Loading video...

Video Failed to Load

Go Home

New attack vector: FileFix. A phishing trick that executes PowerShell straight from your browser no Run dialog, no pop-ups. Just a fake file path + clipboard + File Explorer. Red teamers, this one’s wild. 📽️ PoC + write-up:

T3chFalcon's profile picture

IT Guy

38,348 subscribers

107,511 views • 11 months ago •via X (Twitter)

Science & Technology
LIVE

Anya Rossi• Live Now

Private livecam show

10 Comments

mr.d0x's profile picture
mr.d0x11 months ago

Awesome work 👏

IT Guy's profile picture
IT Guy11 months ago

You've laid the groundwork tbh which made it smooth the idea was top-notch I really admire what you do also especially in the maldev space! 🙌🏾 Thanks for following me back too🥹🙏🏾

ZoeCyber's profile picture
ZoeCyber11 months ago

This is lit❤️

IT Guy's profile picture
IT Guy11 months ago

Thanks boss

Matrix's profile picture
Matrix11 months ago

This is nice 👏🏾 @mrd0x 👏🏾👏🏾👏🏾

IT Guy's profile picture
IT Guy11 months ago

@mrd0x He is HIM!

H4RUK7 KIRA 🇯🇵's profile picture
H4RUK7 KIRA 🇯🇵11 months ago

Wonderful

IT Guy's profile picture
IT Guy11 months ago

Thank you 🙏🏾

Jaybeepy's profile picture
Jaybeepy11 months ago

Good work man

IT Guy's profile picture
IT Guy11 months ago

Thanks man

Related Videos

Whoa - this guy is saying that the Epstein file dumps if no one’s held accountable amount to nothing. Every file dump is just a manual on how these scumbags survive.
3:16

Whoa - this guy is saying that the Epstein file dumps if no one’s held accountable amount to nothing. Every file dump is just a manual on how these scumbags survive.

Karli Bonne’ 🇺🇸

10,348 views • 4 months ago

🚀 Last night, I came up with an amazing idea and implemented it using Cursor: fig4ai. Run `npx fig2ai ` This will generate a `.designrules` file for your project. Using this file, your Figma file is transformed into an AI context that you can refer to for any kind of front-end work. It's open sourced on: See the PoC video:
0:37

🚀 Last night, I came up with an amazing idea and implemented it using Cursor: fig4ai. Run `npx fig2ai ` This will generate a `.designrules` file for your project. Using this file, your Figma file is transformed into an AI context that you can refer to for any kind of front-end work. It's open sourced on: See the PoC video:

fatih kadir akın

152,410 views • 1 year ago

Stop...Your AI shouldn’t sit in a sidebar. It should actually work inside your notes. AnySlate just made that real. Your AI can: • read your markdown files • edit sections • create docs • search your workspace • organize everything No copy paste No switching tabs No proprietary lock-in Every file is a real .md file Your notes stay portable forever And the wild part — it supports MCP natively So Claude, Cursor, or Windsurf can directly work inside your workspace This is the shift from AI that helps you write to AI that manages your knowledge Real-time collaboration Built-in AI assistant PDF + web publishing Version history Works on Mac Windows Linux + browser This is what a modern markdown editor should look like
0:20

Stop...Your AI shouldn’t sit in a sidebar. It should actually work inside your notes. AnySlate just made that real. Your AI can: • read your markdown files • edit sections • create docs • search your workspace • organize everything No copy paste No switching tabs No proprietary lock-in Every file is a real .md file Your notes stay portable forever And the wild part — it supports MCP natively So Claude, Cursor, or Windsurf can directly work inside your workspace This is the shift from AI that helps you write to AI that manages your knowledge Real-time collaboration Built-in AI assistant PDF + web publishing Version history Works on Mac Windows Linux + browser This is what a modern markdown editor should look like

Nainsi Dwivedi

13,617 views • 2 months ago

BOOM! 💥 Today I added WebGPU support for Andrej Karpathy's nanochat models, meaning they can run 100% locally in your browser (no server)! The d32 version runs at over 50 tps on my M4 Max 🚀 Pretty wild that you can now deploy AI applications using just a single index.html file 😅
0:20

BOOM! 💥 Today I added WebGPU support for Andrej Karpathy's nanochat models, meaning they can run 100% locally in your browser (no server)! The d32 version runs at over 50 tps on my M4 Max 🚀 Pretty wild that you can now deploy AI applications using just a single index.html file 😅

