Profile avatar
mrgretzky.breakdev.org
Offensive security tools developer. Malware developer, hobby music producer, bedroom DJ & ex-MMO game hacker. Creator of Evilginx / Bartender @ BREAKDEV RED.
42 posts 747 followers 168 following
Regular Contributor
Active Commenter
Posts 25 Comments 25

Excellent research by Sagi Olshansky shows how even a simple "Terms of Service" conditional access option in Entra ID can become a thorn in the side of phishing threat actors. Evilginx phishlet development action included 🎣 medium.com/@Sniffler/te...

submitted 4 days ago β€’ 0 comments

I've been dealing with mysterious high CPU utilization from WmiPrvSE.exe for MONTHS. I finally did some digging using github.com/luctalpe/WMI... (run wmimon from an elevated cmd prompt). Guess what the culprit was?

submitted 57 days ago β€’ 4 comments

The BREAKDEV RED software shop engine is finally finished πŸŽ‰ Out of respect to all Evilginx fans, the purchase experience will be as friendly and fair as possible: - Floating licenses ONLY - No minimum cap for license purchases Evilginx Pro release date: February 2025 Merry Christmas everyone! πŸŽ„

submitted 73 days ago β€’ 1 comment

New #PEsieve & #HollowsHunter (v0.4.0) are released: github.com/hasherezade/... & github.com/hasherezade/... - A lot has changed in the new version, check it out!

submitted 79 days ago β€’ 0 comments

I wrote a fun, little blog post. Remote pre-auth file deletion in SolarWinds ARM allowed to achieve LPE on AD machines πŸ™ƒ

submitted 80 days ago β€’ 1 comment

🚨 BLACK FRIDAY 50% OFF 24-HOUR SALE 🚨 Today I'm running the biggest sale, since the course release in 2023! Get Evilginx Mastery course with lifetime access for 199 EUR ONLY today! 🀩 Upgrade your phishing skills before Evilginx Pro drops! πŸ”—Link: academy.breakdev.org/evilginx-mas...

submitted 94 days ago β€’ 0 comments

🚨 BLACK FRIDAY 50% OFF 24-HOUR SALE 🚨 Today I'm running the biggest sale, since the course release in 2023! Get Evilginx Mastery course with lifetime access for 199 EUR ONLY today! 🀩 Upgrade your phishing skills before Evilginx Pro drops! πŸ”—Link: academy.breakdev.org/evilginx-mas...

submitted 94 days ago β€’ 0 comments

🚨 The Black Friday sale is coming! The sale drops at midnight today! (UTC+1) It will be the biggest sale yet! 🀩

submitted 95 days ago β€’ 0 comments

I want to do a little promotion here as well: For the dutch people following me: last year me and 2 other folks from HITB dutch crew started orangecon.nl. Its a nonprofit which focusses on knowledge sharing with affordable trainings followed by a very affordable conference. Do check it out please!

submitted 95 days ago β€’ 1 comment

I'm currently doing super exciting research (that's a joke 😭) trying to decide which invoicing platform with API access to use. Can anyone confirm if Zoho Books is a good platform or if there is any alternative worth considering? I'm having the time of my life πŸ˜†

submitted 97 days ago β€’ 1 comment

I keep catching myself referring to "Linkin Park" as "LinkedIn Park". Is it a sign of growing old? πŸ‘΄

submitted 101 days ago β€’ 3 comments

Paged Out! #5 is out – enjoy! pagedout.institute And if you like the cover, we have wallpapers!

submitted 104 days ago β€’ 0 comments

Evilginx Pro Update: Tool is ready and awaits release. I'm now creating an online shop engine, because why not 😜 I hope one day it becomes Steam for cybersecurity tools with Evilginx Pro its first release, like Half-Life 2 on Steam exactly 20 years ago. Red team tools unite!

submitted 104 days ago β€’ 0 comments

Defenders use cross-origin requests through CSS url() or injected JS to leak your phishing URL in the HTTP Referer header. Today, I've been reminded about the excellent post by Keanu Nys, which contains a lot of great evasion ideas! insights.spotit.be/2024/06/03/c...

submitted 105 days ago β€’ 0 comments

Beyond good ol’ Run key, Part 144 www.hexacorn.com/blog/2024/11...

submitted 107 days ago β€’ 1 comment

Does anyone else feel Bluesky has finally solved the notification stacking/clutter problem Twitter has been unable to solve since its beginning?

submitted 108 days ago β€’ 0 comments

I'm reaching the point where most of the Twitter accounts I followed for news, have migrated to Bluesky. Soon I may have no reason to go there anymore! πŸ₯³

submitted 108 days ago β€’ 1 comment

πŸŽ‚ BREAKDEV RED launched a year ago on 9th Nov 2023. It's a closed community for red teamers where every member is approved by hand. Takeaways: πŸ‘« 1203 members approved & joined πŸ€— Made lots of new friends πŸ“š Learned from the best Thank you for making it extraordinary! πŸ’—

submitted 110 days ago β€’ 1 comment

if you’re trying to find the people you follow on twitter, check out @kawamataryo.bsky.social’s www.sky-follower-bridge.dev it found a full 1/3 of the people i follow. impressive work by the developer, but also impressive to see that that many twitter people are setting up here.

submitted 112 days ago β€’ 50 comments

Early Cascade Injection PoC by C5pider github.com/Cracked5pide... Based on research by Outflank: www.outflank.nl/blog/2024/10...

submitted 115 days ago β€’ 0 comments

😳

submitted 117 days ago β€’ 0 comments

Procmonning the Win11_24H2 build www.hexacorn.com/blog/2024/11... #DFIR

submitted 117 days ago β€’ 1 comment

Good luck, America!

submitted 118 days ago β€’ 0 comments

Just found out about this. Super neat feature! If you own a domain, you can change your bsky handle to point to it by adding just a single DNS TXT record. I changed mine to @mrgretzky.breakdev.org πŸ”₯

submitted 121 days ago β€’ 1 comment

Hello brave new world!

submitted 121 days ago β€’ 2 comments