bakki @shubakki Twitter profile

Pinned Tweet

bakki

@shubakki

5 months

first chapter of two, stay tuned 🤠

22

77

167

Last Seen Profiles

@DenisSalmon

@Goksel_Saglam

@9295PLAY

@Wyni16

@Vtuber15827499

@_1ordi

@Lalonautl

@thickdikbigload

@argapurey

@Vjcoconutsluv26

@ashgoblue

@lynnyyy_

@927files_

@FigmentCapital

@UWAdmissions

@UpstateNYBob

@MeryemCamc4

@anthonyyylp

@blowiob

@XnRonger

@ryohzzz

@animatehnatg

@FrenchHugeCock

@AliKoc_edu

@923784100s19

@Vianacute_

@kqteharker

@Trologloditaa

@Versatil_BOG

@MaXe_VIP

@_4lilr

@bigplay24slay

@PILVRSKY_

@aptcheee

@altern8_otter

@1Revorimit

bakki

@shubakki

7 months

>POC for loading DLLs without LoadLibraryA >looks inside >LoadLibraryA

Kleiton Kurti

@kleiton0x7e

7 months

Created a PoC for loading DLLs without LoadLibraryA. Instead we'll leverage the VEH (Vectored Exception Handler) to modify the context, especially RIP and RCX to hold the LoadLibraryA address and it's argument. 👉 Github project: #CyberSecurity #Infosec

1

58

168

14

20

224

bakki

@shubakki

8 months

wrapping things up with my hugo theme and post ideas, im happy with the minimal design as seen on (inspired by ) blog will be up at , ill make an announcement once it actually is in prod!! merry christmas ^_^

7

8

57

bakki

@shubakki

4 months

@vxunderground and it wasnt a cat !?!?

4

0

46

bakki

@shubakki

5 months

POC for the silly shenanigans i talk about in my last blogpost can be found here now working on a version that doesn't rely on NtContinue, as I now have an "agnostic" IOC for such chains; on top of implementing different ways to "flow" :)

GitHub - xrombar/flower: a modified CONTEXT based ropchain to circumvent CFG-FindHiddenShellcode...

a modified CONTEXT based ropchain to circumvent CFG-FindHiddenShellcode and EtwTi-FluctuationMonitor - xrombar/flower

github.com

bakki

@shubakki

5 months

first chapter of two, stay tuned 🤠

22

77

167

0

13

37

bakki

@shubakki

1 year

pretty neat if i do say so myself

5pider

@C5pider

1 year

And also using a custom written sleep function that uses KUSER_SHARED_DATA.SystemTime to delay execution. Got the idea from @shubakki blog post:

3

9

54

1

3

32

bakki

@shubakki

9 months

nothing major but thought of it and decided to add support for json as a configuration language so people can choose whats up (i know some people love their nesting) (cooler stuff to be announced soon enough xoxo)

4

2

31

bakki

@shubakki

6 months

18yo milestone reached, time to see what i want to accomplish before im 19 🤠

14

0

29

bakki

@shubakki

7 months

time to get hyper super duper silly >:3 wont be recorded but ill upload the slides and make a more in depth blogpost on which will be the first one there ! (shall also come to Havoc as a build option in the implant , when possible :]] cc: @C5pider )

ESN'HACK

@esnhack

7 months

Le sixième rumper, un sacré boss en maldev, vous réserve une rump très sympa sur des techniques de bypass en développement de malwares 👀 : @shubakki

8

1

27

4

2

28

bakki

@shubakki

1 year

QakBot operator found at a cybersecurity conference circa 2023 @vxunderground

0

2

23

bakki

@shubakki

4 months

when the POC sleep obf chain been running on 1s delays for the past 12 hours

3

1

20

bakki

@shubakki

10 months

still need to get tasking working but most work so far is done and the core principle of malleability + extendability is here

2

19

bakki

@shubakki

5 months

3

0

18

bakki

@shubakki

4 months

that github activity going crazy @0xLegacyy

2

0

17

bakki

@shubakki

7 months

that is probably the realest thing to be posted ever

ShitpostGateway

@ShitpostGate

8 months

599

17K

162K

6

0

14

bakki

@shubakki

4 months

@checkymander man is a clown anyways, unsure of what you expected he has this weird thing where he prefers doxing people over making his C2 stable