Xenova

95,096 views • 7 months ago

happy friday. sneak peek at some new features i'm building for the bankr agent: > sandboxed filesystem (your agent gets its own secure file system in the browser. you control what it can access. no agent running loose on your actual computer) > skill uploads (plugin new capabilities so your agent learns new things) > cli download & access > secure environment variables for api keys > github integration (connect your repo for reads and writes directly from your agent) all of this runs in a secure browser environment. no desktop app. no messy configuration. no downloading agent harnesses from the terminal. just a sandbox you control. in the video: i download an audit skill, run it against a smart contract, and save the report straight to the filesystem. then i ask the agent to pull all my 2026 transactions and write a csv for my accountant.
0:58

happy friday. sneak peek at some new features i'm building for the bankr agent: > sandboxed filesystem (your agent gets its own secure file system in the browser. you control what it can access. no agent running loose on your actual computer) > skill uploads (plugin new capabilities so your agent learns new things) > cli download & access > secure environment variables for api keys > github integration (connect your repo for reads and writes directly from your agent) all of this runs in a secure browser environment. no desktop app. no messy configuration. no downloading agent harnesses from the terminal. just a sandbox you control. in the video: i download an audit skill, run it against a smart contract, and save the report straight to the filesystem. then i ask the agent to pull all my 2026 transactions and write a csv for my accountant.

deployer

45,597 views • 1 month ago

CVE-2025-24071: Microsoft Windows File Explorer Spoofing Vulnerability Check out the new security vulnerability I discovered in Windows, which I believe is potentially being sold in the wild. (fixed patch tuesday) Blog post: PoC:
0:46

CVE-2025-24071: Microsoft Windows File Explorer Spoofing Vulnerability Check out the new security vulnerability I discovered in Windows, which I believe is potentially being sold in the wild. (fixed patch tuesday) Blog post: PoC:

0x6rss

45,616 views • 1 year ago

Tested: Windows 11’s ‘faster’ File Explorer (preloaded) is still slower than Windows 10. On a 4GB RAM test machine, File Explorer used ~32.4MB of RAM without preloading. After turning on preloading, Windows quietly adds ~35MB more. So Explorer now sits at ~67.4MB in memory before you even open it. 35MB isn’t a big deal in 2025. Your browser eats that for breakfast. That's not the point of my testing. Why is the preloaded File Explorer still slower than Windows 10? I made a video to compare the two versions.
0:20

Tested: Windows 11’s ‘faster’ File Explorer (preloaded) is still slower than Windows 10. On a 4GB RAM test machine, File Explorer used ~32.4MB of RAM without preloading. After turning on preloading, Windows quietly adds ~35MB more. So Explorer now sits at ~67.4MB in memory before you even open it. 35MB isn’t a big deal in 2025. Your browser eats that for breakfast. That's not the point of my testing. Why is the preloaded File Explorer still slower than Windows 10? I made a video to compare the two versions.

Windows Latest

752,430 views • 6 months ago

Vjekoslav built a Windows file explorer from scratch. 2.3MB executable. No VC runtime. He threw away the standard library and wrote his own.
1:04

Vjekoslav built a Windows file explorer from scratch. 2.3MB executable. No VC runtime. He threw away the standard library and wrote his own.

Scott Hanselman 🌮

209,826 views • 4 months ago

‼️CVE-2026-0740 - Ninja Forms File Uploads up to v3.3.26 - Unauthenticated Arbitrary File Upload PoC:
5:23

‼️CVE-2026-0740 - Ninja Forms File Uploads up to v3.3.26 - Unauthenticated Arbitrary File Upload PoC:

Dark Web Informer

24,181 views • 1 month ago

Did you know is full stack? This means you can run a node server in your browser! I created this full stack auth system with React + Express + SQLite DB. All running from my project file with no outside dependencies. This is the real power of Bolt.
1:17

Did you know is full stack? This means you can run a node server in your browser! I created this full stack auth system with React + Express + SQLite DB. All running from my project file with no outside dependencies. This is the real power of Bolt.

Wes Winder

27,747 views • 1 year ago

Claude pushed this extremely long file to main. How did Claude even write a file this long lol?
0:25

Claude pushed this extremely long file to main. How did Claude even write a file this long lol?

