Andy Gill's Avatar

Andy Gill

@zephrfish.yxz.red

Defcon goon, Adversarial Architect. Photography, Driving, Blog and general purveyor of chaos. Metal/DnB Fan

979
Followers 292
Following 141
Posts 01.07.2023
Joined
Posts Following

Latest posts by Andy Gill @zephrfish.yxz.red

With Easter coming up quick it is time for a date announcement.

1 March - CFP and call for crew opens
1 April - Pre talk announcement tickets
3 April CFP and CFC closes
~ 20 April speakers confirmed
~ 24 April main ticket drop

Links and stuff coming closer to the dates.

24.02.2026 11:30 πŸ‘ 13 πŸ” 8 πŸ’¬ 1 πŸ“Œ 0
Preview
Red Team Training: MAE β€” Malwareless Adversary Emulation Advanced red team training β€” 13 modules on adversary emulation without traditional malware. Learn the techniques that bypass modern defences.

Our first fully committed sponsor is @zephrfish.yxz.red. Long time supporter as a speaker and now a sponsor as well.

Andy would like everyone to know about his Malwareless Adversarial Emulation training course

lms.zsec.red

We may be biased, but we reckon it is top quality stuff.

04.03.2026 11:18 πŸ‘ 8 πŸ” 5 πŸ’¬ 0 πŸ“Œ 1
Video thumbnail

Since launching MAE over the weekend I’ve had a lot of great feedback from the community and I want to say how thankful I am for everyone’s support.

One of the requests I had was for multi language support on subtitles, so I went ahead and added it to the platform.
go check it out lms.zsec.red

17.02.2026 23:04 πŸ‘ 3 πŸ” 2 πŸ’¬ 0 πŸ“Œ 0
Preview
MAE - Malwareless Adversary Emulation Advanced red team training β€” 13 modules on adversary emulation without traditional malware. Learn the techniques that bypass modern defences.

I love watching my friends create awesome stuff.

@zephrfish.yxz.red made some artisan, farm to table, shell to terminal red team training for you.

lms.zsec.red

14.02.2026 23:33 πŸ‘ 8 πŸ” 4 πŸ’¬ 0 πŸ“Œ 0
Post image Post image

I've been looking forward to @zephrfish.yxz.red's new course, Malwareless Adversarial Emulation. Just by looking at the course syllabus, I'm confident I'm going to learn a ton and become a better operator. And the price to value is more than reasonable.

The course is at lms.zsec.red

14.02.2026 19:06 πŸ‘ 2 πŸ” 2 πŸ’¬ 1 πŸ“Œ 0
Preview
MAE - Malwareless Adversary Emulation Advanced red team training β€” 13 modules on adversary emulation without traditional malware. Learn the techniques that bypass modern defences.

Today’s the day, finally got around to publishing my red team course, with video, written and self spin up labs. lms.zsec.red

14.02.2026 11:09 πŸ‘ 4 πŸ” 5 πŸ’¬ 0 πŸ“Œ 1

Indeed

04.01.2026 16:28 πŸ‘ 1 πŸ” 0 πŸ’¬ 0 πŸ“Œ 0

Turns out I’m not very active on here or Twitter anymore even though over the years I’ve accumulated 19k followers on Twitter 😬

04.01.2026 12:59 πŸ‘ 2 πŸ” 0 πŸ’¬ 1 πŸ“Œ 0
Preview
GitHub - ZephrFish/pyLDAPGui: Python based GUI for browsing LDAP Python based GUI for browsing LDAP. Contribute to ZephrFish/pyLDAPGui development by creating an account on GitHub.

Made a thing, mucking about with python and a LDAP browser concept to ingest straight into BloodHound but also just a nice alternative to ADExplorer with fewer LDAP queries, simple LDAP browser using PyQt as a GUI and neo4j-driver to ingest into BH. github.com/ZephrFish/py... #bloodhound #redteam

13.09.2025 11:31 πŸ‘ 8 πŸ” 1 πŸ’¬ 0 πŸ“Œ 0
Malwareless Adversarial Emulation | Living off the Knowledge

Couple updates:

Course Trailer and Sign Up: mae.zsec.red

GoClipC2 - blog.zsec.uk/clippy-goes-...

16.06.2025 12:21 πŸ‘ 1 πŸ” 1 πŸ’¬ 0 πŸ“Œ 0
Preview
a man in a white tank top and hat is standing on a boat in the ocean . ALT: a man in a white tank top and hat is standing on a boat in the ocean .
02.06.2025 22:24 πŸ‘ 1 πŸ” 0 πŸ’¬ 1 πŸ“Œ 0

Ah yes I forgot I borrowed that 6 years ago 🫣πŸ₯²

19.05.2025 19:32 πŸ‘ 0 πŸ” 0 πŸ’¬ 1 πŸ“Œ 0
Preview
Common Tool Errors - Kerberos So you are performing your favourite kerberos attacks, such as pass the ticket, Public Key Cryptography for Initial Authentication (PKINIT), Shadow Credentials or Active Directory Certificate Services...

