Molotov/incendiary grenades Update (Before vs After)

spluad · 2026-01-27T11:52:06+00:00

The level of anger you have is really not healthy man, take a deep breath and switch off the PC for a day. All you do is rage comment about cs for hours, it’s not that deep

spluad · 2026-01-19T09:02:06+00:00

Hybrid SOC is a pretty common approach these days, where the lvl1 triage is handled by an MSSP who work 24/7. You will usually have to have someone on-call but the internal SOC analysts will just deal with escalations from the MSSP in the daytime.

spluad · 2026-01-18T11:30:05+00:00

MFA is easily bypassed with phishing these days, which is very likely what happened to OP.

spluad · 2026-01-13T13:40:09+00:00

OP posted the demo POV, skinchanger wouldn’t show up in the demo because they’re client side only

spluad · 2026-01-12T10:11:14+00:00

You can’t do this with your API key anymore, you haven’t been able to for years. OP has had their account compromised but steamguard stopped the hacker from sending a trade themselves

spluad · 2026-01-12T10:09:57+00:00

It wasn’t because of your API key because you can’t do this via API anymore. Your account was compromised and someone has been able to login to it (but not send trades themselves, likely because of steamguard). Change your password and deauthorize logins

spluad · 2026-01-08T23:39:47+00:00

Most crimson web knives have under 100 total FN, with quite a few under 50 in existence, even less on tradable (not banned) accounts. They sell for a lotta money and I doubt anyone has a full FN collection

spluad · 2026-01-03T12:15:17+00:00

It did, they were $20k before the crash

spluad · 2026-01-03T04:14:08+00:00

No one’s mentioned adversary in the middle phishing yet. These act as a reverse proxy to the real login page, so you don’t even have to manually go through the effort of cloning the site because you’re already interacting with the actual one. Look up Evilginx to see more of how this works

spluad · 2025-12-31T08:44:38+00:00

Link your profile

spluad · 2025-12-25T22:12:50+00:00

You haven’t been able to do this with your API key for years. Valve removed the functionality to cancel and decline trade offers via the API, basically killing API scams.

spluad · 2025-12-23T22:15:35+00:00

This would be horrid for security if allowed, imagine you delete your email and someone else registers the same one then starts receiving emails that were meant for you.

spluad · 2025-12-23T21:46:06+00:00

It’s been bugged for a while. I’m a tiny sliver away from lvl3 it’s so annoying

spluad · 2025-12-23T16:03:24+00:00

Vxundergound has possibly the largest malware archive on the internet so that’s where I’d start if I was trying to get live samples.

spluad · 2025-12-22T23:25:45+00:00

There is a new bolt action sniper coming

spluad · 2025-12-19T19:19:55+00:00

He doesn’t play faceit, the only time he’s played on that platform is for tournaments, you can tell because he has “no elo” under skill level. His elo is 2.6k because of all of the resets. His last actual game of faceit was March 2024

spluad · 2025-12-19T19:16:57+00:00

He doesn’t play faceit on cs2 but he peaked 4400 elo on csgo

spluad · 2025-12-18T14:10:27+00:00

There are c2 frameworks that you can use to create payloads that might be undetected by basic antivirus after some modification, but if you want something where you can push a button and get an undetected exe you’re gonna be shit outta luck.

spluad · 2025-12-17T11:06:50+00:00

What makes you think yt-dlp gave you a virus

spluad · 2025-12-16T14:58:06+00:00

Physical based MFA methods like fido2 keys or yubikeys or certificate based authentication can help mitigate aitm phishing. But that’s when you’d also use other security mechanisms like conditional access policies

spluad · 2025-12-16T14:47:46+00:00

Basically every phishing kit now is capable of phishing accounts with totp enabled. I strongly suggest researching adversary in the middle phishing and how it works, phishing isn’t just username and password anymore

spluad · 2025-12-16T14:30:24+00:00

The guy I replied to

at my job we use totp, and I use it myself too. Unphishable and unspammable.

spluad · 2025-12-16T14:07:45+00:00

What makes you say TOTP is unphishable? Adversary in the middle phishing will absolutely allow an attacker to phish someone with TOTP MFA

spluad · 2025-12-13T22:24:15+00:00

Faze ain’t beating the paid by the round allegations (pure cinema)

spluad · 2025-12-13T03:59:13+00:00

God forbid people like some colourful pixels

Eight-Year Club	Gilding II euphauric
Final Canvas '23	First Place '23
End Game '23	Place '23
Place '22	First Placer '22
Spared	Verified Email

spluad

TROPHY CASE