0

14

bakki

@shubakki

3 months

cfp refused, so i guess this cool research dies with me now

3

0

13

bakki

@shubakki

9 months

@vxunderground either you guys started printing money or some dude in vxug got sold into slavery because damn

3

0

13

bakki

@shubakki

10 months

@NSA_CSDirector @vxunderground let them cook Rob, they gotchu, trust

1

0

12

bakki

@shubakki

8 months

there is still some cool stuff to be said, ill blog about it after my talk (which is on the 19th, will also upload the slides); no spoilers till then however >:3

5pider

@C5pider

8 months

The last time I posted anything about sleep obfuscation because it is already sucked dry kek. this was just me trying out something and seeing if it was working.

0

1

16

4

0

10

bakki

@shubakki

5 months

im not making that shit responsive btw

4

0

11

bakki

@shubakki

1 year

go on, run your sillyware

1

2

11

bakki

@shubakki

8 months

happy new year, going to make cool stuff happen this year >:)

1

0

11

bakki

@shubakki

4 months

@passthehashbrwn wait until they somehow involve a vectored exception handler

1

0

11

bakki

@shubakki

10 months

my idea for tasking atm is pretty scuffed, have small tasks cached in memory and the bigger ones (anything beyond a certain size ie execute-assembly rubeus) be written to db, i guess disk I/O is cheaper than memory but dam

bakki

@shubakki

10 months

still need to get tasking working but most work so far is done and the core principle of malleability + extendability is here

2

19

2

0

10

bakki

@shubakki

3 months

@RussianPanda9xx doggos are great, though mine is closer to a cat considering how she acts

2

0

9

bakki

@shubakki

5 months

thanks to @crackticker the theme got fixed up a bit the banner took it's meds aswell and wont blow up when you hover it either not responsive but viewing it on phone isnt as horrible as it was an hour ago (can actually read the content, banner and images wonky tho) xoxo

bakki

@shubakki

5 months

first chapter of two, stay tuned 🤠

22

77

167

2

0

8

bakki

@shubakki

11 months

flareon10 caused atleast one person to eat a silica gel packet

1

9

bakki

@shubakki

1 year

i love patchguard i love patchguard i love patchguard i love patchguard i love patchguard i love patchguard i love patchguard i love patchguard i love patchguard i love patchguard i love patchguard i love patchguard i love patchguard i love patchguard i love patchguard

4

0

9

bakki

@shubakki

5 months

koz W

Vulnlab

@vulnlab_eu

5 months

Congrats @k0zmer , @_Sm1l3z & @Yeeb_ for getting the first bloods one this one! Thanks @0xr0BIT for building it :)

2

5

43

0

8

bakki

@shubakki

11 months

getting a bit silly, soon to the point where c2 is functional enough for its web ui, the malding shall be infinite

3

1

8

bakki

@shubakki

6 months

am the CEO of scope creep

0

9

bakki

@shubakki

10 months

think imma start giving more updates about what im up to for the sake of hehe funny lately went back to my c2 i started end of sept which i didnt touch for a month after i started my new job

1

0

8

bakki

@shubakki

11 months

mfw an error in my c2 backend turns out to be a blessing because its an excuse to take a break from frontend hell

6

0

8

bakki

@shubakki

9 months

my friend dylan cooked something tasty again, better check it out

Dylan Tran

@d_tranman

9 months

Wrote up on module stomping and modding AceLdr to implement it at rest

11

45

129

0

7

bakki

@shubakki

7 months

not my heater breaking and now when i exhale there is vapor in my room

1

0

7

bakki

@shubakki

11 months

flareon10

🕐HOURLY🕑 shitpost

@hourly_shitpost

11 months

66

15K

90K

0

7

bakki

@shubakki

1 year

my computer saw me BSOD some windows vms and seems to be going on a strike because of that, very sad moment

0

7

bakki

@shubakki

7 months

ill fucking die before i have the blogpost written out and the POC extended into a goofy library it was a fun time people xoxo

bakki

@shubakki

7 months

not my heater breaking and now when i exhale there is vapor in my room

1

0

7

1

0

6

bakki

@shubakki

7 months

immaculate montage, i know you spent more time on the vid than finding the vuln

#ifndef hjonk

@_mmpte_software

7 months

It's been almost a year with no updates, so here's a fun bug:

