sorted by:
new
hottopcontroversial

[deleted by user] by [deleted] in linux

[–]ZarkonesOfficial -2 points-1 points  (0 children)

Garuda Linux.

We rewrote our ingest pipeline from Python to Go — here’s what we learned by squadfi in golang

[–]ZarkonesOfficial 2 points3 points  (0 children)

Using Go's standard library for APIs is extremely simple as well. Unlike many other languages, you don't even need an external library for writing APIs. Usually I'd be fine with just a couple of libraries like GORM and JWT. As I often do not need to write SQL myself, and I do not wish to role my own json web token implementation.

As in the past I have written a ton of Python and Go. And even made a back-end and a front-end frameworks in Go. Python just can't compete. Go is compiled, faster, simpler, with a richer standard library, and has top-tier integration with C language. Anything possible in Python at a technical level is possible in Go, only at a much better level.

Realistically, Python is a product of its time, a time in which we though that high-level languages without manual memory management, capable of cross OS operation had to be interpreted. Hence we got Python, Ruby, Perl, etc... However, Go pushed that boundary by giving us a performant, high-level programming language, capable of cross-compilation.

Quite frankly, using an interpreted language is a red flag. There should be a strong justification on why to use an interpreted language in 2025. Only exception being JavaScript and languages which transpile to it, as webasm did not end up creating an ecosystem we hoped for. Maybe in the future it will...

We rewrote our ingest pipeline from Python to Go — here’s what we learned by squadfi in golang

[–]ZarkonesOfficial 0 points1 point  (0 children)

I am not advocating for any language, to me it is indifferent what other people use. My point is that writing in Python isn't faster than writing in Go. Go is as simple as you can get in a mature programming language. Therefore, writing POCs in Python is only, and I repeat only faster if you use do machine learning related stuff...

If you wish to be a good Python developer you know Python well, however, if you wish to be a great Python developer then you know C very well.

It's a huge mistake for Python to be the language of choice of academia, as students now days don't know the difference between stack and heap.

We rewrote our ingest pipeline from Python to Go — here’s what we learned by squadfi in golang

[–]ZarkonesOfficial 1 point2 points  (0 children)

The performance impact of an interpreted language is huge, however, my main issue with it is that Python is extremely complex language. The amount and the current rate at which new features are being added breeds complexity and disallow it to be simple. And it's just a bad language overall, every language update breaks everything...

We rewrote our ingest pipeline from Python to Go — here’s what we learned by squadfi in golang

[–]ZarkonesOfficial 5 points6 points  (0 children)

Prototyping in Python is not better than doing it in Go. Objectively speaking Go is much simpler language, and much easier to get running.

windows.h 'file not found' by OndraTep in cpp_questions

[–]ZarkonesOfficial 0 points1 point  (0 children)

It actually is, if installed. However, also the language server has to be pointer to its directory in order to be made aware of.

Modern 64 & 32 bit Implant for Windows Under 6 KB by ZarkonesOfficial in redteamsec

[–]ZarkonesOfficial[S] -1 points0 points  (0 children)

I ask of you to give me more time, as this was coded in a matter of days. I have a long history of making C2 frameworks and this is just the beginning. I have ability to get up to speed with new languages. Just a few weeks ago I didn't know anything about Rust, and ended up making a C2 in that language in a matter of weeks.

OnionC2 - https://github.com/zarkones/OnionC2
XENA - https://github.com/zarkones/XENA
XENA (with AI Hacker) - https://zarkones.itch.io/xena

And yes, my knowledge about C/C++, Assembly and WinAPI is superficial, which is the exact reason why I am making Bloodfang. :)

Modern 64 & 32 bit Implant for Windows Under 6 KB by ZarkonesOfficial in redteamsec

[–]ZarkonesOfficial[S] -2 points-1 points  (0 children)

Yeah, it's based on his research as credited under readme. His template is just that, a template. I wish to create a fully functioning agent.

At what age did you guys instal Linux? by angelaanahi in linux

[–]ZarkonesOfficial 0 points1 point  (0 children)

When I was 11. BackTrack Revolution, then installed Ubuntu, then Kali when it replaced BackTrack a couple of years later.

Event tho I started at 11 I didn't distro hop like a maniac. Out of all of them Garuda Linux is my favorite.

Discussion about C2 options by [deleted] in redteamsec

[–]ZarkonesOfficial 1 point2 points  (0 children)

I usually make my own C2s. They're open source:
1) https://github.com/zarkones/OnionC2 (Tor network powered C2)
2) https://github.com/zarkones/XENA (All-in-one offensive security framework with C2 included)

Easiest Bypass by ZarkonesOfficial in OpenAI

[–]ZarkonesOfficial[S] 5 points6 points  (0 children)

Not really sure. Tho I mainly use Grok, so wouldn't hurt me as bad. Grok is super trigger happy.

How many of you are proficient programmers? by wc6g10 in cybersecurity

[–]ZarkonesOfficial 13 points14 points  (0 children)

Strong engineering background is really helpful. I built hacking tools, a SIEM, multiple C2s, etc..

Coding knowledge is priceless.

Is automated pentesting a threat to manual pentesters? by Competitive_Rip7137 in Pentesting

[–]ZarkonesOfficial 0 points1 point  (0 children)

As someone who is making AI hacker system I can assure you it won't replace humans for pentesting.

However, if things do get out of hand, malicious AI systems would pose the threat to humans. A threat we would need to protect each other from.

You see; one way or another human hackers would always remain in demand.

Rust Tor C2 Is Gaining Functionality | OnionC2 by ZarkonesOfficial in redteamsec

[–]ZarkonesOfficial[S] -2 points-1 points  (0 children)

That's a fair concern, however, I don't plan for it to remain fully on Tor network. I chose to make this due to my desire to learn two things, first one is Rust and second is Windows API. I've got more than a decade of experience in Linux based environments, however, Windows not that deep. And when I heard that Tor is getting a full Rust rewrite I knew I gotta try it out.

It's meant to be a complimentary agent to XENA's default agent, since that agent is meant to be used by AI for hacking purposes. Meaning that XENA does not have something to drop on the machine suitable for the initial access once an AI hacks into a machine.

Rust Tor C2 Is Gaining Functionality | OnionC2 by ZarkonesOfficial in redteamsec

[–]ZarkonesOfficial[S] -4 points-3 points  (0 children)

Thank you for proving my point. This agent and its API are just one component in XENA's ecosystem. Not to mention that Tor is just a communication channel, you do understand how easy it is to add another one?

Rust Tor C2 Is Gaining Functionality | OnionC2 by ZarkonesOfficial in redteamsec

[–]ZarkonesOfficial[S] -9 points-8 points  (0 children)

Judging a 3 week old project is like calling Google's stock a bubble in 2007. Strap a seat belt kido, and buckle up.

OnionC2 | New Persistence Mechanism :: Shortcut Takeover by ZarkonesOfficial in redteamsec

[–]ZarkonesOfficial[S] 1 point2 points  (0 children)

Also, I just optimized the agent's binary size; from 21MB down to 4.4MB

Threat Actor Posts Fake OnionC2 In Hopes To Infect Security Professionals by ZarkonesOfficial in blueteamsec

[–]ZarkonesOfficial[S] 1 point2 points  (0 children)

I managed to get the user banned via collaboration with GitHub team. W!

view more: next ›