geech
@captaingee.ch
cybercrime connoisseur && exploitz engineering enthusiast | synapse fanboy | second breakfast enthusiast
k being “call stack” in windbg and “kill process” in lldb is a cruel, cruel collision. Thanks Tim apple
November 8, 2025 at 10:28 PM
k being “call stack” in windbg and “kill process” in lldb is a cruel, cruel collision. Thanks Tim apple
All Azure users are hereby authorized to start Halloween early
October 29, 2025 at 6:05 PM
All Azure users are hereby authorized to start Halloween early
even wearing my flynn's arcade shirt to the theater wasn't enough to save that movie ;(
great vfx, great soundtrack, bad movie. long live tron: legacy, the only sequel to tron.
great vfx, great soundtrack, bad movie. long live tron: legacy, the only sequel to tron.
October 12, 2025 at 7:12 PM
even wearing my flynn's arcade shirt to the theater wasn't enough to save that movie ;(
great vfx, great soundtrack, bad movie. long live tron: legacy, the only sequel to tron.
great vfx, great soundtrack, bad movie. long live tron: legacy, the only sequel to tron.
when i find who wrote iso 32000 7.6.4.3.3/.4 - i'm not mad, i just want to talk #flareon
shrek is standing next to a donkey in the forest
ALT: shrek is standing next to a donkey in the forest
media.tenor.com
September 29, 2025 at 2:29 AM
when i find who wrote iso 32000 7.6.4.3.3/.4 - i'm not mad, i just want to talk #flareon
if i see someone wearing these i'm going to respectfully and politely hulk smash them (the glasses) into the sidewalk
Forget smartphones. According to Mark Zuckerberg, the real interface of the future is what’s sitting on your nose. Meta’s Ray-Ban smart glasses have become a surprise hit.
Meta Has Already Won the Smart Glasses Race
By securing a billion-dollar stake in the world’s largest eyewear maker with a massive retail footprint, Meta is building both a moat and a launchpad, leaving Google trailing and Apple way behind.
wrd.cm
August 30, 2025 at 6:59 PM
if i see someone wearing these i'm going to respectfully and politely hulk smash them (the glasses) into the sidewalk
"ai is going to change everything" dawg this is a bunch of "while true; do curl xxxxxxxxxx"
August 14, 2025 at 12:11 PM
"ai is going to change everything" dawg this is a bunch of "while true; do curl xxxxxxxxxx"
threw together a quick first blood discord bot for CTFd for an event im hosting next week gist.github.com/captainGeech...
ctfd_first_blood_bot.py
GitHub Gist: instantly share code, notes, and snippets.
gist.github.com
August 2, 2025 at 10:17 PM
threw together a quick first blood discord bot for CTFd for an event im hosting next week gist.github.com/captainGeech...
working on a simple web chal and was too lazy to write the ui myself, gemini almost turned this into a second challenge 🙃
age of llm==age of free xss?
age of llm==age of free xss?
July 29, 2025 at 11:22 PM
working on a simple web chal and was too lazy to write the ui myself, gemini almost turned this into a second challenge 🙃
age of llm==age of free xss?
age of llm==age of free xss?
Reposted by geech
Being in tech and having a single modicum of critical thinking is just screaming "this isn't what LLMs are designed for" over and over as people shove a bunch of word predictors into critical decision making processes because some glorified used car salesmen told them it would fix all their problems
Reporter: The FDA has a new AI tool that's intended to speed up drug approvals. But several FDA employees say the new AI helper is making up studies that do not exist. One FDA employee telling us, 'Anything that you don't have time to double check is unreliable. It hallucinates confidently'
July 23, 2025 at 6:10 PM
Being in tech and having a single modicum of critical thinking is just screaming "this isn't what LLMs are designed for" over and over as people shove a bunch of word predictors into critical decision making processes because some glorified used car salesmen told them it would fix all their problems
I wrote a new blog with Mandiant IR + FLARE on some new intrusion activity by a group we track as UNC6148, likely using a mix of n-day and 0-day exploits to compromise SonicWall SMA 100 series VPN appliances. They have some nifty post-exploitation tooling as well
cloud.google.com/blog/topics/...
cloud.google.com/blog/topics/...
