A simple C++ Windows tool to get information about processes exposing named pipes
Demonstration of couple of UAC bypass methods using Havoc C2.
https://100daysofredteam.medium.com/using-havoc-c2-to-bypass-uac-b3a93c33442a
New Open-Source Tool Spotlight 
SpiderFoot is an open-source OSINT tool to automate data collection about targets. It supports over 200 modules, integrating DNS, IP, email, and infrastructure analysis. Perfect for security audits or threat intel workflows. #OSINT #Cybersecurity
Project link on #GitHub 
https://github.com/smicallef/spiderfoot
#Infosec #Cybersecurity #Software #Technology #News #CTF #Cybersecuritycareer #hacking #redteam #blueteam #purpleteam #tips #opensource #cloudsecurity
— 
P.S. Found this helpful? Tap Follow for more cybersecurity tips and insights! I share weekly content for professionals and people who want to get into cyber. Happy hacking 
New Open-Source Tool Spotlight
Sqlmap is an open-source tool for automating SQL injection detection and exploitation. It supports multiple databases like MySQL, PostgreSQL, Oracle, and more. Widely used for penetration testing, it includes features like database dumping, password cracking, and file system access.
Remember: powerful tools require responsible use. #CyberSecurity #PenTesting
Project link on #GitHub https://github.com/sqlmapproject/sqlmap
#Infosec #Cybersecurity #Software #Technology #News #CTF #Cybersecuritycareer #hacking #redteam #blueteam #purpleteam #tips #opensource #cloudsecurity
— P.S. Found this helpful? Tap Follow for more cybersecurity tips and insights! I share weekly content for professionals and people who want to get into cyber. Happy hacking
Hey @viss see this? CISA says you're wrong!
https://www.theregister.com/2025/03/13/cisa_red_team_layoffs/
New Open-Source Tool Spotlight
Nuclei is a tool for automating vulnerability scanning using customizable YAML-based templates. Its strength lies in speed and flexibility, making it ideal for penetration testers and security researchers. Think of it as crafting your own scanner that adapts to your needs. #CyberSecurity #VulnerabilityTesting
Project link on #GitHub https://github.com/projectdiscovery/nuclei
#Infosec #Cybersecurity #Software #Technology #News #CTF #Cybersecuritycareer #hacking #redteam #blueteam #purpleteam #tips #opensource #cloudsecurity
— P.S. Found this helpful? Tap Follow for more cybersecurity tips and insights! I share weekly content for professionals and people who want to get into cyber. Happy hacking
We shall call our host something.on.someoneelses.tld. What could go wrong?
Hmmm, a service running as DA calling c:\nosuchfile.exe to start where Users has create rights...
What could go wrong? Genuinely wondered if the box had already been popped...
New Open-Source Tool Spotlight
Mimikatz is a well-known open-source tool for extracting credentials from Windows systems. It can retrieve plaintext passwords, hash credentials, and even Kerberos tickets from memory. Used by both researchers and attackers, it highlights the importance of secure credential management in Active Directory environments. #CyberSecurity #WindowsSecurity
Project link on #GitHub https://github.com/gentilkiwi/mimikatz
#Infosec #Cybersecurity #Software #Technology #News #CTF #Cybersecuritycareer #hacking #redteam #blueteam #purpleteam #tips #opensource #cloudsecurity
— P.S. Found this helpful? Tap Follow for more cybersecurity tips and insights! I share weekly content for professionals and people who want to get into cyber. Happy hacking
DOGE destroying cybersecurity in the USA. This also has impact on all those digital services from the US we rely on
https://www.theregister.com/2025/03/12/cisa_staff_layoffs/
#doge #musk #cybersecurity #redteam #cisa
New Dispatch Drop
Attackers will get in—just give them time.
In this week's THOR Collective Dispatch, we talk why security teams must test their defenses: https://dispatch.thorcollective.com/p/why-cybersecurity-teams-need-to-test
A Windows standalone executable tool that allows you to change the password of user/computer accounts in Active Directory (AD) via MS-SAMR protocol
New Open-Source Tool Spotlight
Bettercap is a powerful, modular tool for network attacks and monitoring. It supports ARP spoofing, DNS spoofing, packet sniffing, and more. Written in Go, it's flexible and efficient for intercepting and manipulating network traffic on various protocols. #cybersecurity #networking
Project link on #github https://github.com/bettercap/bettercap
#Infosec #Cybersecurity #Software #Technology #News #CTF #Cybersecuritycareer #hacking #redteam #blueteam #purpleteam #tips #opensource #cloudsecurity
— P.S. Found this helpful? Tap Follow for more cybersecurity tips and insights! I share weekly content for professionals and people who want to get into cyber. Happy hacking
An article about the security implications of abandoned third-party JavaScript libraries
https://blog.fraktal.fi/examining-external-dependencies-in-web-applications-0846894cecdd
When was the last time you screwed up and connected your gear to denied infrastructure and got exposed? Elevate your presence or admin plane to cryptographically separated macsec segment (instead those vlan's) with my simple macpipe [1]. Available from Github free & open source.
[1] https://github.com/resiliencetheatre/macpipe/
#macsec #redteam #dfir
For EU folks, @mitreattack community is coming around again in May. Register here: https://attack-community.org/event/.
Also. v17 release is slated for 22nd April.