9

69

321

1

0

6

bakki

@shubakki

5 months

@_xpn_ real, i was feeling like this for a long time before i realized the very people i look up to have the same issue (like you for instance)

1

0

5

bakki

@shubakki

8 months

won't be giving project updates for a while will maybe release some stuff in january xoxo

0

6

bakki

@shubakki

4 months

@passthehashbrwn it feels the same as being a newborn turtle dodging seagulls while trying to make it to the sea

1

0

5

bakki

@shubakki

7 months

@d_tranman did somebody say sillyware 🤠

1

0

6

bakki

@shubakki

5 months

@GabrielLandau @jdu2600 first off, sorry gonna fix xD the way you would go about this could still be detected however, I have some IOCs for FOLIAGE/EKKO/... I plan on releasing soon but even then a second version of flower im working on will get around this. cool work yet again, keep it up guys 😎

0

6

bakki

@shubakki

7 months

@esnhack thank you everyone ill make you guys proud 🥹🥹

0

6

bakki

@shubakki

8 months

i have two server module ideas for beam (obfuscation and exploitation, those two could be use standalone too (yes im very bored)) what kind of server module would be useful in an engagement context (QoL and stuff)??? looking for more ideas atm :|

1

0

6

bakki

@shubakki

3 months

@h0mbre_ i think fnv1a is better than djb2 (way better distribution and slightly speedier), some dude benchmarked a lot of hash algos on stackoverflow you could take a look at that ngl doubt it matters for you but could interest you :)

Which hashing algorithm is best for uniqueness and speed?

Which hashing algorithm is best for uniqueness and speed? Example (good) uses include hash dictionaries. I know there are things like SHA-256 and such, but these algorithms are designed to be sec...

softwareengineering.stackexchange.com

1

0

5

bakki

@shubakki

1 year

@0xLegacyy @SEKTOR7net too late im the new Jordan Jay now

0

5

bakki

@shubakki

5 months

@C5pider @RussianPanda9xx @0xclient @djnn1337

0

5

bakki

@shubakki

9 months

need to refactor the majority of my codebase so far but once thats done more features will be added and then i can make a proper client

1

0

5

bakki

@shubakki

1 year

ah yes friendship breaker the III, love that game

Vic: Ukraine Edition

@VicHarkness

1 year

Board games are occurring

3

2

10

0

5

bakki

@shubakki

6 months

@gf_256 blahaj with their emotional support hacker

0

5

bakki

@shubakki

1 year

when the dude named interlocked compares an exchange or something idk my stuff is not thread safe

0

5

bakki

@shubakki

9 months

@BasiilLeaf mood

0

3

bakki

@shubakki

9 months

the more malleable i make my c2 the more TOML seems to be a poor choice if i still want to have something readable (no real indentation is backfiring) 😔😔😔

4

0

5

bakki

@shubakki

11 months

flareon is a lie made up by energy drink companies

3

0

5

bakki

@shubakki

11 months

DYLAN BACK AT IT AGAIN ?!?!?!?

Bobby Cooke

@0xBoku

11 months

We just released Reflective Call Stack Detections and Evasions! This was co-authored by our @XForce Red intern Dylan Tran @d_tranman ! Dylan is wicked smart and it was fun working with him! Check it out!🥷

15

158

387

0

5

bakki

@shubakki

1 year

based tbh

mgeeky | Mariusz Banach

@mariuszbit

1 year

Game cheaters don't get along with Red Teamers very well 😭

34

55

395

0

5

bakki

@shubakki

4 months

@m19o__ im lowkey blind and need glasses but been too caught up to actually get some

2

0

5

bakki

@shubakki

3 months

@0x_shaq same man, shit is gonna be funnn

1

0

5

bakki

@shubakki

2 years

even kali is leanin now

Oste

@oste_ke

2 years

@kalilinux Oukeey 😍💜 @Amarjit_Labu check this out

4

23

82

0

5

bakki

@shubakki

1 year

@_sn0ww it back

1

0

5

bakki

@shubakki

4 months

@vxunderground think twice but he didnt think once 😔

1

0

3

bakki

@shubakki

4 months

@0xDISREL meds time !