Sauers

39,813 views • 9 months ago

🚨CVE-2025-24071 // CVE-2025-24054: PoC for NTLM Hash Leak via RAR/ZIP Extraction and .library-ms File Write-up: GitHub:
0:46

🚨CVE-2025-24071 // CVE-2025-24054: PoC for NTLM Hash Leak via RAR/ZIP Extraction and .library-ms File Write-up: GitHub:

Dark Web Informer

28,504 views • 7 months ago

Using File Pilot is crazy because every day I get a little bit excited to open a file explorer
0:25

Using File Pilot is crazy because every day I get a little bit excited to open a file explorer

Ben Visness

48,836 views • 10 months ago

🦀Crabwalk 1.0.11 🦀 Workspace Editor is live✍️ Monitor your OpenClaw agents AND edit their files—all from the browser. Mobile too. → Browse your agent's files in a tree view → Full file editor with save and delete → Create new files with path selection → Markdown rendering for docs → Mobile-friendly with swipe drawer for file nav
0:24

🦀Crabwalk 1.0.11 🦀 Workspace Editor is live✍️ Monitor your OpenClaw agents AND edit their files—all from the browser. Mobile too. → Browse your agent's files in a tree view → Full file editor with save and delete → Create new files with path selection → Markdown rendering for docs → Mobile-friendly with swipe drawer for file nav

Luciano Castillo

28,276 views • 3 months ago

🚨 Gemini 3.5 Flash just built a full Windows-style web OS in ONE shot. Single HTML file, embedded CSS + JS. From one prompt: > Windows-style taskbar + start menu > Draggable/resizable app windows > Functional file explorer > Working terminal + browser mockup > Desktop icons + notifications > Settings app, themes, boot screen All generated in one pass with almost no corrections. Gemini’s frontend/UI generation lately is getting ridiculous.
0:47

🚨 Gemini 3.5 Flash just built a full Windows-style web OS in ONE shot. Single HTML file, embedded CSS + JS. From one prompt: > Windows-style taskbar + start menu > Draggable/resizable app windows > Functional file explorer > Working terminal + browser mockup > Desktop icons + notifications > Settings app, themes, boot screen All generated in one pass with almost no corrections. Gemini’s frontend/UI generation lately is getting ridiculous.

WorldofAI

21,975 views • 18 days ago

Introducing Pastery A clipboard app for macOS that brings up all your previous copied items with a single hotkey No more switching between windows multiple times. Just copy everything at once, and paste seamlessly right where you need them. Supports all file formats, customisable hotkeys, and feels like a native macOS feature rather than an installed app.
0:22

Introducing Pastery A clipboard app for macOS that brings up all your previous copied items with a single hotkey No more switching between windows multiple times. Just copy everything at once, and paste seamlessly right where you need them. Supports all file formats, customisable hotkeys, and feels like a native macOS feature rather than an installed app.

Vishal Bhardwaj

67,954 views • 1 month ago

A message from the comptroller!!! File! File! File!! This is not a drill!!! #PACTACT ⁦Veterans Affairs⁩ ⁦The White House⁩
1:53

A message from the comptroller!!! File! File! File!! This is not a drill!!! #PACTACT ⁦Veterans Affairs⁩ ⁦The White House⁩

Jon Stewart

1,637,893 views • 2 years ago

‼️ A threat actor is advertising a “ClickFix” payload delivery method that allegedly stores malware within browser cache to evade detection and bypass EDR, claiming it avoids suspicious web requests and executes via disguised commands in File Explorer. The offer includes source code, a builder, setup instructions, and a template (priced at $300), with optional custom template rewrites for an additional $200.
0:35

‼️ A threat actor is advertising a “ClickFix” payload delivery method that allegedly stores malware within browser cache to evade detection and bypass EDR, claiming it avoids suspicious web requests and executes via disguised commands in File Explorer. The offer includes source code, a builder, setup instructions, and a template (priced at $300), with optional custom template rewrites for an additional $200.

Dark Web Informer

23,376 views • 3 months ago

Bruh… this File-Tree component is ridiculously polished 🌳 Trees is an open-source file tree system for building IDE-style file explorers with search, drag-and-drop, file selection, Git status indicators, and more. Perfect for code editors, developer tools, file managers, and apps that need a modern file explorer UI :) Follow Ram Maheshwari for more 💎 #html #ai #javascript #coding #webdevelopment #programming
0:34

Bruh… this File-Tree component is ridiculously polished 🌳 Trees is an open-source file tree system for building IDE-style file explorers with search, drag-and-drop, file selection, Git status indicators, and more. Perfect for code editors, developer tools, file managers, and apps that need a modern file explorer UI :) Follow Ram Maheshwari for more 💎 #html #ai #javascript #coding #webdevelopment #programming

Ram Maheshwari

15,173 views • 2 days ago

I present to you my AI automation that converts your Google Drive folder to RAG vector database. It also updates the RAG vector database whenever a new file is added or deleted from the Google Drive folder. You can download the workflow for free (link in comment)
0:36

I present to you my AI automation that converts your Google Drive folder to RAG vector database. It also updates the RAG vector database whenever a new file is added or deleted from the Google Drive folder. You can download the workflow for free (link in comment)

Victor

260,273 views • 1 year ago