#ifndef hjonk Profile Banner
#ifndef hjonk Profile
#ifndef hjonk

@_mmpte_software

Followers
1,391
Following
931
Media
279
Statuses
2,088

Can you jam with the console cowboys in cyberspace? | @vxunderground enjoyer | PTC 🇺🇲 🇵🇦

Squat rack
Joined May 2014
Don't wanna be here? Send us removal request.
Explore trending content on Musk Viewer
Pinned Tweet
@_mmpte_software
#ifndef hjonk
2 years
Immensely happy to have had the opportunity to work with some awesome people. Happy Halloween everyone :D 👻🎃🐈‍⬛
@vxunderground
vx-underground
2 years
From our headquarters underneath the Vatican, happy Halloween! Today we release the first edition of our new publication Black Mass. Special thanks to our Editor in Chief @h313n_0f_t0r for all of her hard work.
Tweet media one
7
105
304
1
6
15
@_mmpte_software
#ifndef hjonk
3 months
35
726
3K
@_mmpte_software
#ifndef hjonk
3 years
Am I scambaiting right?
Tweet media one
Tweet media two
Tweet media three
21
58
688
@_mmpte_software
#ifndef hjonk
2 years
Sorry to all the Lenovo forum / Reddit users posting about Lenovo Diagnostics driver issues.
Tweet media one
3
106
411
@_mmpte_software
#ifndef hjonk
9 months
It's been almost a year with no updates, so here's a fun bug:
9
68
323
@_mmpte_software
#ifndef hjonk
3 years
Wrote my first BOF that will dump lsass with foreign handles! Now I can close my vms and enjoy the rest of my Friday😂 #CobaltStrike
4
70
183
@_mmpte_software
#ifndef hjonk
3 years
Tweet media one
2
6
129
@_mmpte_software
#ifndef hjonk
2 months
My former employer @Optiv went through a round of layoffs. Among those laid off was a friend who is currently on FMLA getting treatment for terminal cancer. 🧵
9
36
135
@_mmpte_software
#ifndef hjonk
1 year
Thread creation via NtCreateWorkerFactory :) Sadly even though NtCreateWorkerFactory receives a handle to a target process:
Tweet media one
4
30
130
@_mmpte_software
#ifndef hjonk
3 years
if you use RtlQueryProcessHeapInformation() to check for a debugger, you can just do this instead and avoid those sussin apis:
Tweet media one
1
38
128
@_mmpte_software
#ifndef hjonk
3 years
Happy Friday! For the long weekend, enjoy a #cobaltstrike BOF that will zero, then delete your beacon's executable on exit! Use at your own risk and out of good practice build/extract the shellcode yourself 😌
4
33
115
@_mmpte_software
#ifndef hjonk
2 months
Not only would I recommend against working there, I would strongly recommend against doing business with a company being run into the ground by sycophants and soulless executives. If you would like to support Joey and his family, here is a gofundme:
5
25
86
@_mmpte_software
#ifndef hjonk
3 years
Some ramblings on how to go from VA to VAD to PTE to Physical Address😄
1
29
81
@_mmpte_software
#ifndef hjonk
3 years
WIP Reflective loader. Did some tinkering based on a tweet from @NinjaParanoid and added a weird feature I'm happy about: Modules in import table will first be checked against the LdrpHashTable to see if they already loaded. XOR encoding, etc. Enjoy ymmv.
1
23
65
@_mmpte_software
#ifndef hjonk
3 years
My first blog post! Going into detail about Windows Fibers, and two examples of how they can be used for misdirection when executing shellcode.
1
18
50
@_mmpte_software
#ifndef hjonk
3 years
Got my first CVE to start 2022 :)
@CVEnew
CVE
3 years
CVE-2021-44852 An issue was discovered in BS_RCIO64.sys in Biostar RACING GT Evo 2.1.1905.1700. A low-integrity process can open the driver's device object and issue IOCTLs to read or write to arbitrary physical memory locations (o...
0
2
12
7
8
46
@_mmpte_software
#ifndef hjonk
3 years
Happy to release another #cobaltstrike BOF! Work in progress to add more stuff from the Job API, but felt like releasing now. Tl;dr: enforce process' memory, cpu, and network resources.
