Posted by jpluimers on 2026/04/08
Not just for red teamers (:
[Wayback/Archive] GitHub – D00Movenok/BounceBack: ↕️🤫 Stealth redirector for your red team operation security
Via [WaybackSave/Archive] Florian Roth ⚡️ on X: “This is a legitimate part of red teaming”
[Wayback/Archive] Tom Dörr on X: “Reverse proxy hides infrastructure from scanners …”
--jeroen
Posted in Communications Development, Development, Go (golang), Power User, Red team, Security, Software Development | Leave a Comment »
Posted by jpluimers on 2025/12/23
Interesting thought: [Wayback/Archive] Gamifying Security – Security Boulevard
Via [Wayback/Archive] CircuitSwan on Twitter: “…”.
–jeroen
Posted in Blue team, Infosec (Information Security), Power User, Red team, Security | Leave a Comment »
Posted by jpluimers on 2025/11/19
[Wayback/Archive] Thread by @cyb3rops on Thread Reader App – Thread Reader App
If your agent gets flooded – detect the flooding.
If code gets obfuscated – detect the obfuscation.
If ETW gets silenced – detect the silence.
If the EDR gets killed – detect the killing.
If logs get cleared – detect the clearing.The act of hiding is often more suspicious than what’s being hidden.
It’s like a surveillance camera going black or freezing.
That is the signal.
I’ve been doing this successfully for years.I detect obfuscated crap all the time.
People ask, “What is it?”
I say, “No fucking clue. Could be:
– a Themida-packed sample with a Microsoft copyright,
– a UPX-packed ELF with a 1-char filename,
– a PowerShell script that looks like static noise, or
– a fake svchost.exe with no Microsoft copyright.”I don’t need to know what it is.
It’s obviously shady.
That’s enough to detect it – and deal with it.
There’s a Chinese saying that fits perfectly: 欲蓋彌彰
The more you try to hide it, the more obvious it becomes.
--jeroen
Posted in Blue team, Development, DevOps, LifeHacker, Power User, Red team, Security, Software Development | Leave a Comment »
Posted by jpluimers on 2025/09/30
Now that I got pointed to this twice (see “Via” below), I need to get one so I can play with it: [Wayback/Archive] GitHub – i-am-shodan/USBArmyKnife: USB Army Knife – the ultimate close access tool for penetration testers and red teamers.
Via:
Posted in *nix, *nix-tools, Blue team, Bluetooth, Development, Encryption, ESP32, Hardware, Hardware Development, Hardware Interfacing, Home Audio/Video, HTTPS/TLS security, Infosec (Information Security), Network-and-equipment, Power User, Red team, Software Development, WiFi, Wireshark | Tagged: USBArmyKnife | Leave a Comment »
Posted by jpluimers on 2025/09/09
I thought I had been living under a stone for decades when I bumped into vx-underground (@vxunderground) / Twitter
The largest collection of malware source code, samples, and papers on the internet.
Password: infected
That appeared to be untrue as vx-underground, ran by a team of volunteers, started in 2019 ([Archive] web.archive.org/web//vx-underground.org) right when a few crisis in my life came together at the same time.
So here are the links for my archive as they are great content for both Red Teams and Blue Teams on many things cyber security related:
Posted in Blue team, Pen Testing, Power User, Red team, Security | Leave a Comment »
Posted by jpluimers on 2025/08/13
[Wayback/Archive] GS305E | Easy Smart Managed Essentials Switch | NETGEAR Support which can do many-to-one port mirroring.
This is a newer and cheaper hardware revision than the:
Via [Wayback/Archive] Everyone Should Have One of These – EASY Packet Capture! – YouTube who explains very well why you need a switch that can do port-mirroring, then recommends the GS105E but forgets to mention:
Related:
Posted in Blue team, Communications Development, Development, Ethernet, Hardware, Internet protocol suite, Network-and-equipment, Power User, Red team, Security, Software Development, TCP, UDP | Leave a Comment »
Posted by jpluimers on 2025/05/27
On my reading list (plus read/watch the links it mentions): [Wayback/Archive] 0x00 – Introduction to Windows Kernel Exploitation // by [Wayback/Archive] wetw0rk (@wetw0rk_bot) / X ([Wayback/Archive] wetw0rk.github.io).
Hopefully by now, more episodes have been published.
Links from this one, including archived versions split in the same sections as the above article:
Via [WaybackSave/Archive] Alex Plaskett on X: “0x00 – Introduction to Windows Kernel Exploitation by @wetw0rk_bot …”.
--jeroen
Posted in Development, Infosec (Information Security), Red team, Security, Software Development | Tagged: 1 | Leave a Comment »
Posted by jpluimers on 2025/05/16
Cyber Gangsta’s Paradise | Prof. Merli ft. MC BlackHat [Parody Music Video] – YouTube [Wayback/Archive]
Cyber Gangsta’s Paradise; professor Merli featuring MC Blackhat
#ParodyMusicVideo #cybergangster #paradise #reimtsich
Via @christopherkunz@chaos.social [Wayback/Archive]
The video is on the walled garden called Instagram as well, but since I intentionally don’t have an account there accessing is hard. Anyway, it is at: [WaybackSave/Archive] Instagram: „Cyber Gangsta’s Paradise“ feiert Premiere 🎶🎬.
In the past, picuki was an alternative. Now it fails for instagram content. [Wayback/Archive] Instagram Reels Download with Reels Downloader got me to [Wayback/Archive] cdninstagram, which in the end worked.
Transcript (via Google, typos all mine), song-text (from video description), and of course the credits:
Posted in Blue team, Cyber, Infosec (Information Security), Power User, Red team, Security | Tagged: cybergangster, paradise, ParodyMusicVideo, reimtsich | Leave a Comment »
Posted by jpluimers on 2025/04/25
A great rambling on “It rather involved being on the other side of this airtight hatchway” (I really want that printed on a T-Shirt):
[Wayback/Archive] No, You Are Not Getting a CVE for That.
Lot’s of references by [Wayback/Archive] Parsia to great posts by [Wayback/Archive] Raymond Chen mainly on security issues that are not: there is only a vulnerability when you get from the other side of the outside of the airtight hatchway to the inside, not when you are already inside.
And of course this great reference to H2G2 (The Hitchhiker’s Guide to the Galaxy), a trilogy in five parts by Douglas Adams:
Arthur: But can’t you think of something?!
Ford: I did.
Arthur: You did!
Ford: Unfortunately, it rather involved being on the other side of this airtight hatchway—
Arthur: oh.
Ford: —that’s just sealed behind us.
Via:
--jeroen
Posted in Blue team, Fun, History, Power User, Quotes, Red team, Security | Tagged: 19 | Leave a Comment »
Posted by jpluimers on 2025/04/16
From a few years back when Lightning debugging cables were either expensive, hard or not to get at all: [Wayback/Archive] DEF CON 30 – stacksmashing – The Hitchhacker’s Guide to iPhone Lightning and JTAG Hacking – YouTube.
Basically it is a Raspberry Pi Zero with adapted firmware connected to half a lightning extension cable.
A textual description (I wish it was linked from the above video) is at [Wayback/Archive] stacksmashing – The hitchhacker’s guide to iPhone Lightning & JTAG hacking – DEF CON Forums, which in turn refers to:
Posted in Development, Hardware Development, iOS, iPhone, Power User, Red team, Security | Tagged: checkm8 | Leave a Comment »
The Wiert Corner - irregular stream of stuff 