Weekends are for random projects Here is a blog post all around Kerberos errors and a bonus interactive app built in collaboration with @thecontractor.io Errorism Index for Kerberos blog.zsec.uk/common-tool-... kerberos.errorism.io

27.04.2025 13:43 πŸ‘ 4 πŸ” 2 πŸ’¬ 0 πŸ“Œ 0
Preview
Common Tool Errors - Kerberos So you are performing your favourite kerberos attacks, such as pass the ticket, Public Key Cryptography for Initial Authentication (PKINIT), Shadow Credentials or Active Directory Certificate Services...

Weekends are for random projects Here is a blog post all around Kerberos errors and a bonus interactive app built in collaboration with @thecontractor.io Errorism Index for Kerberos blog.zsec.uk/common-tool-... kerberos.errorism.io

27.04.2025 13:43 πŸ‘ 4 πŸ” 2 πŸ’¬ 0 πŸ“Œ 0

This is the way

24.04.2025 12:53 πŸ‘ 2 πŸ” 0 πŸ’¬ 1 πŸ“Œ 0

See you at steelcon dude

24.04.2025 12:50 πŸ‘ 2 πŸ” 0 πŸ’¬ 0 πŸ“Œ 0

Should probably start writing my talk then

24.04.2025 12:49 πŸ‘ 3 πŸ” 0 πŸ’¬ 0 πŸ“Œ 0

First round of talk emails have just gone out. We had over 40 submissions for 18 slots so unfortunately have had to reject over half of them.

If you haven't had an email yet, please hang on, more will be sent out shortly as we finalise other things.

24.04.2025 11:02 πŸ‘ 5 πŸ” 5 πŸ’¬ 0 πŸ“Œ 1
Post image

A thousand sunsets and each one will differ slightly

12.04.2025 21:34 πŸ‘ 1 πŸ” 0 πŸ’¬ 0 πŸ“Œ 0
Video thumbnail

Elbows up, Canada.

22.03.2025 22:11 πŸ‘ 52322 πŸ” 13351 πŸ’¬ 1481 πŸ“Œ 2283
Shortcuts

Try this, then create an automation to run on connection to charger www.icloud.com/shortcuts/b3...

23.03.2025 11:24 πŸ‘ 0 πŸ” 0 πŸ’¬ 0 πŸ“Œ 0

It’s not super precise, but it gives a decent ballpark figure for daily use. If you’re using a fast charger or MagSafe, the number could be even smaller (like 1.2 or 1.0), but 1.5 is a safe general average.

23.03.2025 11:24 πŸ‘ 1 πŸ” 0 πŸ’¬ 1 πŸ“Œ 0

Want a nice Sunday hack? The function that android has had for years but a nice to have on iPhone, estimated minutes to charge.

23.03.2025 11:24 πŸ‘ 0 πŸ” 0 πŸ’¬ 1 πŸ“Œ 0
Post image
22.03.2025 12:46 πŸ‘ 3 πŸ” 0 πŸ’¬ 1 πŸ“Œ 0
Post image

There we go submitted a thing

16.03.2025 11:31 πŸ‘ 2 πŸ” 0 πŸ’¬ 0 πŸ“Œ 0

Yeah I’ve stopped buying parts from the US and have tried to stick to UK/EU

12.03.2025 16:12 πŸ‘ 3 πŸ” 0 πŸ’¬ 1 πŸ“Œ 0
Preview
Keep our Apple data encrypted It is reported that the Home Office has ordered Apple to build a backdoor into its encrypted services so that they can get hold of content that any Apple user has upload to the cloud. Encryption keeps...

Sign it nerds you.38degrees.org.uk/petitions/ke...

12.03.2025 15:19 πŸ‘ 0 πŸ” 1 πŸ’¬ 0 πŸ“Œ 0
Preview
Navigating AI 🀝 Fighting Skynet Using AI can be a great tool for adversarial engineering. This was just a bit of fun to see if it was possible todo and to learn more about automation but also proving you cannot trust git commit hist...

Here's RepoMan, a proof of concept surrounding git commit poisoning. The blog post dives a little deeper into how it all works and the rationale behind it.

blog.zsec.uk/navigating-a...

github.com/ZephrFish/Re...

09.03.2025 14:18 πŸ‘ 6 πŸ” 3 πŸ’¬ 3 πŸ“Œ 0

Fixed

10.03.2025 08:59 πŸ‘ 1 πŸ” 0 πŸ’¬ 0 πŸ“Œ 0

I’ll fix later thanks for the catch

09.03.2025 21:19 πŸ‘ 1 πŸ” 0 πŸ’¬ 0 πŸ“Œ 0