostic communication at the…

■■■□□ Hackers Can Weaponize Lenovo Driver to Terminate EDR Processes. Hackers Can Weaponize Lenovo Driver to Terminate EDR Processes Researcher: Jehad Abudagga

■■□□□ Patch diffing using AI. My Windows reverse engineering and exploit research workflow has been: 1. Pick a binary to research like tcpip.sys 2. Use github.com/joshterrill/po… to automate seeing existing binary versions, download, and generate diffs from them 3. Load the resulting .binexport’s and .bindiff into an LLM and ask it to analyze 4. Look…

■■■□□ 🇷🇺 Federal Security Service allegedly targeted in agent database leak A threat actor on an underground forum is claiming to leak databases allegedly tied to Russia’s Federal Security Service, also known as the FSB. The actor claims the post includes sample records and download access for alleged agent-related database content. 𝗪𝗵𝗮𝘁’𝘀 𝗮𝗹𝗹𝗲𝗴𝗲𝗱𝗹𝘆 𝗲𝘅𝗽𝗼𝘀𝗲𝗱: •…

⬡ OSIRIS: An Open Source Intelligence & Reconnaissance Integrated System. A real-time global intelligence dashboard that aggregates live flight tracking, CCTV networks, earthquake monitoring, conflict zone mapping, and 24/7 news feeds into a single GPU-accelerated interface. https://github.com/simplifaisoul/osiris

■■■■■ Compromising Telecom Systems: Deploying and Detecting the BPFDoor Backdoor. Chinese Backdoor for Telecom Systems The Chinese have been using a backdoor to maintain persistence across telecom systems. The backdoor attaches itself to a raw network socket and inspects incoming traffic. It sees packets before firewall rules have a chance to process them. So even…

■■■■□ Threat Intelligence Report: ZionSiphon OT Malware First. https://dti.domaintools.com/research/threat-intelligence-report-zionsiphon