0
10
41
@_mmpte_software
#ifndef hjonk
8 months
0
6
42
@_mmpte_software
#ifndef hjonk
3 years
Tweet media one
1
7
38
@_mmpte_software
#ifndef hjonk
5 years
@AngiTaylorKISS Just slap them with legal
1
0
36
@_mmpte_software
#ifndef hjonk
3 years
@Newsreading1 @chompie1337 The best thing I ever did was just sit down with a copy of Windows Internals and read until I found smth cool and just tinkered w/ the apis that had to do w/ the subj like this proj came from my C++ tinkering @zodiacon Windows 10 System Programming is 🔥
1
3
36
@_mmpte_software
#ifndef hjonk
2 years
Yet more WHQL WinRing0 clones, and one with a buffer overflow so easy your grandma could hit it. Rejected as info from @intel , so.... uh. Enjoy?
1
18
33
@_mmpte_software
#ifndef hjonk
2 years
@aahmad097 @AnnaViolet20 You mean to tell me that I shouldn't be able to send a POST request without auth to a perimeter device and just execute commands? Smh, where's the sense of trust in our community these days?
0
1
31
@_mmpte_software
#ifndef hjonk
1 year
Tweet media one
1
5
32
@_mmpte_software
#ifndef hjonk
2 years
@commentiquette Idk, sorry for your loss and all that. Here's a shirtless old man for your troubles.
Tweet media one
0
0
34
@_mmpte_software
#ifndef hjonk
7 months
Squats are feeling AMAZING, very grateful to have made progress. I'm coming for that podium finish at nationals!
4
1
32
@_mmpte_software
#ifndef hjonk
2 months
Finally broke 500lb by hitting 505x3 thanks to my coach @CBSC804 I'm so excited it's unreal
5
2
30
@_mmpte_software
#ifndef hjonk
3 years
@1njection Yo, I've got an N-Click 0-day RCE in bash. First you click on "terminal" Then you type curl with my exploit code and | /bin/sh I'll be here waiting for my CVE.
1
1
29
@_mmpte_software
#ifndef hjonk
2 years
Create suspended process. Copy Peb, VadRoot, and DirBase from lsass eprocess into suspended eprocess. Dump suspended proc. I'm not responsible for your bsod.
1
9
28
@_mmpte_software
#ifndef hjonk
3 years
@cybersecstu Python. Because sometimes I'm too lazy for awk, sed, and grep, but I can sure as hell whip up a horrid script to parse something and never show anyone how 😂
2
2
27
@_mmpte_software
#ifndef hjonk
3 months
0
0
24
@_mmpte_software
#ifndef hjonk
3 years
Tweet media one
0
2
24
@_mmpte_software
#ifndef hjonk
2 years
I can't markdown goodly, but here's a write-up of a fun bug I found in Acronis Cyber Protect's minifilter driver.
0
9
22
@_mmpte_software
#ifndef hjonk
3 years
1
5
21
@_mmpte_software
#ifndef hjonk
2 years
505 squat in the bag @ 158lb bw
3
0
19
@_mmpte_software
#ifndef hjonk
2 months
Tweet media one
@h313n_0f_t0r
Helen (of Tor)
2 months
PSA—if ur old enough to have used Kali when it was known as BackTrack then u should probably start prioritizing ur cardiovascular health
111
174
1K
0
1
20
@_mmpte_software
#ifndef hjonk
5 months
470lb x 5 thanks to my coach @CBSC804
5
1
17
@_mmpte_software
#ifndef hjonk
7 months
@StyledApe
charlie
7 months
Imagine waking up after being shot and the first thing you see is Steven Seagal pretending to be a doctor
408
6K
66K
1
2
18
@_mmpte_software
#ifndef hjonk
5 months
3
3
17
@_mmpte_software
#ifndef hjonk
2 years
First conference talk done and dusted! Thank you @BSidesDayton for the opportunity!
Tweet media one
2
1
15
@_mmpte_software
#ifndef hjonk
2 years
@passthehashbrwn wow I just got a $1000 locked metamask hacked facebook instagram seed key bounty using this trick
10
1
10
@_mmpte_software
#ifndef hjonk
5 months
I love squats and lxcore.sys For preworkout I just think about WSL1
1
0
16
@_mmpte_software
#ifndef hjonk
3 months
495x3!! Massive PR all possible thanks to my coach @CBSC804 and the gym homies.
2
3
17
@_mmpte_software
#ifndef hjonk
3 years
Just hit a new deficit deadlift 1rm of 455, decided to celebrate with some 405 low bar.
4
0
15
@_mmpte_software
#ifndef hjonk
6 months
I just like squats, drivers, and Rust, okay? Maybe some Zig if I'm feeling spicy.
