Cody Thomas @its_a_feature_
Mythic Developer (https://t.co/Uz4fOxIUbe) | @SpecterOps @[email protected] Joined July 2016-
Tweets792
-
Followers7K
-
Following274
-
Likes4K
Recently, I created a YT video on how to utilize Discord as C2 traffic broker: youtu.be/YluiBE_E4ts Amazing job by @checkymander and the whole Mythic C2 team! Great work guys!
As you've noticed in the agenda of x33fcon, Nidhogg now has full integration to @checkymander's Athena and now it can be used with Mythic C2 infrastructure. The API available here: github.com/Idov31/Nidhogg… If you want to learn about this and more, make sure to watch my talk :)
As you've noticed in the agenda of x33fcon, Nidhogg now has full integration to @checkymander's Athena and now it can be used with Mythic C2 infrastructure. The API available here: github.com/Idov31/Nidhogg… If you want to learn about this and more, make sure to watch my talk :)
Would anybody be interested in short tips of the week for Mythic and its various agents? Is there an easy format people like to use for this or a way to make them easily searchable afterwards?
I just published a blog and tool for the LSA Whisperer work that was presented at the SpecterOps Conference (SOCON) back in March. If you are interested in getting credentials from LSASS without accessing its memory, check it out! medium.com/specter-ops-po…
#OBTS v7.0 🤩🤩🤩
🏅🎉 Victory for Mythic! 🎉🏅 🎊🏆 The echoes of the competition have settled, and one legend stands triumphant – Mythic takes the 1st place in Purple March Madness! 🎉✨ Their journey has been nothing short of epic, woven into the annals of the game's history! 🌟📜
🌌✨ The final duel is set – Sliver or Mythic? 🧙♂️📜 Your votes have never mattered more! You've got 3 days to cast the deciding spell in Purple March Madness! 🗳️💥 Let's get the votes pouring in like never before! Share, vote, and let's make some noise for our finalists! 🔮🏆…
🌌✨ The final duel is set – Sliver or Mythic? 🧙♂️📜 Your votes have never mattered more! You've got 3 days to cast the deciding spell in Purple March Madness! 🗳️💥 Let's get the votes pouring in like never before! Share, vote, and let's make some noise for our finalists! 🔮🏆…
@theart42 @its_a_feature_ @EricaZelic @_xpn_ @Flangvik Shameless plug, but drop by the #merlin or #mythic channels in the BloodHound slack to ask questions, provide feedback, or share your successes ghst.ly/BHSlack
I’ve used a lot of Adam’s work throughout the years, and now I actually get to work with him! So excited for him to join the team!
I’ve used a lot of Adam’s work throughout the years, and now I actually get to work with him! So excited for him to join the team!
I updated Freyja to work with #Mythic v3.2.20 If you haven't checked it out yet, it is a GoLang Purple Team agent that compiles for macOS, Linux, and Windows. github.com/MythicAgents/f…
Hermes is finally updated for Mythic 3.0 and it doesn't require the Darling kernel module anymore! This means the Hermes container is _much_ more stable. Read about the update here :D slyd0g.medium.com/upgrading-herm…
I recently had the honor of joining @cedge318 and @marcusransom on the Mac Admins Podcast (podcast.macadmins.org/2024/02/27/epi…) to chat about the Keychain research I did for Objective By The Sea in 2022 (youtube.com/watch?v=jKE1ZW…). It was stressful for my first podcast, but they were great!
