-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Okay,
So let me get this straight, when I actively asked you to communicate with me, you refused, humiliated me and made sure to insult me in front of people.
You defame me in public with your CVE-2026-45585 advisory even though you literally deleted the Microsoft account I used to report bugs to you with and I got zero pennies from doing so and I still happily did like an idiot.
Now you take the courtesy to flag my github account and wipe it out of the public, just like that ? You are proving to everyone that you actively escalating this conflict but I'm done begging you.
I might sound like crazy idiot who is whinning around but I have proof for every single word I said, I just can't release it yet. Why ? Microsoft still has chains in my hands, it's been like this for years and I just can't stay silent anymore. I hope I can release the documents soon.
Mark this date July 14th, I will make sure your bones are shattered that day. Nothing will be released this June (or maybe I will release smtg, depending on circumstances).
Also,
CVE-2026-45498 is UnDefend
CVE-2026-41091 is RedSun
New GitLab account,
https://gitlab.com/nightmare-eclipse
-----BEGIN PGP SIGNATURE-----
iHUEARYKAB0WIQRJTvAf/AWVhAKEeb7FFoRCS0/SbAUCahGg+gAKCRDFFoRCS0/S
bBMIAPsEczivsL71pbJizJHHlNNOf9guPAFFshJhhkwrDrwZ5wD/Vz6Z+d6vSvhQ
uVrEh4lPM84Q8+J56RLa50Zp46QLkAY=
=8wON
-----END PGP SIGNATURE-----
Glad you made an account on gitlab, I had a feeling they would nuke github pretty quick. I would make another backup account on gitflic, Ruskies are less picky about capitalists politics.
ReplyDeleteBring on all the rest, I'm curious to see the whole arsenal. Curious if this works with defender removed.
ReplyDeleteна даний момент Мілкософт пропатчив перші дві вразливості - BlueHammer і Red Sun. Принаймні PoC вже не працює з коробки, як раніше. Треба змінювати сигнатури і переробляти логіку. Але я думаю вони не настільки барани, щоби з 2 квітні по 29 травня це не виправити. Так що думаю, тут вже лавочка прикрита. Але сама логіка Windows Defernder порушена. Всі побачили що нею можна зловживати.
DeletePlease change the date to the 17th of July (it's my birthday), it would be a good birthday present for me to wake up to...
ReplyDeleteBut regardless, I can completely understand the situation. These big corporations don't care, won't care and won't even bat an eye towards you until shit like this happens and even then they won't credit you at all or just straight up lie about everything...
Fuck em all.
Unfortunately seems most corps are like this. Please keep posting whatever you have. It makes windows usable again.
DeleteПридатним... Якщо вони дійсно залатають ці вразливості! Але вони не будуть робити цього, бо цими бекдорами користуються співробітники Microsoft і треті сторони. Їх навмисно залишили і не залатали, щоби мати "чорний вхід". За це вони і покарали цього баг-хантера, бо це не вписується в баунті-програму для них. Вони знають про ці вразливості нульового дня, бо самі їх використовують. Тож публікації Nightmare Eclipse можна вважати виведенням на чисту воду брудних на руку ділків Мілкософт.
DeleteНайгірше, що він зробив на їхню думку - це оприлюднив все безкоштовно і публічно. Так, що про це дізналася критична маса людей. А не лише дослідники безпеки і APT/Ransomware групи. Якби Nightmare Eclipse опублікував це десь на закритому форумі за винагороду - це би значно менше розгнівило їх і порушило їх схему. Бо вони і так продають ці бекдори тим, з ким співпрацюють.
DeleteAn early happy birthday!! Wishing you a meaningful year!
ReplyDeleteLove I’m so glad you made a Gitlab I’ve also uploaded your repository’s to churchofmalware.org
ReplyDeleteWe have your back
Reach out if you need anything at all
If you want there is a whole list of malware sites here:
Deletehttps://forum.tuts4you.com/topic/28114-live-malware-samples/#comment-226259
Well, that tons of legacy code are their forsaken cons they're dealing with MS 32-Bit Operating system(Before WIN NT even) - http://old-dos.ru/index.php?page=files&mode=files&do=show&id=1374 The way Windows might looked but they took WinNT. Yeah, that Windows public APDBs and source leaks.... Good luck brother!
ReplyDeleteLooking forward to July 14!
ReplyDeleteSame! Can you publish some stuff earlier for the subscribers here?
DeleteAlso it os possible to publish compiled binaries on gitlab? Its very tedius to downlaod vstudio to do it manually.
This comment has been removed by the author.
DeleteThis comment has been removed by the author.
DeleteДруже, який GitLab??? втікай взагалі з клірнету!
ReplyDeleteHey that's my CVE 😆 🤣 😂 😹 I wrote those patches 😆 🤣 😂 you posted fully in wild and set yourself up for that. That's a violation of terms. Maybe publish your msrc chat that lead to all this. I bet it was ugly. If they did you wrong show us the chat logs i record all my submissions. Is your OpSec so poor you don't have the logs?
ReplyDelete