3
1
16
@_mmpte_software
#ifndef hjonk
3 years
@demonslay335 This whole function, man... Imagine writing ransomware and feeling that 1337 swagger just to get roasted by the RE/DFIR community lmao.
1
0
15
@_mmpte_software
#ifndef hjonk
1 year
Tweet media one
@UK_Daniel_Card
mRr3b00t
1 year
CMD PROMPT (find out whoami) whoami whoami /all set echo %username% tasklist /v cmd %username% dsregcmd /status klist cmd.exe /c echo %username% Powershell (whoami) [Environment]::UserName $env:USERNAME gci env:* | sort-object name ls env:USERNAME gci env:USERNAME gci env:* ls
28
93
664
2
3
16
@_mmpte_software
#ifndef hjonk
1 year
Couldn't have asked for a better weekend. First competition and got third place. Glad to be home :)
Tweet media one
2
0
14
@_mmpte_software
#ifndef hjonk
2 years
330lb x 3 bench at 165lb I'm so hyped for this competition it's unreal. Big props to my coach Alex at CBSC. #redteamfit
2
0
15
@_mmpte_software
#ifndef hjonk
2 years
@_Kudaes_ Nice post! Fibers are really awesome. I wrote about a different way to achieve more or less the same thing at by modifying the fiber data structure in the TEB
1
5
14
@_mmpte_software
#ifndef hjonk
3 months
@RightyTechExec @VictoriqueM @JohnSmi44560568 This is more tactfully put than what I was going to say. Everyone is a kernel expert today.
2
0
15
@_mmpte_software
#ifndef hjonk
1 year
@chompie1337 @maldr0id @phant0mbot everybody gangsta until their cloud decompiler starts curling 169.254.169.254
0
0
15
@_mmpte_software
#ifndef hjonk
6 months
Eternally grateful for my coach and gym homies. Hit 340lb / ~155kg for a new 5 rep max. Very hyped!
2
1
14
@_mmpte_software
#ifndef hjonk
9 months
Tweet media one
0
0
13
@_mmpte_software
#ifndef hjonk
8 months
Really excited about the progress with pipe-press. 405lb flat bench is so close I can taste it.
2
0
14
@_mmpte_software
#ifndef hjonk
1 year
Very hyped for the 585lb new 1 rep max for reverse band squats. I'm coming for that state record!
0
0
13
@_mmpte_software
#ifndef hjonk
2 years
Excited for my first #BugBounty ! Writeup coming soon!
Tweet media one
2
0
13
@_mmpte_software
#ifndef hjonk
2 months
A positive update: Optiv has, thankfully, reinstated Joey to his original position.
0
1
14
@_mmpte_software
#ifndef hjonk
11 months
Golang for malware dev is garbage.
@HackingLZ
Justin Elze
11 months
What infosec opinion(please no OST😂) has you like this?
Tweet media one
87
13
136
4
1
14
@_mmpte_software
#ifndef hjonk
3 months
Good morning everyone :) Accidentally slept in a little too late, I can't wait to log in to my favorite EDR panel and do some hunting today!
1
0
14
@_mmpte_software
#ifndef hjonk
3 years
Tiny update: needed to resolve exports of reflectively loaded dlls and added a constructor to receive the loaded module's base address and resolve from EAT.
0
3
12
@_mmpte_software
#ifndef hjonk
2 years
I have a hoarding problem.
2
3
12
@_mmpte_software
#ifndef hjonk
2 years
@Israel_Torres @vxunderground mfw it's in the middle of my submission 😂😂😂😂
Tweet media one
3
0
10
@_mmpte_software
#ifndef hjonk
5 years
@AngiTaylorKISS Aw no, that blocked button was slapped by her legal D:
0
0
10
@_mmpte_software
#ifndef hjonk
1 year
@Fox0x01 Quite cringe of @Arm
1
0
12
@_mmpte_software
#ifndef hjonk
6 months
Bench 5rm is moving up, wouldn't have made it even this far without the gym homies and my coach.
0
1
11
@_mmpte_software
#ifndef hjonk
5 months
1
1
12
@_mmpte_software
#ifndef hjonk
5 months
Yaaay 365x2!
2
0
10
@_mmpte_software
#ifndef hjonk
3 months
Eating Mexican with my Panamanian father when the waiter says to him "wow your Spanish is really good where did you learn?" 💀
1
0
11
@_mmpte_software
#ifndef hjonk
11 months
27 white lights 3 PRs 1 USPC bench press national record Best meet of my life.
2
0
10
@_mmpte_software
#ifndef hjonk
2 years
@passthehashbrwn Privet friend. I am _mmpte_software from Ohio oblast. Please send me code sample of FUD RAT malware.