Just wrote a post on how the @SnowflakeDB's Red Team built out our macOS CI/CD + payload development environment with AWS EC2 and @cirrus_labs's Tart. Check it out :) medium.com/snowflake/maco…
Have you used a web shell on an offensive assessment recently? Were you able to task and create it through your C2 framework? I'm excited to announce the new Arachne agent for Mythic that allows you to do just that! Check it out posts.specterops.io/spinning-webs-…
I have been playing around with the Apollo agent of Mythic C2 the past couple of weeks and decided to try and add some new features. I combined the work of RunOF by @Nettitude_group to add a loader to run your favorite BOF's and ... [1/2]
Justin Elze @HackingLZ
52K Followers 5K Following Hacker/CTO @TrustedSec | Former Optiv/SecureWorks/Accuvant Labs/Redspin | Race carsFlorian Roth @cyb3rops
180K Followers 2K Following Head of Research @nextronsystems #DFIR #YARA #Sigma | detection engineer | creator of @thor_scanner, Aurora, Sigma, LOKI, YARA-Forge | always busy ⌚️🐇Florian Hansemann @CyberWarship
75K Followers 47 Following Father, Founder @HanseSecure, Pentesting, Student, ExploitDev, Redteaming, InfoSec & CyberCyber; -- Mastodon: https://t.co/KFSKYUN98MDave Kennedy @HackingDave
207K Followers 6K Following Founder @Binary_Defense @TrustedSec Co-Owner https://t.co/HQC75WhdJh. @WeHackHealth Podcast. Fam First/Hacker/CSO/USMC/Intel/Fitness. Motto: Make world a better placeMike Felch (Stay Read.. @ustayready
15K Followers 2K Following Pentester / Red Team | Hacking since Renegade BBS backdoors | Dev since vb3 | Content since '99-'03 ezines | Prior CrowdStrike / BHIS | In Christ's gripmRr3b00t @UK_Daniel_Card
92K Followers 7K Following 真理的揭露者 Quis custodiet ipsos custodes fella in cyberspace #nafo undercover #FVEY Lovely Horse #fella #meme #farm #appreciator #cyber #specialistJosh @passthehashbrwn
7K Followers 344 Following Adversarial Simulation at IBM, tweets are mine etc.Rad @rad9800
6K Followers 830 Following labs @praetorianlabs opinions are my own and not of my employermgeeky | Mariusz Bana.. @mariuszbit
11K Followers 611 Following 🔴 Red Team operator, ex-MWR/F-Secure pentester, ex-AV engine developer @ESET, green tea addict. 🫖 @[email protected]klez @KlezVirus
6K Followers 668 Following Principal Cyber Security Consultant at Digital Trust Consulting Services, BSI - Opinions are my ownSEKTOR7 Institute @SEKTOR7net
12K Followers 332 Following Homo Aptus. Vincit qui se vincit - Publilius Syrus. Consulting, Training, Technology, Cyber domain, and more... @x33fcon supporter.Dominic Chell 👻 @domchell
16K Followers 531 Following Just your friendly neighbourhood red teamer @MDSecLabs | Creator of /r/redteamsec | https://t.co/3k3EBAZqGd | https://t.co/KwO2OwDOklan0n @an0n_r0
11K Followers 716 Following CRT(E|O|L) | OSCP | @RingZer0_CTF 1st (for 2yrs) | HackTheBox Top10 | RPISEC MBE | Flare-On completer | GoogleCTF writeup winner | SSD research | Math MSc |🇭🇺Jean @Jean_Maes_1994
11K Followers 1K Following Director of Advanced Assessments -EU @neuvik | @sansoffensive Certified instructor/SEC565 author/SEC699 co author https://t.co/haRI3ruvlgsn🥶vvcr💥sh @snovvcrash
10K Followers 439 Following Sr. Penetration Tester / Red Team Operator @ptswarm :: Author of Pentester’s Promiscuous Notebook (https://t.co/rL1sv5A2R7) :: He/him :: Tweets’re my pwn 🐣n00py @n00py1
13K Followers 955 Following Retweeter of InfoSec/Offsec/Pentest/Red Team. Occasional blogger/Independent security research. [email protected] on MastodogeMarcello @byt3bl33d3r
29K Followers 531 Following CyBeRsEcUrItY | Not afraid to put down with some THICC malware on disk | securing and breaking AI @ProtectAICorp | Ex @spacexR. @JiggaPls
