Just a random guy in the internet that does ethical hacking for a living.
Red Team Lead
| https://twitter.com/LeonVQZz | |
| Website | whoami.leonvqz.com |
| Volunteer | RaicesCyberOrg |
| Faculty | @thetaggartinstitute |
80% off my PrivEsc courses / bundles for the next 2 weeks, with code BLACKFRIDAY24:
🫶
Pentesters, it can be scary when your client gets attacked while you're conducting a Pentest, so make sure to keep track of your IP (multiple if it changes while the pentest it's ongoing) and make sure what kind of attacks your tools are doing.
Be prepared for the occasion.
The Latest YouTube Malware Scam -- a phishing email supposedly sent from YouTube, with an attached "PDF" (screensaver PE file). We do light analysis showcasing UnpacMe (huge kudos @herrcore & OALabs!) and find a new infostealer, stealc! https://youtu.be/KLl7EVtJUIQ
Sponsored by @ITProTV from @ACI_Learning, learn just about ANYTHING in tech with a curated curriculum, bingeworthy content and a partner for your whole career! Start a free trial, and use code JOHN30 for 30% off! https://j-h.io/aci-itpro
Web App Wednesday stream at 3pm ET! We'll be trying to solve some of the @hackthebox_eu web challenges. Probably lots of head scratching and malding to come.
Join us for the fun!
Demonstration of staging a phishing email and credential harvesting site, to not only steal a target password, but retrieve a two-factor authentication (2FA) code just as well! Our hacker synchronizes the login time with the (fake) login for the victim, and we have a full account takeover!
https://youtube.com/watch?v=FwGeBW6OurM
Kudos to @PlexTrac for sponsoring this video -- you can use PlexTrac to make report writing a breeze! Try their collaborative platform: https://j-h.io/plextrac
Tib3rius 
Tanya Janca | SheHacksPurple 
John Hammond