Tweet media one
1
1
10
@_mmpte_software
#ifndef hjonk
7 years
Cooked and booked my tickets for the Westin and @CircleCityCon Another year, another amazing conference! I can't wait to see everyone there :D
0
2
10
@_mmpte_software
#ifndef hjonk
3 years
I never graduated HS or Uni, and got my first job because I worked my ass off for my OSCP and OSCE. This is a woefully stupid take from dollar store John McAfee.
@thejonmccoy
Jon McCoy
3 years
@Infosec_Taylor 100% When I see certs on a resume, I see this person probably doesn't understand security or the community.
11
0
2
1
0
11
@_mmpte_software
#ifndef hjonk
7 months
@yarden_shafir ░S░C░H░E░D░U░L░E░R░I░N░B░I░O░
1
0
10
@_mmpte_software
#ifndef hjonk
3 years
Absolutely no one asked, but here's a Rust thing I made to randomize Rich headers in a given PE.
1
6
10
@_mmpte_software
#ifndef hjonk
3 years
The satisfaction from using your own tooling on an engagement is truly without parallel.
2
0
10
@_mmpte_software
#ifndef hjonk
3 months
😂😭
@_dru1d
dru1d
3 months
@_mmpte_software is set to be a billionaire by the year 2035. This isn’t because of his Windows kernel knowledge or novel research he’s published. It’s because he’s cracked the GenZ attention code. Here’s how he did it, a 🧵:
Tweet media one
5
0
8
0
0
9
@_mmpte_software
#ifndef hjonk
2 years
Tweet media one
1
1
10
@_mmpte_software
#ifndef hjonk
3 years
@itychy0x80 @netspooky This is just a jab at the CVE that was posted rpi. You're not missing anything haha.
1
0
10
@_mmpte_software
#ifndef hjonk
3 years
The Tool show was a m a z i n g
Tweet media one
1
0
10
@_mmpte_software
#ifndef hjonk
9 months
@yarden_shafir Buy both versions of Windows Internals. Pick a random chapter, read it until you understand enough to start writing code relevant to the chapter. Rinse. Repeat.
0
1
10
@_mmpte_software
#ifndef hjonk
3 years
@gf_256 The proposed solution got me good.
0
0
10
@_mmpte_software
#ifndef hjonk
2 months
@lazzslayer Joey is awesome. Fuck them for doing this.
0
0
14
@_mmpte_software
#ifndef hjonk
2 years
Tweet media one
0
0
9
@_mmpte_software
#ifndef hjonk
6 months
Squats and rust squats and rust squats and rust
1
0
9
@_mmpte_software
#ifndef hjonk
3 months
Ah yes, "it's possible that the cabal of woke Rust programmers planned a CS outage because of null ptr deref." Lol Lmao, even
@Perpetualmaniac
Zach Vorhies / Google Whistleblower
3 months
For people looking for a conspiracy, the replacement language for C++, Rust, is compromised by a cabal of woke tards that are doing strange things. It's possible this could be a plot to move mission-critical code to Rust. It's the only other language Linux is allowing, other
436
619
6K
1
0
9
@_mmpte_software
#ifndef hjonk
2 years
@ilove2pwn_ Are you talking about something like NINA?
0
3
9
@_mmpte_software
#ifndef hjonk
2 years
"Okay, this time I'm gonna keep the analysis VM organized and clean" - Me, lying to myself.
2
0
9
@_mmpte_software
#ifndef hjonk
3 months
@timmisiak Me clicking the full size photo
1
0
9
@_mmpte_software
#ifndef hjonk
3 years
I'm so fucking proud of my brother. Went from bolting in car seats at a factory 3y ago to moving into his second IT job as a newly minted sysadmin. Hard work pays off. God damn I love this industry. I'm not crying. Okay maybe just a bit.
0
0
8
@_mmpte_software
#ifndef hjonk
4 years
@bettersafetynet If your red team can't operate without Cobalt strike, it's not a red team.
0
0
9
@_mmpte_software
#ifndef hjonk
3 months
0
0
9
@_mmpte_software
#ifndef hjonk
9 months
You might be Hispanic, but are you "shares photos of Goya beans with your father" Hispanic?
Tweet media one
2
0
7
@_mmpte_software
#ifndef hjonk
3 months
@carrot_c4k3 He has a conspiracy theory about how a woke cabal of rust programmers made this happen to convert more people to rust. Zach is an absolute clown.
1
0
8