solst/ICE of Astarte's banner
solst/ICE of Astarte's profile picture

solst/ICE of Astarte

@IceSolst30,603 subscribers

Voidweaver @AstarteSecurity - Pentester turned seceng turned meeting canceller - meetup https://t.co/E4rlINC0U6 - conf tracker https://t.co/tReNhuhANF

Shorts

🚨I HAVE LEAKED EVERY SINGLE PASSWORD EVER (4 to 32 chars long)! That is 347 novemdecillion passwords, the largest password leak ever! ALL of your passwords are in here, GUARANTEED! This is a client-side app, so what you search for is all local, never sent anywhere.

🚨I HAVE LEAKED EVERY SINGLE PASSWORD EVER (4 to 32 chars long)! That is 347 novemdecillion passwords, the largest password leak ever! ALL of your passwords are in here, GUARANTEED! This is a client-side app, so what you search for is all local, never sent anywhere.

5,435,509 views

I have leaked every single SSN into a public searchable list (in case you are looking for one). Your SSN is in here too, 100% guaranteed. Forgot your SSN? Need a new one? Use this tool!

Sensitive content

I have leaked every single SSN into a public searchable list (in case you are looking for one). Your SSN is in here too, 100% guaranteed. Forgot your SSN? Need a new one? Use this tool!

2,491,034 views

NEW TOOL: Chirp Uses sound to transfer data between machines. Details and link below.

NEW TOOL: Chirp Uses sound to transfer data between machines. Details and link below.

1,422,865 views

Building a harness to run scans with an agent. It is absolutely garbage. Completely useless. There’s literally 0 benefit to using it over plain Claude Code. Everything it can do, you can just do via Skills etc. Many were preaching the benefits of a harness, but I’m not sure.

Building a harness to run scans with an agent. It is absolutely garbage. Completely useless. There’s literally 0 benefit to using it over plain Claude Code. Everything it can do, you can just do via Skills etc. Many were preaching the benefits of a harness, but I’m not sure.

54,685 views

Adding an in-malware shop to buy upgrades Suggestions for items?

Adding an in-malware shop to buy upgrades Suggestions for items?

135,966 views

🤡 Introducing OpenClown 🦀⚡️Rust, Blazing Fast 🔐Bitcoin Style Encryption 🤤Skills (backdoors) 🧠 Our Most Agent Yet 🦞Lobster

🤡 Introducing OpenClown 🦀⚡️Rust, Blazing Fast 🔐Bitcoin Style Encryption 🤤Skills (backdoors) 🧠 Our Most Agent Yet 🦞Lobster

82,072 views

THEY MADE A WORM IN C&C GENRALS Insane blog post by Bryan Alexander from Atredis Partners, presented at the DistrictCon junkyard

THEY MADE A WORM IN C&C GENRALS Insane blog post by Bryan Alexander from Atredis Partners, presented at the DistrictCon junkyard

10,682 views

Videos

LIVE
1.2k

Anya Rossi

sweetdream.ai

SweetDream.aiSponsoredLivecam
Streaming Now

Watch Anya Live

Anya is streaming live right now! Join her private show and enjoy exclusive content.

HD live stream
Exclusive private shows
1.2k viewers online

Free preview available • Premium content

I wrote Task Unmanager: keeps killing processes Russian Roulette style, until your machine crashes
0:22
IceSolst's profile picture

I wrote Task Unmanager: keeps killing processes Russian Roulette style, until your machine crashes

solst/ICE of Astarte

1,800,910 views • 4 months ago

NEW TOOL: ITOA (Image to ASCII) Convert your images to an ASCII canvas, monochrome or colored, and save them into a separate image. Works on mobile (but large size is more limited than on desktop).
0:31
IceSolst's profile picture

NEW TOOL: ITOA (Image to ASCII) Convert your images to an ASCII canvas, monochrome or colored, and save them into a separate image. Works on mobile (but large size is more limited than on desktop).

solst/ICE of Astarte

982,703 views • 1 year ago

LiteLLM hack summary: What is it, why it's smart to target it, and how it happened (so far)
7:08
IceSolst's profile picture

LiteLLM hack summary: What is it, why it's smart to target it, and how it happened (so far)

solst/ICE of Astarte

154,947 views • 2 months ago

Pentest tools tier list: learn about which tools are actually used in pentests, and why, with Andy Swift Please comment why you disagree and what we've missed!! The three S-tier tools have a shared attribute: They only do ONE thing, but do it really well and reliably
2:17
IceSolst's profile picture

Pentest tools tier list: learn about which tools are actually used in pentests, and why, with Andy Swift Please comment why you disagree and what we've missed!! The three S-tier tools have a shared attribute: They only do ONE thing, but do it really well and reliably

solst/ICE of Astarte

45,063 views • 2 months ago

I got to nerd out with haroon meer (!!). Thinkst to me has always been the golden standard of how a security company should feel like.
1:05
IceSolst's profile picture

