Ag0s @Ag0sSec
• special needs dad • red fedora hacker • personal account • Joined July 2018-
Tweets290
-
Followers54
-
Following327
-
Likes940
To trigger local SYSTEM authentication for relaying to ADCS or LDAP for LPE you would usually need the printer service or EFS service to be enabled (printerbug/petitpotam). Here is an alternative without this requirement 🤠 github.com/rtecCyberSec/R…
My new tool, Invoke-PowerDPAPI is able to obtain system master keys and decrypt various DPAPI encrypted material such as credentials, vaults and local SCCM encrypted blobs for NAA credentials and task sequences. Github: github.com/The-Viper-One/… Let me know what you think 😁
After today’s talk at #TROOPERS25 I’m releasing BitlockMove, a PoC to execute code on remote systems in the context of a loggedon user session 🔥 github.com/rtecCyberSec/B… No need to steal credentials, no impersonation, no injection needed 👌
an XSS payload, Cuneiform-alphabet based 𒀀='',𒉺=!𒀀+𒀀,𒀃=!𒉺+𒀀,𒇺=𒀀+{},𒌐=𒉺[𒀀++], 𒀟=𒉺[𒈫=𒀀],𒀆=++𒈫+𒀀,𒁹=𒇺[𒈫+𒀆],𒉺[𒁹+=𒇺[𒀀] +(𒉺.𒀃+𒇺)[𒀀]+𒀃[𒀆]+𒌐+𒀟+𒉺[𒈫]+𒁹+𒌐+𒇺[𒀀] +𒀟][𒁹](𒀃[𒀀]+𒀃[𒈫]+𒉺[𒀆]+𒀟+𒌐+"(𒀀)")() #bugbounty #bugbountytips #cybersecurity
Run native PE or .NET executables entirely in-memory github.com/NtDallas/MemLo…
Windows SMB Client Elevation of Privilege Vulnerability CVSS Score: 8.8 Attack Vector: Network Attack Complexity: Low Privileges Required: Low User Interaction: None Do I have to say more? msrc.microsoft.com/update-guide/v…
Someone made a python version of Evilwinrm and it works well! Although it is missing a few features like bypassing amsi I would add this into your tools to have: github.com/adityatelange/…
🚀 We just released my research on BadSuccessor - a new unpatched Active Directory privilege escalation vulnerability It allows compromising any user in AD, it works with the default config, and.. Microsoft currently won't fix it 🤷♂️ Read Here - akamai.com/blog/security-…
Published a new WinDbg extension DLL to fetch kernel's DirBase using the Low Stub technique. This is not a novel technique but I did find some projects out there that seemed to be doing this incorrectly. Hope this helps :) github.com/winterknife/EV…
Automated deployment of red team infrastructure through GitHub Actions workflows. It supports configurable C2 frameworks and phishing operations with a focus on secure, repeatable deployments. github.com/CultCornholio/…
rssh-rs is a reflective DLL that performs some hacky integration with your favorite C2 Framework to provide SSH session access from a Beacon session. github.com/0xTriboulet/rs…
Thanks to the awesome work of @LadhaAleem , the CTF Windows Active Directory lab for @_barbhack_ from 2024 is now public! 🔥 You can build the lab and pwn the AD—13 flags to capture! No public write-up exists yet—waiting for someone to submit one! github.com/Pennyw0rth/Net…
I write a Metasploit modules (for fun) that generate LNK file for two different Extra Data structure in Shell Link. Here is the proof of concept. github.com/nafiez/DataBlo…
BitLocker Encryption Bypassed in Minutes via Bitpixie (CVE-2023-21563) – PoC Reveals High-Risk Attack Path securityonline.info/bitlocker-encr…
NetExec v1.4.0 has been released! 🎉 There is a HUGE number of new features and improvements, including: - backup_operator: Automatic priv esc for backup operators - Certificate authentication - NFS escape to root file system And much more! Full rundown: github.com/Pennyw0rth/Net…
Some KNOXSS #XSS Vectors Main + Inline 1')"<!--><Svg OnLoad=(confirm)(1)<!-- Full URL Validation JavaScript://%250Dtop.confirm?.(1)// Weak CSP Bypass 1'"><!--><Base Href=//X55.is? Regular JS Injection 1'-top['con\146irm'](1)-' Quoteless JSi /confirm?.(1)//\ #XSS #BugBounty
