Steve Borosh
@rvrsh3ll
Followers
586
Following
426
Media
417
Statuses
1,500
"The future is not set. There is no fate, but what we make for ourselves". - John Connor
Costa Rica
Joined March 2024
Don't wanna be here?
Send us removal request.
Explore trending content on Musk Viewer
#خلصوا_صفقات_الهلال1
• 1139791 Tweets
Brazil
• 610085 Tweets
Elon Musk
• 581180 Tweets
Alexandre de Moraes
• 435119 Tweets
ラピュタ
• 418393 Tweets
Atatürk
• 410706 Tweets
Johnny
• 246468 Tweets
Gaudreau
• 179388 Tweets
Xandão
• 132149 Tweets
Sterling
• 122453 Tweets
olivia
• 120452 Tweets
Napoli
• 110947 Tweets
Bluesky
• 84763 Tweets
Lyon
• 67813 Tweets
Adeus Twitter
• 64631 Tweets
Labor Day
• 57186 Tweets
كاس العالم
• 52398 Tweets
Arteta
• 40473 Tweets
Nelson
• 38023 Tweets
#قفلوا_احتياجات_النصر
• 38007 Tweets
Javier Acosta
• 30221 Tweets
Strasbourg
• 26687 Tweets
Tadic
• 23327 Tweets
Scott McTominay
• 23239 Tweets
Multa de 50
• 22338 Tweets
Dzeko
• 19063 Tweets
#FBvALY
• 17848 Tweets
Lolla
• 16893 Tweets
Derrubaram o X
• 15492 Tweets
Kenya Power
• 14421 Tweets
Fatih Tekke
• 11568 Tweets
Alanya
• 10849 Tweets
VPNs
• 10351 Tweets
@UK_Daniel_Card
@pumplekin
Wow, defensive much? Doesn't have a solution to how he would tackle the problem, so he lashes out on the internet. Cool bro. Don't want me to reply? Block me if you don't want your own ignorance called out .
1
0
45
Finished out
@HackSpaceCon
with
@BHinfoSecurity
@_k_4_t_3_
presenting our "Offensive Operations Against Foreign Adversaries: Russia" edition to a full room was awesome! New tool drop, blog to follow. "взломать планету" .
0
8
44
Grab your tools and lists, meet
@BHinfoSecurity
@_k_4_t_3_
and I at
@defcon
@RedTeamVillage_
where we pivot through a simulated Russian defense contractor network doing the things you can't on your limited scope
#redteam
.
3
11
43
Exciting news! My employer
@BHinfoSecurity
is gracious enough to support building a
#Cybersecurity
community here in
#CostaRica
! Proud to announce our first "Cyber Connect: A Cybersecurity community meetup for Costa Rica!" on June 22nd. Need a reason visit this amazing place?
3
14
40
Spent hours building a payload today. Brain is wrecked. Test environment works vs good ol'crowdstrike. Result, clickonce SSH c2 with user shell (no password required), and bonus SOCKS proxy to shove traffic into the network. Thanks for help
@_k_4_t_3_
@Tyl0us
now, food
5
1
37
Friends and followers,
As you may have noticed, I’ve taken an extended absence from X lately. As the Fresh Prince of Bel Air said, “My life got flipped turned upside down”.
I sincerely appreciate those of you who reached out to check if I was ok, or even alive.
2
4
36
What a fantastic inaugural
@BHinfoSecurity
"Cyber Connect" here in
#CostaRica
Here is Ruben, winner of a laptop, rode 3+ hours from the coast to get here on his 🏍️. Absolute dedication. I LOVE it!
0
2
30
@BHinfoSecurity
David drops "Squeegee". Part of the OOAFA collection . Scrape RDP screenshots for usernames, English or other ;), add to your <insert spray/brute tool>.
0
6
30
Shout-outs to my boi
@dafthack
for carting me to and from Surgery then checking in on me. 😊 And
@ustayready
for bringing me some post-surgery sustenance for maximum regrowth!
#friends
#goodhumans
#wehackhealth
3
0
27
Wow three years flew by at
@BHinfoSecurity
. Doing cool stuff with cool people will do that. So thankful.
3
0
27
Prepping for a talk this weekend. Analyzing research periods in my career.