I got to nerd out with haroon meer (!!). Thinkst to me has always been the golden standard of how a security company should feel like.

solst/ICE of Astarte

35,460 views • 2 months ago

NEW TOOL: It's a fully in-browser binary/file analysis tool with a hex editor. Features: - Hex editor and you can save the edited file - Mach-O symbols - ELF and PE basic metadata - Zip file contents - Fully client-side in-browser, so it is private and the files are never sent anywhere This is meant as a basic and quick tool to check simple metadata and do hex edits. If you need something more robust for malware analysis consider other tools like Malcore™ aka Malcore.io™ or just use a cli/native tool. Shoutout to Battle Programmer Yuu for inspiring me to use Unifont that I stole from tmp.0ut (it looks so good!) The code is all generated by Claude in Cursor and hosted on Github Pages. I don't really do any binary analysis, so if you have suggestions for improvements, let me know. (this is technically 'early access' and i haven't tested it too much)
0:29
IceSolst's profile picture

NEW TOOL: It's a fully in-browser binary/file analysis tool with a hex editor. Features: - Hex editor and you can save the edited file - Mach-O symbols - ELF and PE basic metadata - Zip file contents - Fully client-side in-browser, so it is private and the files are never sent anywhere This is meant as a basic and quick tool to check simple metadata and do hex edits. If you need something more robust for malware analysis consider other tools like Malcore™ aka Malcore.io™ or just use a cli/native tool. Shoutout to Battle Programmer Yuu for inspiring me to use Unifont that I stole from tmp.0ut (it looks so good!) The code is all generated by Claude in Cursor and hosted on Github Pages. I don't really do any binary analysis, so if you have suggestions for improvements, let me know. (this is technically 'early access' and i haven't tested it too much)

solst/ICE of Astarte

142,543 views • 1 year ago

1-minute summary of the Claude security-review bypass
0:52
IceSolst's profile picture

1-minute summary of the Claude security-review bypass

solst/ICE of Astarte

39,557 views • 3 months ago

New video: dawgyg - WoH covered a lot, including: how AI-generated bug bounty reports are a burden on OSS (FFmpeg mentioned), transitioning from bug hunting to working in-house on an AppSec team, the early blackhat days, and multiple appearances of his cats. 30sec clip:
0:42
IceSolst's profile picture

New video: dawgyg - WoH covered a lot, including: how AI-generated bug bounty reports are a burden on OSS (FFmpeg mentioned), transitioning from bug hunting to working in-house on an AppSec team, the early blackhat days, and multiple appearances of his cats. 30sec clip:

solst/ICE of Astarte

33,940 views • 3 months ago

Spicy take: SOC the hardest security job, given industry expectations. Also IMO external SOCs are useless: You just get alerted twice, once by your tools, and another by the external SOC, just forwarding the alert with no extra context. What do you think? Check out the latest video with spencer on pentesting Active Directory
0:42
IceSolst's profile picture

Spicy take: SOC the hardest security job, given industry expectations. Also IMO external SOCs are useless: You just get alerted twice, once by your tools, and another by the external SOC, just forwarding the alert with no extra context. What do you think? Check out the latest video with spencer on pentesting Active Directory

solst/ICE of Astarte

24,306 views • 3 months ago

Uploaded two “youtube videos”: - first covers CRXaminer and browser extensions hacks - second is a conversation with tuckner on the same topics (he knows a lot) - links below (separate less shitposty account) - click subscribe on “youtube”
0:51
IceSolst's profile picture

Uploaded two “youtube videos”: - first covers CRXaminer and browser extensions hacks - second is a conversation with tuckner on the same topics (he knows a lot) - links below (separate less shitposty account) - click subscribe on “youtube”

solst/ICE of Astarte

28,001 views • 4 months ago

Full episode below with Tib3rius Everything you've wanted to know about web app pentests
0:29
IceSolst's profile picture

Full episode below with Tib3rius Everything you've wanted to know about web app pentests

solst/ICE of Astarte

20,590 views • 3 months ago

Here is the demo of SBOM-Tools by the OG legend Alex Matrosov (IQ 999999)
6:34
IceSolst's profile picture

Here is the demo of SBOM-Tools by the OG legend Alex Matrosov (IQ 999999)

solst/ICE of Astarte

18,035 views • 3 months ago

The lamest CVE of all time caused by the lamest product feature of all time. Full video with demo below.
1:29
IceSolst's profile picture

The lamest CVE of all time caused by the lamest product feature of all time. Full video with demo below.

solst/ICE of Astarte

11,742 views • 3 months ago

No more content to load