You can bypass path-based WAF restrictions by appending raw/unencoded non-printable and extended-ASCII characters like \x09 (Spring), \xA0 (Express), and \x1C-1F (Flask):
How to WebDAV Relay LPE on Windows 11: 1-3. Trigger start of EFS service trough Explorer 4-11. Continue like on Windows 10 Thanks again @ret2src for the idea. Any tip for triggering EFS remotely on Windows 11 would be greatly appreciated by the way :D
Created a script using ADExplorersnapshot for dumping interesting information from AD into text files. Info such as active server accounts, sccm, printers, laps passwords, asreproast, plaintext password attributes +++ github.com/c3c/ADExplorer… Decided to go with || as a separator…
Betty Mendoza @EliMarion190047
135 Followers 324 Following
Asuka @Asuka091101
23 Followers 458 Following
Smith @AgentSmith10101
0 Followers 58 Following
Nick VanGilder @nickvangilder
3K Followers 3K Following Red Team Director | Mission Focused Leader | Combat Veteran | Offensive Security Program Builder | Mentor and Coach
crawler_cookie_0 @crawler_cookie0
49 Followers 4K Following
Lamine Blamoh 🇩�... @Blamoh
31 Followers 1K Following
Hello @Arshad_78678678
879 Followers 5K Following
socgollum @socgollum
0 Followers 12 Following
kilger @kilger
314 Followers 4K Following
Kiwi @mechantkiwi
2 Followers 93 Following
Development Community... @devc0mmunity
512 Followers 3K Following Welcome to the Education side of Technology! Thank you to our 2025 sponsors! @OrbitBaseIO @ArcherDotBuild @PaladinDotBuild @AlienRoom @AlienRoomLATAM
andre blackkk @andre07061387
4 Followers 144 Following
Kill Switch @KillSwitchX7
2K Followers 3K Following Red Teamer and Threat Hunter | EDR Evasion | MalDev | ExpDev
Jeremy Morgan @JeremyCMorgan
49K Followers 13K Following World's okayest developer. Currently obsessed with Generative AI, clean code, DevOps, and computer vision. Building cool stuff. Training Architect @KodeKloudHQ
Jason Alba @jasonalba
20K Followers 17K Following Pluralsight author: soft skills and tech careers. Entrepreneur: https://t.co/vCvpU2x0wy Book author, speaker, proponent of multiple income streams.
Stef @Stef_van_Dop
1K Followers 1K Following hack the planet! Please note: this profile is only here cause i dont want somebody claiming my nickname on twitter, follow me on bluesky: @stefvandop.nl
Markos @markos1979
556 Followers 1K Following REDteam member, Security, Hacking, Social Engineering, Programming, iOS developer, addicted to RFid, n3rd, funny and CTF player. @KPN SectorC
Dwaine Anderson @Ando_13
349 Followers 712 Following
Yaniv Barkai @BarkaiYaniv
5 Followers 54 Following
Zolder @zolderio
1K Followers 348 Following Digital Protection for Technology of the Future | Launched Attic: https://t.co/C3Kx2qVm82 | Founders @erikremmelzwaal @rikvduijn @wesleyneelen @t_oh
Sndr Ptrs @sndrptrs
664 Followers 1K Following happy father | crypto lover | Private Investigator | Rescue Diver | part-time nerd sharing personal interests
Cyber Villain 🛡️ @VeryVillanous
2K Followers 5K Following Cybersecurity - Fintech - AugmentedReality
Paul L @dcept905
532 Followers 416 Following Infosec - I fight for the users. "If it ain't audio, it ain't shit." - OTS Audio Tech
Gabrielle Davelaar @GabrielleDavel1
104 Followers 212 Following special needs mom| neuroscientist by training| MLOps & computer vision specialist @microsoft| democratizing A.I. to help others find life saving solutions
djdj ddj @ddj_djdj
0 Followers 24 Following
Cybersprint @cybersprintnl
6K Followers 569 Following Cybersprint offers automated discovery of the assets in your attack surface, and detect and monitor the risks within.
Techno_Rave1911 @Techno_Rave1911
441 Followers 2K Following IT Security Manager & IT Manager For Several Healthcare and Financial Institutes | InfoSec Community | Offensive and Defense side of IT Security.