3
1
26
@PyroTek3
@HackingDave
@passingthehash
@gentilkiwi
I got my current position from networking at a
@hackmiami
@defcon
party in 2016. It literally pays to meet people. And usually not at talks. Put your introverted asses out there for a few days. Meet randos. Introduce yourself, over and over. It helps. Recover when you're home 😎
1
6
24
Well, I'm back to full-time cloud ☁️ assessments at
@BHinfoSecurity
. Which, means evil scientist-like mad
#GraphRunner
updates coming. We have a list of updates to do but if you want to DM me, I'm open to helping you get a PR out of something. Anything to make
@msftsecurity
sweat
2
4
24
Made the red eye home from
@HackSpaceCon
to Costa Rica. Still stoked, can't sleep, heading up the mountain to catch the sunrise.
3
0
23
Self-pat on the back for "If you build it, they will come" moment. Bit scary. 🦾 Also, BIG kudos to
@BHinfoSecurity
for letting my energy ⚡️ flow here ❤️. I can't wait to see what great things we do for
#CostaRica
and
#CyberSecurity
0
3
21
Repping
@BHinfoSecurity
with
@_k_4_t_3_
chatting about hacking Russian networks. So fun! Thanks
@rodsoto
!
0
7
19
Chill Saturday at "undisclosed coffee shop" working on some OOAFA material.
@hackmiami
talk coming up.
#CostaRica
2
0
20
My first talk here! Super excited to represent
@BHinfoSecurity
. These are amazing humans here and I thanked
@pwnedcr
for the invitation. 💪
Te esperamos mañana a la 1:00 pm en la Universidad Latina de Costa Rica, cerramos el registro presencial hoy a la 1:00 pm, ¡no te lo pierdas! (Charla en Ingles)
Registro:
0
0
2
0
1
19
Grabbed an early flight home to Costa Rica. This place is magnetic. Guess I'll YouTube how to take stitches out and rest a few more days. Thinking of my fallen brothers and sisters today. I struggle with
#MemorialDay
as it just reminds me of my survivor's guilt.
1
0
17
Minor patchwork and rest. Then, back to Costa Rica. Building something there. News soon!
4
0
16
Preflight coffee before heading home to Costa Rica. Already looking forward to
@hackmiami
next month!
1
0
16
It's crunch time with class for
@bsideskrakow
with
@BHinfoSecurity
. Come join us for
#OOAFA
Offensive Operations Against Foreign Adversaries: Russia. We'll cover everything from OSINT, methods of entry, foreign language hurdles, OPSEC, attribution, and dive into "Astra
0
6
16
Was so amped after driving 2 hours to the closet open gym, I was interrupted twice by the kind staff feverishly pointing at the don't slam weights sign. 🤷♂️ Got a little intense 💪
3
0
15
Stuck in traffic. Made this public after all these years. Some YOLO wmic 😁
0
1
16
The 30 lines of code that started my
#infosec
career. I had no idea anyone would ever look at it. Got hired as a direct result shortly after posting it. I don't care how mundane your code is. Save it up there. Someone just might need it.
1
1
16
I was pleasantly surprised with the turnout to our workshop on a Saturday, after the con, and especially since the workshop was about
#hacking
Russian networks. Not many employers will send people for this lol. If yours does,
@_k_4_t_3_
and I are giving another talk
@hackmiami
1
3
15
Got con-flu 🤧. What should I work on today? Backdoor this c# binary on a client network or release more tools for hacking our adversaries?
1
3
15
Finger's crossed 🤞 that it's going to be busy conference year for
@_k_4_t_3_
and I with
#OOFA
;
@HackSpaceCon
✅,
@hackmiami
(going) ,
@defcon
(submitted),
@ekoparty
(submitted).
2
1
15
Success 🙌 🦹😈!!! Smooth SSH tunnel vs EDR and shell as the user. No password needed. Think I'll release this "payload" sometime. It's stupid easy. Modified from my EAIA course.
Spent hours building a payload today. Brain is wrecked. Test environment works vs good ol'crowdstrike. Result, clickonce SSH c2 with user shell (no password required), and bonus SOCKS proxy to shove traffic into the network. Thanks for help
@_k_4_t_3_
@Tyl0us
now, food
5
1
37
1
0
15
Idea: Use this on offense selectively or collect the network and process offline to build a picture of the tech stacks in the environment. Need something like
@harmj0y
's Nemesis to enrich the data. You could even timeline user action and use behavioral analysis for target
[Repo] RetrievIR is an impressive PowerShell script designed to help Incident Responders collect forensic evidence from local and remote Windows devices.
#PowerShell
#CyberSecurity
2
79
259
1
5
15
@Octoberfest73
I'll share my "c2" payload soon. Easy days deploying SSH tunnels with ClickOnce. Finds an outbound port, SSH over port 53 is surprisingly common for "restricted" networks, and you get a shell as the user (no pass req), and a SOCKS proxy. What EDR?
