@zen I don't believe you know anything about him except from things you have been told by people that he pushed away himself. It's sad that you still keep attacking someone that the only thing he tried to do was to defend his work from the leechers that you keep feeding. Knowing their vetting process and how things work behind the scenes, I can tell you that he is definitely not selling to anyone that is willing to pay. Your accusations are plain wrong. Clearly you know nothing about it. FYI, those threads you are talking about are posted by scammers trying to sell fake copies of Shellter. I am probably wasting my time telling you so, but that's ok.
Ok, so you defend someone who also tell a lot of lies, cries a like a baby and also like to dox, threaten and also attack in real life some people out just because they do something that you don't like.
Also I want to remind that KyRecon himself was a cracker of applications / tools and wasn't just that, there was more, but you should know by being in the underground scene (and not limited to).
So please don't assume we just assume how people are and all the shit you said.
Before having certain reputation/ ideas about someone, we wait a lot and evaluate how they think/ how they face issues / challenges.
That's really a nice guy, is he ?
And also just like they do, about "searching infos", we do as well. We don't care about what you show of yourself, you could always tamper that side in many many ways, just like most tweeters / LinkedIn retards do, and it's obvious.
Here again , I agree with what zen said, about the malware tools selling.
just because they're "legit" and have a company makes them good? So even NSO and all the rest of companies like those are gold guys because they sell malware , right?
Even if your intention are good , which I don't think at all, I think they just care of getting money, the tool is not. The tools is in the bad zone, accept it.
it is done for hiding malware in many other ways, same for BRC, good intentions or not, it's a malware made fork, guess what, evasion of advanced analysis systems and EDR. Same goes for metasploit, sliver and all the rest of tools.
As said, even metasploit and sliver are intended for "bad usage", it just depends on who's using it, to use them legitimately.
But this won't change how a single person/ group of person will use it. No sliver / open source C2 ? They might will in those underground forums paying for it, from friends or from those proxy companies and of course nor you, nor us, nor they will ever really know which are "proxy companies " and not.
I can understand "defending your work", but not how he does. Just like cheetah and cyb3rops do. To me they're completely filled just with so much ego that they can't even see how the real world work and neither you do see such.
Their vetting process sucks just like any other vetting process could.
See how they always talk about how Fortra sucks at vetting their selling, while all I saw from cheetah, for example, are just retarded people asking for the tool even by paying more.
Never saw a serious post about how a fake company tried or not, guess why? Because they don't care at all or they can't find really who's legit or not.
Also what I don't get is their flexing in their tools like they're the only one able to do such and bla bla, same old story.
You flex your shit > it gets cracked, no matter what, and this will be the same in any other topic, not only infosec one.
And please, as said I understand the fact to defend their work, but I will never understand nor accept how they behave just like childrens.
And another thing, using the customer data inside a license that will apply that data to your payload in any way you want, won't make your tool really "identifiable", if cracked, since I never saw a post saying "see, I found a legitimate copy circling around and the buyer was X", all I see is just shitty complaining about how others are trying to "destroy" their works, while this is just done by their shitty behaviors.
But at least KyRecon didn't accused us of infiltrating some shitty malware in our releases, as far as I can remember.
Other than that, I don't agree with you at all, so please stop this one way bullshit defend without even the full context.