#Pwn @0xn3_
83 Followers 920 Following 10x Full stack pwnr 🎇. | Intrested in Browser, Kernal, Virtualisation 💤
SectorC @_SectorC
660 Followers 112 Following ::: @KPN CTF team ::: Cyberlympics ::: KPN REDteam :::
Chris Gates @carnal0wnage
36K Followers 6K Following Circumstances do not determine state of being. State of being determines your circumstances. Tweets are my own not my employer. red/purple teaming, some DFIR
Leandro Velasco @LeandroNVelasco
458 Followers 475 Following Malware Reversing | Software Engineering | Cooking | D&D | Magic (MTG) | Bouldering | Threat Researcher @TrellixArc
@[email protected]... @1njection
8K Followers 4K Following Focused on hacking! Check out my new book on real-time computer conflict and deception below
formoneyfordior @formoneyfordior
52 Followers 4K Following
ÐłGłТΛŁ HUMΛЛ... @digital_human
2K Followers 5K Following #Hacker #Pilot #SurvivalSpecialist #GrayHat #Techno also #GFY *PGP 612C4BB2* prosecute/fauci When injustice becomes law, resistance becomes duty!
RATBORG @RATBORG
469 Followers 902 Following Every PUSH you take, Every MOV you make, Every INT you break, Every RET you fake; I'll be watching you.
jayeshthakur @jayeshmthakur
3K Followers 886 Following Husband, Father, Student, Security n00b. Interested in Cyber Security Research, Pen testing, RED Teaming, & Threat Hunting, Thoughts and Tweets are my own.
23pds (山哥) @im23pds
14K Followers 6K Following Dad/@SlowMist_Team Partner&CISO/#Web3 Security Researcher/RedTeam/Pentester/Ai安全猎人 #bitcoin
Tony @TJ_Null
23K Followers 490 Following Blue Teamer in Disguise. Blog at https://t.co/spa33ybIVL. SANS Netwars Champion. Former community manager and founder of the Offsec community for @offsectraining
Manfred Paul @_manfp
5K Followers 315 Following Security but not as in "national security". Playing CTFs with @redrocket_ctf (and @Sauercl0ud). Pwn2Own Vancouver 2020..=2024\{2023}. @[email protected]
RedTeam Pentesting @RedTeamPT
8K Followers 173 Following Official RedTeam Pentesting GmbH account -- Impressum: https://t.co/pS9oK62Lsu
KNOXSS @KN0X55
15K Followers 0 Following Announcements, tips and support via DM of KNOXSS - Online #XSS PoC Tool by @BRuteLogic
Marcel Bilal @MarcelBilal
340 Followers 921 Following Security Analyst | Bug-Hunter | Author: https://t.co/4Th8pSJyr8 | OSCP: https://t.co/yylbsFYSOW | MSRC 2019 Most Valuable Security Researcher (Microsoft)
Claes Spett (.PrØÐi... @J3rge
7K Followers 616 Following Programmer | Exploit Dev | Reverse Engineering | Backdooring Everything I Break!
Shashwat Shah 🇮�... @0xEr3bus
639 Followers 90 Following CRT(O|E|M|L) | CAPE | Content Engineer @ HackTheBox | Windows Exploitation | Wannabe Red Teamer
Kyle Cucci @d4rksystem
6K Followers 560 Following Threat Research @proofpoint | Author of "Evasive Malware" @nostarch | Talks about cybercrime, threat intel, and malware stuff.
Binni Shah @binitamshah
141K Followers 165 Following Linux Evangelist, Malwares, Security enthusiast , Investor, Contrarian , Philanthropist , Reformist , Sigma female 🦋 https://t.co/WOvf41tMKV
Adam Hassan @Adamkadaban
192 Followers 641 Following https://t.co/rFyEXlXNoH Novice purple teamer | OSCP @UFSIT
Melvin langvik @Flangvik
11K Followers 513 Following Red Team @TrustedSec , terrible creator of InfoSec content 📹Opinions are my own and not the views of my employer.
strandjs - strandjs@b... @strandjs
45K Followers 2K Following I will light the way by the bridges I burn. Retired Senior SANS Instructor IANS Faculty Black Hills Information Security Active Countermeasures
Filip Dragovic @filip_dragovic
7K Followers 1K Following My research unless stated otherwise. My opinions are my own and do not represent the views of my employer.