1

0

4

bakki

@shubakki

1 year

skilldiff™ brought to you by emus

torry2

@torry2_

1 year

pecan.local/Administrator:iloveanime100% 🩸

0

4

0

4

bakki

@shubakki

1 year

Zw stands for "The W"

1

4

bakki

@shubakki

9 months

going to redo and move my blog elsewhere and try to be more active with it (ie stop overthinking what would be really cool to the people) that will be only when i get through making my own theme for it (5 eons ish)

0

4

bakki

@shubakki

1 year

@vxunderground looks extremely epic, perfect tool to analyze malware samples from vxug once i figure out the password

0

4

bakki

@shubakki

11 months

too real

#ifndef hjonk

@_mmpte_software

11 months

0

2

4

0

4

bakki

@shubakki

9 months

@vxunderground i like my theory more

1

0

4

bakki

@shubakki

5 months

LETS GOOOOOOOOOOOOOOO

eversinc33 🤍🔪

@eversinc33

5 months

New blogpost and small tool release: Wrote a naive anti-rootkit driver that detects mapped drivers, and talk about some bypasses for those detections in part I of my new (anti-)-anti-rootkit series. More research on rootkit evasion coming soon : )

14

128

352

0

4

bakki

@shubakki

4 months

@DuchyRE @vxunderground "man I swear it just imploded"

0

4

bakki

@shubakki

5 months

@d_tranman if u arent considering the malware busting it down then ur security posture is weak frfrfr

0

3

bakki

@shubakki

9 months

@vxunderground @d1sc0m4ghr3b @_JohnHammond you wholesome nerds, we love you xoxo

0

3

bakki

@shubakki

8 months

@DebugPrivilege very mid at time but ended up getting a red team job and moving out so some good came out of it

0

4

bakki

@shubakki

9 months

@_mmpte_software yes and ?

1

0

4

bakki

@shubakki

9 months

@Kharosx0 nuh uh, brand new easy f5 for dopamine you know thats a deal i cant refuse

1

0

4

bakki

@shubakki

11 months

i now declare ch3 the arch-nemesis of fun

1

0

4

bakki

@shubakki

11 months

@0xBoku @XForce @d_tranman based work you both !!!

1

0

4

bakki

@shubakki

3 months

@0xclient @domchell mb, meant you can have proper proof of protection I guess, just not doing a file hash, posting it and @'ing literally everybody to stroke your e-wiener

0

5

bakki

@shubakki

10 months

then you get called autistic for disagreeing mfw

chompie

@chompie1337

10 months

Florian: Offensive security researchers are self important narcissists that delude themselves into believing they are helping people Me: oh

24

15

375

2

0

4

bakki

@shubakki

1 year

@MalGamy12 didnt even obfuscate the strings, how lazy

0

3

bakki

@shubakki

4 months

@vxunderground 300K no PR department EZZZZZZZZZ

0

3

bakki

@shubakki

10 months

@chompie1337 CONGRATZZZZ 🎉🎉🎉🎉

0

1

bakki

@shubakki

8 months

@FuzzySec icl that second paragraph went hard

1

0

2

bakki

@shubakki

9 months

@OrdinaryGamers @vxunderground extremely based, they do be very cool people even if they bully us nerds

0

3

bakki

@shubakki

9 months

@DebugPrivilege @C5pider it's really not hard should be easier than crashdump analysis dw

1

0

3

bakki

@shubakki

8 months

@Vsimpro it will but dam 😔

2

0

2

bakki

@shubakki

4 months

reposting this because austin has been an inspiration ever since i started, v cool dude with v cool projects and skills

0

3

bakki

@shubakki

9 months

thinking of adding separate engagement support (however i can say it waaaah) like how its done in mythic do people actually enjoy/find practical such a feature ?

0

2

bakki

@shubakki

1 year

thats utter cope, "diff -bur bootlicker/bootkit BlackLotus/src/Bootkit" shows it

vx-underground

@vxunderground

1 year

@C5pider @ilove2pwn_ They're denying that allegation. "No it's not true. It’s actually not that project at all that was used that he linked. The UEFI loader was pasted into the project originally. That is the UEFI code used."

1

0

8

1

0

3

bakki

@shubakki

11 months

@NaisuBanana ok so two persons now

0

3