Golgothus (Zach)
@golgothus.bsky.social
Senior Incident Response Engineer | Threat Hunting, IR, Cloud | ENFJ | http://wlo.link/@golgothus Your friendly CSO! (Chief Soap Officer)
x.com/golgothus
x.com/golgothus
Reposted by Golgothus (Zach)
May 18, 2025 at 12:51 AM
Pretty stoked, finished one of the #DEATHCon2024 threat hunting challenges from a workshop to win swag.
It was a good opportunity to flex:
- initial access / exploitation
- execution
- persistence mechanisms
- exfiltration
While tinkering with SPL for results I needed.
It was a good opportunity to flex:
- initial access / exploitation
- execution
- persistence mechanisms
- exfiltration
While tinkering with SPL for results I needed.
November 19, 2024 at 7:03 PM
Pretty stoked, finished one of the #DEATHCon2024 threat hunting challenges from a workshop to win swag.
It was a good opportunity to flex:
- initial access / exploitation
- execution
- persistence mechanisms
- exfiltration
While tinkering with SPL for results I needed.
It was a good opportunity to flex:
- initial access / exploitation
- execution
- persistence mechanisms
- exfiltration
While tinkering with SPL for results I needed.
Reposted by Golgothus (Zach)
Me trying to have a good time running malware.
Windows Defender:
"How about, no."
Windows Defender:
"How about, no."
November 16, 2024 at 1:39 AM
Me trying to have a good time running malware.
Windows Defender:
"How about, no."
Windows Defender:
"How about, no."
Reposted by Golgothus (Zach)
Have you ever considered being part of our team? Check out our article written by my colleague Tim about what our team does and what it's like to be part of the Microsoft incident response team. techcommunity.microsoft.com/blog/microso...
Join DART
What to know about becoming an infrastructure specialist on DART.
techcommunity.microsoft.com
November 13, 2024 at 8:30 PM
Have you ever considered being part of our team? Check out our article written by my colleague Tim about what our team does and what it's like to be part of the Microsoft incident response team. techcommunity.microsoft.com/blog/microso...
I've really enjoyed tinkering with my proxmox server. What's even better is now that I have a public facing web server proxied through Cloudflare I keep getting notifications of attacks on my network 🥲
michael jordan is wearing a suit and tie and says `` stop it '' .
ALT: michael jordan is wearing a suit and tie and says `` stop it '' .
media.tenor.com
November 11, 2024 at 9:41 PM
I've really enjoyed tinkering with my proxmox server. What's even better is now that I have a public facing web server proxied through Cloudflare I keep getting notifications of attacks on my network 🥲
Wrote a brief post about Kasm web, really awesome tool to use for creating persistent as well as ephemeral containers
docs.golgothus.tech/other-resear...
Planning to try and use these for DEATHCON, thankfully I made sure to snapshot my VM before the install in case it broke 😅
docs.golgothus.tech/other-resear...
Planning to try and use these for DEATHCON, thankfully I made sure to snapshot my VM before the install in case it broke 😅
Kasm Install | Golgothus' Lab
docs.golgothus.tech
November 7, 2024 at 2:00 AM
Wrote a brief post about Kasm web, really awesome tool to use for creating persistent as well as ephemeral containers
docs.golgothus.tech/other-resear...
Planning to try and use these for DEATHCON, thankfully I made sure to snapshot my VM before the install in case it broke 😅
docs.golgothus.tech/other-resear...
Planning to try and use these for DEATHCON, thankfully I made sure to snapshot my VM before the install in case it broke 😅