Mr. OS @ksg93rd
2K Followers 974 Following To catch an adversary you must become one. Always deliver more than expected !!!!!! All post are educational purposes only. prompt Library ⬇️ URL
MalDev Academy @MalDevAcademy
17K Followers 5 Following Providing specialized, module-based security training and resources designed for cyber security professionals
Justin Elze @HackingLZ
65K Followers 5K Following CTO @TrustedSec | Former Optiv/SecureWorks/Accuvant Labs/Redspin | Race cars
Dylan Tran @d_tranman
2K Followers 172 Following salsa sultan, verde villain, condiment connoisseur Adversary Simulation @xforce Red Team @wrccdc Former: @NationalCCDC+@wrccdc & @globalcptc @calpolyswift
reverseame @reverseame
21K Followers 1 Following RME-DisCo research group from University of Zaragoza. Special interest on software and systems security. Link to our Telegram channel: https://t.co/UmkcXVG8MU
Alh4zr3d @Alh4zr3d
24K Followers 276 Following Legal Criminal | Twitch cult leader | InfosecPrep founder | Lovecraft scholar | Soros mercenary | Spiritual cargo shorts wearer | Cthulhu fhtagn
Rory Steel @JerseyITGuy
5K Followers 1K Following Head of Digital & Adoption - BDO. #EdTech. Apple Distinguished Educator, Google Certified Innovator, Microsoft Innovative Educator Expert & Microbit Champion.
Web Security Academy @WebSecAcademy
130K Followers 36 Following Free web security training from @PortSwigger
eco sister @hiitaylorblake
688K Followers 486 Following #BLACKLIVESMATTER // https://t.co/pCJ2hEKgHl
chompie @chompie1337
83K Followers 1K Following hacker, weird machine mechanic, X-Force Offensive Research (XOR)
Grzegorz Tworek @0gtweet
36K Followers 2K Following My own research, unless stated otherwise. Not necessarily "safe when taken as directed". GIT d- s+: a+ C++++ !U !L !M w++++$ b++++ G-
Duane Michael @subat0mik
1K Followers 519 Following Security Researcher, Teacher, Leader @SpecterOps
Alex Ionescu @aionescu
47K Followers 2K Following Chief Technical Innovation Officer @crowdstrike. Windows Internals author and trainer. He/Him. RTs are not endorsements, opinions are my own.
freefirex @freefirex2
2K Followers 153 Following Research Practice Lead @Trustedsec gamer and nature enthusiast
ZeusBox @Zeusb0x
780 Followers 351 Following Playing with Pandora's box. Sometimes it's better not to open it. Sometimes, it's better not to know.
Ben Böhmer @benbohmermusic
17K Followers 100 Following My album Bloom is out now https://t.co/Y5fxEOmno6
Nick VanGilder @nickvangilder
3K Followers 3K Following Red Team Director | Mission Focused Leader | Combat Veteran | Offensive Security Program Builder | Mentor and Coach
klez @KlezVirus
8K Followers 706 Following Independent Cyber Security Researcher - Opinions are my own
Shashank | CredShield... @cyberboyIndia
10K Followers 2K Following Co-Founder @credshields | Building https://t.co/CQ9JKbhpmw Ex Security Analyst @Hacker0x01 Leading https://t.co/YnFOEI7b9p (Smart Contract Security Standards)
The Haag™ @M_haggis
9K Followers 2K Following Threat Researcher | Co-Host of Atomics on a Friday | LOLDrivers & Atomic Red Team Maintainer | I'm Everywhere and Nowhere - BSG.
Eduardo B. @Edu_Braun_0day
396 Followers 60 Following Independent Information Security Researcher. "The more I research, the more I want to research" - Eduardo B. Prado.
Mohamed El Azaar @med0x2e
2K Followers 278 Following RedTeamer & Security Researcher, used to be a full-stack Dev, Manga/Anime Otaku.
David Maynor @Dave_Maynor
14K Followers 6K Following No tree, it is said, can grow to heaven, unless it’s roots reach down to hell. Offensive Security, AI LLM Ops, hardware hacking
Trends for United States
You might like