5 Followers 729 Followingw33t @w33t_io
64 Followers 158 Following I'm a clown and an infosec engineer. Check out my cybersecurity nonprofit if you're interested in breaking into the industry!Intel Scanner @IntelScan_1
2 Followers 61 FollowingRomain @Romain344965
6 Followers 118 FollowingPr3izh3r @pr3izh3r
46 Followers 588 Following Security enthusiast - Love to learn and share Opinions are my ownslv ramana @TslvRamana
17 Followers 315 Following Security Analyst | protocol analysis | Network analysis| Hackthebox | LearnerDharamveer Kotiya @Dharamveer73127
7 Followers 48 Followingsink0Rswim @laceandload
106 Followers 2K FollowingWesley Whetstone @Jckwhet
459 Followers 593 Following Staff CPE @stripe, @Salt_Project_OS fan boy, part time candlestick maker. prev @square, @facebookdiarrhea_goat @diarrhea_goat
2 Followers 276 Following Systems eng by day, pentester by night. Sharing what I learn along the way and randomly bitching about IBD.John Grageda @DrTerdnugget
3 Followers 29 FollowingTana Tanita @CCMaldev
1 Followers 29 FollowingRJ @CISO_by_the_Sea
16 Followers 82 Following I'm the CISO by the sea, so... CISO. MSSP Founder. Cybersecurity nerd. I make the complex simple.Nahom @nahom_aseged
2 Followers 192 FollowingPtkatz @ptkatz
3 Followers 59 FollowingAlan James @alanjame_
70 Followers 627 FollowingSignalOnSky @on_signal_sky
1 Followers 53 FollowingTony Clock @EvalStrings
138 Followers 807 Following <?php eval(base64_decode('ZWNobyAiRXZhbHN0cmluZ3MiOw==')); ?> CVEs are for snitches. Catch and release bug huntersydpy @5eedpie
0 Followers 45 FollowingChris P @ghostie_
3K Followers 977 Following Info Sec Person. Views expressed here are my own. Interested in #ICS #SCADA #REDTEAM #SOCIALENGINEERINGDan @Relativ3pa1n
8 Followers 97 Followingh4xZ @h4x_z93638
10 Followers 31 FollowingMagna @0xMagna
524 Followers 688 Following Cyber security Elephant 🐘 | OSEP | OSWE | OSCP | OSWP | CRTO | PACES | CRTE | CRTP | eJPT | Mentor/Ex Mod at @realtryhackme 'May the force be with you'Bryan @brymars1
20 Followers 165 FollowingM @exploratio_hack
26 Followers 754 FollowingAdvik @Ad_vi_k
50 Followers 2K FollowingKhundrakpam Muhindro @khundrakpams
3 Followers 525 FollowingS19 @d9eger
0 Followers 5K Followingfoolishviper @Rakeshs23500
75 Followers 781 FollowingPharoah @Pharoah104782
79 Followers 264 Followingmoldyacorn @moldyAcorn
4 Followers 141 Following ✝ Love dogs. Overly proud of my Honda Civic Si. I try to do security stuff.Ezsecurity @Ezecurity
1 Followers 139 FollowingJohn Sanders @Sandman46615
146 Followers 1K FollowingNamitch @NamitchCyber
15 Followers 102 FollowingIroh @0xIr0h
15 Followers 165 Following Cybersecurity enthusiast. Here to follow recent news. Mostly red team enjoyer.f10aty @f10aty
6 Followers 130 Followingyoussef bassily @youssef_bassily
6 Followers 120 FollowingEmilyissaved @PertinentTopic
10 Followers 308 FollowingJustin Elze @HackingLZ
52K Followers 5K Following Hacker/CTO @TrustedSec | Former Optiv/SecureWorks/Accuvant Labs/Redspin | Race carsFlorian Roth @cyb3rops
180K Followers 2K Following Head of Research @nextronsystems #DFIR #YARA #Sigma | detection engineer | creator of @thor_scanner, Aurora, Sigma, LOKI, YARA-Forge | always busy ⌚️🐇Dave Kennedy @HackingDave
207K Followers 6K Following Founder @Binary_Defense @TrustedSec Co-Owner https://t.co/HQC75WhdJh. @WeHackHealth Podcast. Fam First/Hacker/CSO/USMC/Intel/Fitness. Motto: Make world a better placeippsec @ippsec
111K Followers 350 FollowingVincent Yiu @vysecurity
27K Followers 203 Following Follow me for Cybersecurity #Thought #Leadership. Director Red Team. Help organizations safeguard their businesses from the bad guys.b33f | 🇺🇦✊ @FuzzySec
