One Punch Mander @checkymander

hacker, pokemon irl, he/him

 Indigo Plateau
blog.checkymander.com
Joined March 2017
  • Tweets 2,027
  • Following 445
  • Followers 1,476
379 Photos and videos
One Punch Mander retweeted
mRr3b00t @UK_Daniel_Card
17h
👀👀👀👀👀👀👀👀👀👀👀 Tweeps this is insane! 🤡🤡🤡🤡🤡🤡
TeamTaco @TeamTaco0
17h
👀
19
10
2
80
inv.warpnine.de/watch?v=iMmxSEiq… push out the jiiiivee bring in the love

- B R I N G - I N - T H E - L O V E -

It's on Spotify! https://open.spotify.com/artist/0WBZts3HlAYCTsWXvnCAjQ?si=O4Ny_oo6RuiAc7n4EgC8cwAnd Apple too I guess. https://music.apple.com/au/artist/dan...

youtube.com
How do I get YouTube to stop recommending me Ninja Sex Party. I'll start listening to a random "mix" generated, and before I know it. GOD DAMN IT DANNY SEXBANG NOT AGAIN
1
4
Just pushed a new update to Athena, finally fixed the Socks5 code to make it more usable, and added support for remote port forwarding through mythic check it out! github.com/MythicAgents/Athe…
1
9
43
One Punch Mander retweeted
Mt. St. Helens @MtStHelensWA
May 28
I have many caverns
1,232
2,843
1,576
37,275
Show this thread
TMW Visual Studio decides to start showing your memory usage in GB rather than MB
2
Watching the Playstation showcase like "holy crap I can e-mail this guy"
1
1
1
2
One Punch Mander retweeted
I_Am_Jakoby @I_Am_Jakoby
May 23
Replying to @checkymander
lols github.com/I-Am-Jakoby/Power…

PowerShell-for-Hackers/FunctionsThatShouldNotExist.md at main · I-Am-Jakoby/PowerShell-for-Hackers

This repository is a collection of powershell functions every hacker should know - PowerShell-for-Hackers/FunctionsThatShouldNotExist.md at main · I-Am-Jakoby/PowerShell-for-Hackers

github.com
1
1
1
An amazing reference post for those times when you're having trouble remembering things to look for on-host
Justin Elze @HackingLZ
May 18
Wrote a new blog about building a host based recon methodology and the importance of recon on compromised hosts. trustedsec.com/blog/walking-… tweeter.jakobs.systems/i/web/status/165…
3
One Punch Mander retweeted
rvrsh3ll @424f424f
May 16
New Blog! Get it while it's hot! This technique is still evolving. Always a fun vector. blackhillsinfosec.com/dynami…

Dynamic Device Code Phishing  - Black Hills Information Security

rvrsh3ll //  Introduction  This blog post is intended to give a light overview of device codes, access tokens, and refresh tokens. Here, I focus on the technical how-to for standing […]

blackhillsinfosec.com
6
91
8
218
1
18
Athena is 3.0 compatible and has been pushed to main! Check it out, we've got bof's, improved SMB comms, and new commands!
Cody Thomas @its_a_feature_
May 10
It's official! Mythic 3.0 is LIVE! Check out the blog post about it here: posts.specterops.io/c2-and-t…. Highlights include: rpfwds, graph groupings, jupyter notebook, custom webhooks, tags, docker updates, and an entirely new back end!
11
38
One Punch Mander retweeted
Ido Veltzman @Idov31
May 7
Exactly 1 year passed since the first release of Nidhogg and todayI release the fourth version with many new features such as DLL & shellcode injection (APC & NtCreateThread), callbacks unregistering and etwti tampering (and more!) github.com/Idov31/Nidhogg/re… #infosec #CyberSecurity

Release Version 0.4 Release · Idov31/Nidhogg

Version 0.4 Release New features: DLL Injection Via APC Via NtCreateThread Shellcode Injection Via APC Via NtCreateThread Unregistering and restoring callbacks ObCallbacks PsSetCreatePro...

github.com
4
41
107
Set your password to <currentSeason><currentYear+2> that way password sprays will fail on your account
3
14
One Punch Mander retweeted
rad98 @rad9800
May 4
A lot of people have asked where to start, so I thought I'd give a talk this Saturday at 9PM GMT on "Getting Started with Windows Malware Development". I'll go through what resources and approaches that helped me get to grips. discord.com/events/109744793…

Discord - A New Way to Chat with Friends & Communities

Discord is the easiest way to communicate over voice, video, and text. Chat, hang out, and stay close with your friends and communities.

discord.com
rad98 @rad9800
Apr 18
Interested in only talking about all things malware, I made a discord server discord.gg/wZ6BqUtp4u
Show this thread
7
51
2
175
Show this thread
github.com/Fody/Home/blob/ma… Interesting, Fody requires people to be a patron in order to be a user (although it's only enforced by an honor system) Even if you wanted to contribute to the project your PR wouldn't be approved unless you were a patron.

Home/licensing-patron-faq.md at master · Fody/Home

The landing page for Fody repositories. Contribute to Fody/Home development by creating an account on GitHub.

github.com
1
Thought it was interesting since I know for sure a lot of open source C# offsec products make use of it
2
One Punch Mander retweeted
Rasta Mouse @_RastaMouse
May 3
Local VSTO references seems effective if you have a delivery method for containers that don't have MOTW. Not sure how viable this really is though.
4
1
22
Don't expose your c2 management ports to the internet skiddos
Chris Duggan @TLP_R3D
May 2
🔎🌐 Fresh perspective on #Mythic ! Exploring innovative ways to hunt the C2 servers in the wild. Here's the standard build: Port:7443 http.favicon.hash:-859291042, we've got 66 results 📊 http.html_hash:-1569223127, 35 results popped up 📈 Title:Mythic SSL:Mythic SSL:384…
Show this thread
2
1
17
Load more