Red Team & Offensive Research. Tweets are my own.

Joined May 2009
Oh no, my cover has been blown! 😂
#EnMedios 📻| El viceministro de Producción e Industrias @jackson_T destacó en #RadioUnion que el #FondoEmprende está dirigido a emprendedores con proyecto innovadores y se puede postular a través de fondoemprende.gob.ec
Show this thread
3
0
7
Introducing Telemetry Sourcerer, a tool to enumerate and disable kernel-mode callbacks, inline user-mode hooks, and ETW sessions used by AV/EDR on Windows. Thank you to @gentilkiwi, @fdiskyou, and @0x00dtm for their previous work this project builds on. github.com/jthuraisamy/Telem…
10
316
602
Show this thread
Just posted my article called "Code Signing on a Budget" which shows how easy it is to find/abuse legitimate code signing certificates. Using this, I found a valid code signing certificate belonging to a leading tech company and disclosed it to them. jackson-t.ca/certificate-the…
3
109
222
Before-and-After example of classic CreateRemoteThread injection.
0
2
12
Show this thread
Here's an implementation of a persistence technique found in Vault 7 that stores data in NVRAM variables. Data can survive OS re-imaging and cannot be enumerated with OS-level APIs. Requires admin. gist.github.com/jthuraisamy/…
1
35
53
Taking GitHub's CodeQL (formerly Semmle) for a spin with the VS Code extension and workspace. So far, so good with easy installation, digestible documentation, and a CTF tutorial. Docs: help.semmle.com/codeql/index… CTF: securitylab.github.com/ctf/j…
1
6
23
New challenge coins rolled in. Thanks @mikeboya!
0
0
6
Do you remember when you joined Twitter? I do! #MyTwitterAnniversary
0
0
2
CVE-2019-9730: Local privilege elevation in Synaptics Sound Device Driver package. Multiple OEMs affected. Exploit and write-up here: jackson-t.ca/synaptics-cxuti….
9
365
712
31,166
Show this thread