32K Followers 844 Following 意志 / Antiquarian @ IBM Adversary Services / Ex-TORE ⚔️🦅 / I rewrite pointers and read memory / AI Psychoanalyst / Teaching @CalypsoLabsmgeeky | Mariusz Bana.. @mariuszbit
11K Followers 611 Following 🔴 Red Team operator, ex-MWR/F-Secure pentester, ex-AV engine developer @ESET, green tea addict. 🫖 @[email protected]bohops @bohops
13K Followers 454 Following Full StackOverflow Developer | Security Researcher | Red/PurpleDominic Chell 👻 @domchell
16K Followers 531 Following Just your friendly neighbourhood red teamer @MDSecLabs | Creator of /r/redteamsec | https://t.co/3k3EBAZqGd | https://t.co/KwO2OwDOklBinni Shah @binitamshah
132K Followers 175 Following Linux Evangelist, Malwares , Security Enthusiast, Philanthropist , Reformist , Jain. binitamshah at protonmail dot comn00py @n00py1
13K Followers 955 Following Retweeter of InfoSec/Offsec/Pentest/Red Team. Occasional blogger/Independent security research. [email protected] on MastodogeDirectoryRanger @DirectoryRanger
31K Followers 100 Following This account assembles and disseminates information related to Active Directory and Windows security.Dirk-jan @_dirkjan
25K Followers 173 Following Hacker at @OutsiderSec. Researches AD and Azure (AD) security. Likes to play around with Python and write tools that make work easier.James Forshaw @tiraniddo
48K Followers 364 Following Security researcher in Google Project Zero. Author of Attacking Network Protocols. Tweets are my own etc. Mastodon: @[email protected]Marcello @byt3bl33d3r
29K Followers 531 Following CyBeRsEcUrItY | Not afraid to put down with some THICC malware on disk | securing and breaking AI @ProtectAICorp | Ex @spacexMac Admins Podcast @MacAdmPodcast
2K Followers 124 Following A podcast for Mac admins by Mac admins! The team: @tbridge777, @cedge318, @marcusransom, @smithjw, and @emilyooo. New episodes weekly.MacAdmins Conference @macadminsconf
2K Followers 1 Following An annual gathering of systems administrators interested in deploying, managing, and securing Apple products and services. Our official tag is #psumacStephen Hinck (he/him.. @StephenHinck
837 Followers 462 Following InfoSec pro turned customer success advocate - I love helping others succeed. Statements are my own.Scoubi @ScoubiMtl
2K Followers 249 Following InfoSec, Threat Hunting, Detection Engineering, DFIR and some personal stuff.Cas van Cooten @chvancooten
10K Followers 661 Following Benevolently malicious offensive security enthusiast || OffSec Developer & Malware Linguist || NimPlant & NimPackt author || @ABNAMRO Red TeamOutflank @OutflankNL
5K Followers 11 Following Offensive Tooling for Red Teams, Red Teaming and TrainingsKuba Gretzky @mrgretzky
13K Followers 642 Following Offensive security tools developer. Reverse engineer, vulnerability researcher and ex-MMO game hacker. Creator of Evilginx. @[email protected]Joe Mansour @jsmnsr
36 Followers 344 FollowingJamie Shaw @1nPr0c
5K Followers 535 Following Principal Security Consultant / Red Team Lead @mdseclabsJeff McJunkin @jeffmcjunkin
12K Followers 4K Following Started in ops and blue, now I hack for a living. SANS author/instructor in Oregon. Founder: https://t.co/c36tmCG20T. He/him. @[email protected]Josh Feehs @eip_4141
44 Followers 40 FollowingMelvin langvik @Flangvik
9K Followers 465 Following Team Lead @kovertno , previously Red Team @TrustedSec , terrible creator of InfoSec content 📹Opinions are my own and not the views of my employer.Greg Darwin @gregdarwin
2K Followers 659 Following Software development manager for Cobalt Strike @FortraOfficial | Professional nerd | Star Wars geek | WednesdayiteMr.Un1k0d3r @MrUn1k0d3r
