Similar User
@waldoirc
@NUL0x4C
@Krevetk0Valeriy
@disclosedh1
@passthehashbrwn
@VirtualAllocEx
@KlezVirus
@mpgn_x64
@ShitSecure
@MrUn1k0d3r
@C5pider
@cPeterr
@Six2dez1
@Doyensec
@emgeekboy
...and we now have a @metasploit exploit module in the pull queue for the FortiManager vuln (CVE-2024-47575): github.com/rapid7/metaspl…
Two out of three PortSwigger Research presentations from DEF CON are now available to watch on demand! 👇 twitter.com/PortSwigger/st…
Watch research presentations on demand 🧵👇 PortSwigger recently presented three ground-breaking releases at Black Hat USA and DEF CON, uncovering a range of new techniques that could be used to exploit applications - and now two of these talks are available publicly!
Hi everyone 👋🦀 New repo for RustHound-CE, this version is only compatible with BloodHound-CE: github.com/g0h4n/RustHoun… Many thanks to @f3rn0s for code refactoring! And many thanks to NeverHack! I'll be handing over development of the project from today.
I just released my dns-recon Bash script. It's more than just subdomain enumeration. It finds more assets by first taking the input domain and finding related apex domains in the same MDI tenant, then performs subdomain enumeration using the Chaos API. It only prints live…
New tool published which is proving to be useful. Cred1py allows execution of the CRED-1 SCCM attack published by @Raiona_ZA over SOCKS5 UDP by wrapping the awesome PxeThiefy.py from @0xcsandker Enjoy :) github.com/SpecterOps/cre…
Since the POC for ESC 15 seems to have gone public we as TrustedSec decided to release our bofs now as well. github.com/trustedsec/CS-… The release is modifications to adcs_request and the new adcs_request_on_behalf. I advise following @Bandrel for mitigation
Locksmith 2024.10 is out with quality updates and improved detections for ESC8 and ESC3 condition 2. Have you double-checked your Active Directory Certificate Services templates yet? #ADCS #PKI #WindowsServer #ActiveDirectory #PowerShell github.com/TrimarcJake/Lo…
The FBI recently sent a warning out regarding DPRK activity against the crypto industry. Today, we documented attacks we've seen on macOS. Attacks start with social engineering and deliver a piece of malware that we call ThiefBucket. jamf.com/blog/jamf-thre… #malware
I fixed a few detection issues in MFASweep and added a new function (Invoke-BruteClientIDs) to brute force a bunch of client ID / resource combos to detect single factor access to Entra ID accounts. github.com/dafthack/MFASw…
The conference website is live! re-verse.io CFP is now open and training tickets are open as well. General ticket sales live in three weeks!
NtDumpBOF - BOF port of the tool NativeDump which dump lsass using only Native APIs github.com/deh00ni/NtDump…
It's been a while since I've gotten to modify a GPO through a proxy as part of a red team. Fun and terrifying! If you're in that scenario now, this might help: trustedsec.com/blog/weaponizi…
We published our blog post "Bringing process injection into view(s): exploiting all macOS apps using nib files", about a process injection vulnerability in macOS. It's a follow up to our insecure deserialization in saved application state research. sector7.computest.nl/post/2024-04-b…
New macOS Malware video going over Golang strings in arm64 using the Cthulhu Stealer. Go strings are structs and are not null terminated so tools have difficulty parsing them. Understanding how they work from a disassembly perspective helps. :) youtube.com/watch?v=gEGfRy…
🚀 Excited to introduce Cradle Wizard! 🧙♂️My latest online JavaScript tool to generating advanced download cradles for pentesting, CTF, & cert exams! 🔧 Features: Custom Headers, User-Agent, Proxy Support, and more! breachtactics.com/tools/cradle-w…
I just merged a new credential technique into Misconfiguration Manager, thanks to @__ar0d__! Check it out: github.com/subat0mik/Misc…
🔥🔥🔥
🎉 After >1y of hard work, @AzeTIIx and I are thrilled to release v2 of The Hacker Recipes! We moved away from GitBook and now have control over both engine & hosting 🥹 1st addition for contributors: your work is being highlighted across the site! 🫡 thehacker.recipes
United States Trends
- 1. Gaetz 822 B posts
- 2. Ken Paxton 16 B posts
- 3. DeSantis 29,4 B posts
- 4. Volvo 21,8 B posts
- 5. Attorney General 219 B posts
- 6. Mark Levin 2.237 posts
- 7. 119th Congress 9.534 posts
- 8. Murkowski 49,6 B posts
- 9. John Curtis 28,3 B posts
- 10. Mike Davis 3.474 posts
- 11. Gary Gensler 35,5 B posts
- 12. Andrew Bailey 3.814 posts
- 13. Trey Gowdy 5.198 posts
- 14. Rubio's Senate 12,3 B posts
- 15. Netanyahu 869 B posts
- 16. Dashie 3.599 posts
- 17. Katie 41,5 B posts
- 18. Dragon Believer 2.723 posts
- 19. ICBM 247 B posts
- 20. #GeeksgivingGiveaway N/A
Who to follow
-
waldoirc
@waldoirc -
NULL
@NUL0x4C -
Valeriy
@Krevetk0Valeriy -
publiclyDisclosed
@disclosedh1 -
Josh
@passthehashbrwn -
Daniel F.
@VirtualAllocEx -
klez
@KlezVirus -
mpgn
@mpgn_x64 -
S3cur3Th1sSh1t
@ShitSecure -
Mr.Un1k0d3r
@MrUn1k0d3r -
5pider
@C5pider -
Chuong Dong
@cPeterr -
Six2dez
@Six2dez1 -
Doyensec
@Doyensec -
Geekboy
@emgeekboy
Something went wrong.
Something went wrong.