Calzone
@calz0n3.bsky.social
Yeah, it would be awesome to do a kind of semi-automated controlled detonation like that! So cool for purple teaming.
October 20, 2025 at 4:19 PM
Yeah, it would be awesome to do a kind of semi-automated controlled detonation like that! So cool for purple teaming.
Anyway, simple little shared library for Crystal Palace to unit test your PICOs - coming soon!
October 20, 2025 at 4:15 PM
Anyway, simple little shared library for Crystal Palace to unit test your PICOs - coming soon!
For example! I want a way to generate adozen almost-identical implants that all use slightly different tradecraft to achieve their goals, then run them all against a VM snapshot with an EDR agent installed and see which ones generate detections and why.
October 20, 2025 at 8:56 AM
For example! I want a way to generate adozen almost-identical implants that all use slightly different tradecraft to achieve their goals, then run them all against a VM snapshot with an EDR agent installed and see which ones generate detections and why.
Just got a chance to try it out, works like a charm!
October 17, 2025 at 2:24 PM
Just got a chance to try it out, works like a charm!
This is super cool! I'm guessing it'll only work on x64 due to the assembly used for the callback, right?
October 16, 2025 at 4:44 PM
This is super cool! I'm guessing it'll only work on x64 due to the assembly used for the callback, right?
And it's released! 🎉
github.com/ofasgard/exe...
I've tested it with Rubeus and Seatbelt and a variety of different arguments, and it seems to be pretty stable as far as I can tell. If anyone uses this PICO and encounters bugs or instability, please let me know!
github.com/ofasgard/exe...
I've tested it with Rubeus and Seatbelt and a variety of different arguments, and it seems to be pretty stable as far as I can tell. If anyone uses this PICO and encounters bugs or instability, please let me know!
github.com
October 16, 2025 at 4:13 PM
And it's released! 🎉
github.com/ofasgard/exe...
I've tested it with Rubeus and Seatbelt and a variety of different arguments, and it seems to be pretty stable as far as I can tell. If anyone uses this PICO and encounters bugs or instability, please let me know!
github.com/ofasgard/exe...
I've tested it with Rubeus and Seatbelt and a variety of different arguments, and it seems to be pretty stable as far as I can tell. If anyone uses this PICO and encounters bugs or instability, please let me know!