12K Followers 506 Following I don't know how to search on Google so I do research on my own and tweet about it. Hacking as a life styleSentinelOne @SentinelOne
52K Followers 1K Following ONE autonomous platform to prevent, detect, respond, and hunt. Do more, save time, secure your enterprise: https://t.co/N75g1HAnCs 🐱💻Chris Thompson @retBandit
6K Followers 650 Following Global Head of Red team @ IBM X-Force. MITRE CTID, CREST, Blackhat Review Board. inveni et usurpaAaron Grattafiori @dyn___
6K Followers 2K Following AI/ML Red Teaming Lead at Meta. Ex-Security Red Team Lead. Ex-Principal Consultant and Researcher @ iSEC Partners/NCC Group.Elad Shamir @elad_shamir
5K Followers 38 FollowingDEFCON Group DFW @DC214DFW
4K Followers 169 Following DCG214, the DEFCON group for the DFW area. Join us on the 2nd Wednesday of every month for presentations, news discussion, and community! dm for discord info.BSidesDFW @BSidesDFW
4K Followers 39 Following https://t.co/P2PYDcLE6j https://t.co/pl9yzR8jpi #BSidesDFW2023 target date pending 04 Nov 2023. Until then -- https://t.co/JLA4KuIoHGBSides Austin @BSidesAustin
3K Followers 74 Following BSides Austin 2024: December 5th - 6th (back to two days of in-person talks!)CCob🏴�.. @_EthicalChaos_
8K Followers 414 Following Ceri Coburn: Hacker | R̷u̷n̷n̷e̷r̷ DIYer| Vizsla Fanboy and a Little Welsh Bull apparently 🏴 Author of poorly coded tools: https://t.co/P6tT2qQksCjhey ▲🐻🎈 @jh3yy
99K Followers 149 Following ⚡️ Showing you how to bring ideas to life with code 💼 Senior DX Engineer at @vercel 🫡 Prev: @google 🐻 https://t.co/rRqcWhrAgW 📺 https://t.co/7FlZg84Rr8 ❤ @seaottaOtterHacker @OtterHacker
5K Followers 79 Following Professional redteamer and malware development enthusiast ! I will share some tips and experiences. Look at my work here : https://t.co/cxLBvW7pcIAndy Rozenberg @andyrozen
338 Followers 396 FollowingErika Noerenberg gutt.. @gutterchurl
3K Followers 3K Following malware and kittens, basically. she/herwerdhaihai @werdhaihai
295 Followers 459 Following Adversary Simulation Consultant @SpecterOps https://t.co/pztdK7udq3Gergely Kalman @gergely_kalman
1K Followers 312 Following bug bounty hunter I guess @[email protected]Phorion @PhorionTech
49 Followers 2 Following Phorion Technology focuses on building specialised macOS security products for use in the modern enterprise 🍎Olaf Hartong @olafhartong
16K Followers 934 Following @FalconForceTeam | researcher with a camera | Microsoft MVP | Snow man role model | https://t.co/bKZGWDNkDJ | https://t.co/5KkGf4YykTLsec @lsecqt
3K Followers 145 Following Doing ethical hacking / red teaming / penetration testing and offensive coding videos. I am OSCP / OSEP / Vulnerability Researcher / YoutuberMoloch @LittleJoeTables
4K Followers 657 Following Supreme Commander, Red Team @BishopFox https://t.co/YcsVLOezujBinary Defense @Binary_Defense
13K Followers 509 Following We're determined to make the world a safer place through our-industry recognized managed security services. Founded by @HackingDave|Sister company @TrustedSecMerlin @merlin_c2
2K Followers 379 Following Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in Go. This account is owned and run by tool creator @Ne0nd0gMichael Barclay @michaelbarclay_
365 Followers 101 Following Architect of Defensive Services @specteropsJonathan Bar Or (JBO).. @yo_yo_yo_jbo
3K Followers 1K Following Security research architect for @Microsoft Defender for cross-platform. Member of @thegooniesctf. Linux, Windows, Android, MacOS, iOS, ChromeOS, baremetal.Recently, I created a YT video on how to utilize Discord as C2 traffic broker: youtu.be/YluiBE_E4ts Amazing job by @checkymander and the whole Mythic C2 team! Great work guys!