Ongoing SonicWall Secure Mobile Access (SMA) Exploitation Campaign using the OVERSTEP Backdoor | Google Cloud Blog
A financially-motivated threat actor is targeting fully patched end-of-life SonicWall devices to deploy a backdoor known as OVERSTEP.
cloud.google.com
July 16, 2025 at 2:44 PM
I wrote a new blog with Mandiant IR + FLARE on some new intrusion activity by a group we track as UNC6148, likely using a mix of n-day and 0-day exploits to compromise SonicWall SMA 100 series VPN appliances. They have some nifty post-exploitation tooling as well
cloud.google.com/blog/topics/...
cloud.google.com/blog/topics/...
July 10, 2025 at 10:34 PM
the true GOAT
a group of men standing on a race track with a yellow sign that says huuuulkkkkk
ALT: a group of men standing on a race track with a yellow sign that says huuuulkkkkk
media.tenor.com
July 6, 2025 at 8:57 PM
the true GOAT
if you need to use AggresIve styling, dark patterns, popups, and anti-user defaults to get people to use your new features, maybe they are not good features :)
July 5, 2025 at 3:40 PM
if you need to use AggresIve styling, dark patterns, popups, and anti-user defaults to get people to use your new features, maybe they are not good features :)
there is something so satisfying about writing rop chains, idk what it is, just a super fun puzzle
July 1, 2025 at 12:57 AM
there is something so satisfying about writing rop chains, idk what it is, just a super fun puzzle
Reposted by geech
I wrote some details on LOSTKEYS: malware which we directly attribute to COLDRIVER. They don't deploy it often, but we have seen it a few times and want to make people aware of it.
cloud.google.com/blog/topics/...
cloud.google.com/blog/topics/...
COLDRIVER Using New Malware To Steal Documents From Western Targets and NGOs | Google Cloud Blog
Russian government-backed group COLDRIVER is using LOSTKEYS malware to steal files and system information from NGOs and western targets.
cloud.google.com
May 7, 2025 at 2:14 PM
I wrote some details on LOSTKEYS: malware which we directly attribute to COLDRIVER. They don't deploy it often, but we have seen it a few times and want to make people aware of it.
cloud.google.com/blog/topics/...
cloud.google.com/blog/topics/...
why more JS engines don't have a native bogosort implementation is truly a wonder
April 26, 2025 at 5:17 PM
why more JS engines don't have a native bogosort implementation is truly a wonder
"And this is why using AppContainer with a packaged app is easier"
screw you microsoft i do what i want
learn.microsoft.com/en-us/window...
screw you microsoft i do what i want
learn.microsoft.com/en-us/window...
April 1, 2025 at 7:20 PM
"And this is why using AppContainer with a packaged app is easier"
screw you microsoft i do what i want
learn.microsoft.com/en-us/window...
screw you microsoft i do what i want
learn.microsoft.com/en-us/window...
Too many OPSEC experts out there, I’m an OOPSEC expert. Lmk if you need help adding The Atlantic to YOUR pc small group chats. Signal and more!
March 27, 2025 at 5:12 PM
Too many OPSEC experts out there, I’m an OOPSEC expert. Lmk if you need help adding The Atlantic to YOUR pc small group chats. Signal and more!
hey microsoft, hot take, what if you didnt push ads for random games in your fucking operating system as notifications
March 9, 2025 at 10:15 PM
hey microsoft, hot take, what if you didnt push ads for random games in your fucking operating system as notifications
diaphora vs vmware-vmx
meanwhile, me watching:
meanwhile, me watching:
a child is doing a handstand on a swing over a puddle of water
ALT: a child is doing a handstand on a swing over a puddle of water
media.tenor.com
March 7, 2025 at 2:05 AM
diaphora vs vmware-vmx
meanwhile, me watching:
meanwhile, me watching:
arrested development season 1 is the true peak of comedy
March 4, 2025 at 12:08 AM
arrested development season 1 is the true peak of comedy
lmfao this worked perfectly. thank you to "brute force to make up for my lack of brain cells"
reverse engineering and thinking about reducing problem spaces to hit vulnerable code paths is hard.
fuzzing however, is both "easy" and "fast" - lazy ftw
(may work, may not work, we'll see. need a @digitalocean.com sponsorship lol)
fuzzing however, is both "easy" and "fast" - lazy ftw
(may work, may not work, we'll see. need a @digitalocean.com sponsorship lol)
March 2, 2025 at 11:46 AM
lmfao this worked perfectly. thank you to "brute force to make up for my lack of brain cells"