2
1
14
Finally got a desk and chair for my office area. After
@HackSpaceCon
this week, back to a "normal" work/life flow. Back to
#hacking
🥷
2
0
13
@Octoberfest73
Windows has the option to install sshd.exe. just bring your own and name it sddhd.exe or whatever. Signature good, crowdsrike complains when sshd.exe connects, rename it, 🤷♂️. Few other configs to bring, super easy. Key auth lets you auth as the user without password. Will share
2
0
12
New repo under OOAFA. Some useful lists for
#hacking
operations against "foreign adversaries". Ya know, just doing our part to "impose cost". More to come!
0
2
12
Score!
@HackingDave
I asked the sales dude for this and he immediately references back to the future 😂 So, I bought two 💪
1
0
12
Settled at the new casa. I can finally focus. It's been crazy, living in Alajuela, the jungles of Parrita, high rise condo near the consular's, and now the hills among the coffee beans. I'm really looking forward to seeing those of you going to
@HackSpaceCon
and
@hackmiami
2
0
12
About to level up the
#OST
debate with some tool drops at
@HackSpaceCon
Do your morals change with your target?
#OOAFA
0
6
12
Big day at
@HackSpaceCon
,
@_k_4_t_3_
and I will giving a workshop on hacking Russian defense and contract networks, which is a prelude to the full course we're building. We've found that there's a large, un-tapped software ecosystem to exploit, and many new TTPs to discover.
1
1
11
Some shots from this last weekend here in
#CostaRica
. My favorite part was the scenic drive up and down
#Poas
volcano. Back to establishing C2 tomorrow. 🦾
1
0
11
Oh how I loath these "do this career because it makes mad money" promos.
Cyber Security is one of the highest paying fields in IT and also one of the fastest growing!
The average CS salary is $125,000 a year.
If you want a career in Cybersecurity, I will share with you all today 12 FREE courses that will help you.
Indicate your interest below 👇
2K
359
2K
3
0
10
Picturing an evil lair tunneled underneath where I can
#hacktheplanet
and occasionally swim with the 🐢.
#CostaRica
1
0
10
@BHinfoSecurity
Fernando Piazza presenting "Web vulnerabilities from an attackers perspective" at
#CyberConnect
#costarica
@Antisy_Training
💪💪
1
0
10
I had a great time at the
@Defcon506
@hackthebox_eu
meetup last night here in
#CostaRica
.
#hacktheplanet
1
0
9
I'm coming for your sensitive loot today "client". By way of TCP/UDP packets routed through
#space
, thanks
@elonmusk
and
@Starlink
, I intend to take down that "Gibson" of yours.
#hacktheplanet
0
0
9
I noticed MSFT added a warning label to the device code authentication flow. What if the source came from INSIDE the company? 🤭 They should make it blink.
4
1
9
@UK_Daniel_Card
alert the international Internet police!!
#Hacker
identified performing live
#graphrunner
attacks against a client... from a coffee shop!!!!! 😜
0
0
8
0
0
7
Slides are up! Great time!
Game day!! Can't wait to present my "totally finished" presentation 🤪. If there are any issues, blame one of your own members for taking me out late 🌃 🕺. See you all soon!!!
0
0
6
2
5
8
1
2
8
What a great time with
@pwnedcr
today! I'm looking forward to learning from and supporting this community. Me crouching is definitely meme worthy...
@BHinfoSecurity
@Antisy_Training
0
1
8
@TimMedin
@Kostastsale
Everyone wants to say it, "Fuck
@SANSInstitute
". There, I said it. Happily will keep saying it until they go out of business. Congratulations on partnering with a company who values the students and their access to learning over anything else.
1
0
8
As a result, I moved to Costa Rica in March and am entering the “Digital Nomad” program here to get benefits as a resident and work from wherever the wind takes me.
2
0
8
Daddy
@elonmusk
making remote work possible with
#Starlink
#costarica
hardwired with sat backup yeah boiiiii
3
0
8
Cat woke me up by bringing me a bug as tribute. Snapped this after releasing the bugger outside. Nothin but crickets out. Might crash in the hammock. Or, hack stuff 🤷♂️
2
0
8
Thanks
@merill
, all my graph hacking go brrrrrrrrrrrrr 😊
Microsoft Graph PowerShell + PowerShell 7's -Parallel is a potent combination to make your scripts run SUPER FAST.
I use it in my Export-MsIdAppConsentGrantReport report to run 20 threads in parallel to speed things up.
1
33
126
0
1
8
I have my hands in way too many pots right now. If I only had organizational skillz.
1
0
8
I plead the 5th on use of this tool 😁
0
0
7
