OSCE // OSCP // Ethical Hacker & Red Teamer @ABNAMRO // Full Stack Developer // CTF Player @DonkeysTeam

Amsterdam, NL
Joined March 2011
PEzor v2 — New Output Formats and Cobalt Strike Integration Cobalt Strike's execute-assembly lets operators run .NET assemblies without touching the disk. But wouldn’t be nice if we could execute arbitrary executables too with the same ease? iwantmore.pizza/posts/PEzor2…
10
208
423
Francesco Soncina retweeted
Hacking is 90% practice. There's no shortcut to working hard, learning to pwn web, binary apps, Linux, hacking tools, write assembly / C / Python / XYZ. Only 10% of your time should be spent with books and in high quality courses. So you want to be a hacker? Put in the work!
16
238
1,134
Francesco Soncina retweeted
We've noted our findings after a couple of years auditing #Windows #Defender Attack Surface Reduction events. Hopefully it will help anyone considering block mode. Being able to use the credential stealing/lsass rule was the surprise for me. medium.com/palantir/microsof…
12
143
323
Francesco Soncina retweeted
Talked with @ShitSecure today about Nim and PEZor. Covenant -> Nim -> PEZor = ciao Defender Awesome work by @byt3bl33d3r & @ShitSecure and @phraaaaaaa Check out: github.com/phra/PEzor github.com/byt3bl33d3r/Offen… s3cur3th1ssh1t.github.io/Pla… #redteaming #Pentesting
2
93
207
GIF
Francesco Soncina retweeted
Are you interested in learning about Windows Evasion and Obfuscation techniques? Join us on Saturday, Jan 23, for our free webinar, Evading Detection - A Beginner's Guide to Obfuscation. #cybersecurity #infosec When: Jan 23, 0900 - 1100 PST Register: register.gotowebinar.com/reg…
4
80
231
Francesco Soncina retweeted
Wireshark in the terminal? What a time to be alive... termshark.io/ Thanks for showing me this @mandreko!
3
56
153
Francesco Soncina retweeted
Amazing work! The Actually Portable Executable by @JustineTunney A PE/ZIP/SH(ELF/MachO) polyglot. Very well documented and decorated source.
2
82
329
Francesco Soncina retweeted
In my quest to write a fast IPv4+6 parser, I have written a slow-but-I-think-correct parser, to use as a base of comparison. In doing so, I have discovered more cursed IP address representations that I was previously unaware of. A thread!
40
552
1,971
Show this thread
Francesco Soncina retweeted
This looks like a really useful site: wadcoms.github.io/ An interactive cheat sheet with offensive commands.
2
31
117