As you've noticed in the agenda of x33fcon, Nidhogg now has full integration to @checkymander's Athena and now it can be used with Mythic C2 infrastructure. The API available here: github.com/Idov31/Nidhogg… If you want to learn about this and more, make sure to watch my talk :)
🎉 Exciting news! 🎉 The agenda for #x33fcon has just been announced! 📢 Don't miss out on insightful #talks, engaging #workshops, and #networking opportunities. Who's presenting this year? Check it out: x33fcon.com/#!conference.md #cybersecurity #conference #workshops #training
As requested from one of my followers, I wrote a blogpost about basic process injection with C - lsecqt.github.io/Red-Teaming-Ar… While the topic might be basic to a lot of you, I hope you can still find something useful there.
@cerbersec @its_a_feature_ @au5_mate I am writing c pic agent and it was really tough in the beginning but mythic is super flexible
@its_a_feature_ @au5_mate @cerbersec not to add that the best documentation is you answering 24/7/365 within 5 mins everytime and i am not sure how you do it :D
@cerbersec @au5_mate it is a pain in the beginning till you understand the comms but it gets easier.
@trickster012 @cerbersec 100% just takes some upfront time to read through and understand things. Docs are really good, plenty of examples to read through (e.g. the other public agents), also relatively straightforward to write your own listeners too. IMO it's the best half-way house to pulling together…
UI/UX Tip ⚡️ Use toggles/switchers when an action will be applied immediately. Otherwise - checkboxes.
@its_a_feature_ Could do it like @vysecurity used to do with tweets and a hashtag #mythicc2tips or somethibg
I had a great idea but it turns out Red Siege is way ahead of me, and it looks like it was pretty slept on. Dev tunnels look like an awesome c2 redirector. I'll post a bit on how to do this with Mythic agents later. Nice stuff @jmpalk
Our Senior Security Consultant @jmpalk is back again with some fresh techniques! This new blog dives into leveraging Microsoft Dev Tunnels for advanced C2 redirection! Read: redsiege.com/tunnels Check out this blog to learn: Exploring New Avenues: The blog dives into…
I just published a blog and tool for the LSA Whisperer work that was presented at the SpecterOps Conference (SOCON) back in March. If you are interested in getting credentials from LSASS without accessing its memory, check it out! medium.com/specter-ops-po…
2 weeks down at @SpecterOps... Not gonna lie.. peeking behind the curtains has never been so awesome 🤩
#OBTS v7.0 🤩🤩🤩
Stoked to announce "Objective by the Sea" v7.0: objectivebythesea.org/v7/index.html #OBTS v7: 📍 Maui, Hawai'i 🗓️ Dec. 2nd - 6th '24 ...hope to see you all there! 🌞🌴
🏅🎉 Victory for Mythic! 🎉🏅 🎊🏆 The echoes of the competition have settled, and one legend stands triumphant – Mythic takes the 1st place in Purple March Madness! 🎉✨ Their journey has been nothing short of epic, woven into the annals of the game's history! 🌟📜
Finally made it to the team member page on @SpecterOps "About Us" page. Yes my picture looks like I work at Asda and am about to offer to carry your bags to your car... but still classing this as my win for the month 🤣specterops.io/about/team/
@EricaZelic Implying I keep them around long enough to update lol They're like disposable cameras to me
Crucible beta is now open! Free for everyone. Come learn how to hack, evaluate, and work with ML systems in a safe hosted environment. crucible.dreadnode.io Be on the look out for new challenges and announcements as we expand our materials.
@theart42 @its_a_feature_ @EricaZelic @_xpn_ @Flangvik Shameless plug, but drop by the #merlin or #mythic channels in the BloodHound slack to ask questions, provide feedback, or share your successes ghst.ly/BHSlack