Tony Clock @EvalStrings
<?php eval(base64_decode('ZWNobyAiRXZhbHN0cmluZ3MiOw==')); ?> CVEs are for snitches. Catch and release bug hunter epochconverter.com/clock Joined November 2010-
Tweets594
-
Followers139
-
Following821
-
Likes139
Have you heard about Token Attributes? A structure allowing you to put some info into a Security Token? I have played with it some time ago, now I am sharing the dumping tool, displaying them all. Enjoy the C source code and the compiled exe, as usual: github.com/gtworek/PSBits…
This is how a specific Group Policy configuration, enabling a security feature bypass, can lead to Privilege Escalation. Full details and examples in my latest blog post ;) decoder.cloud/2024/01/23/do-…
RSA is both cracked and uncracked. It's schrodingers hashCat x.com/InfoSecComm/st…
RSA is both cracked and uncracked. It's schrodingers hashCat x.com/InfoSecComm/st…
GitHub - Wh04m1001/CVE-2023-36723 - github.com/Wh04m1001/CVE-…
POSTDump Another tool to perform minidump of LSASS process using few technics to avoid detection. github.com/YOLOP0wn/POSTD… #infosec #pentesting #redteam
I just created the tool which can help to get NT AUTHORITY\SYSTEM from arbitrary directory creation bugs. github.com/binderlabs/Dir…
Interesting function inside ntfs.sys: it monitors changes in HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\AppModelUnlock. If a non-zero AllowDevelopmentWithoutDevLicense value appears, the NTFS driver allows to create symlinks by users without SeCreateSymbolicLinkPrivilege 🤔
Active Directory Certificate Services: The Latest Attacks - with Tim Medin
I reported a privilege escalation vuln to RedHat which impacts all versions of the QEMU Guest Agent for Windows. QEMU code is used in products including Redhat's Openshift, Proxmox, Linux KVM, Oracle KVM, Xen, Citrix Xen and many other downstream products access.redhat.com/security/cve/c…
Threadless Process Injection using remote function hooking. github.com/CCob/Threadles…
Introduction to Windows kernel drivers red team tools development (credits @Idov31) Part 1: idov31.github.io/2022/07/14/lor… Part 2: idov31.github.io/2022/08/04/lor… Part 3: idov31.github.io/2022/10/30/lor… #windows #kernel #redteam #malware #infosec #cybersecurity
🧵 (1/) Bypassing IDS DCSync Signature for #secretsdump I’ve been asked lately to bypass a private IDS rule for #impacket’s DCSync operation and I’ve immediately remembered this Charlie’s question ⬇️
🧵 (1/) Bypassing IDS DCSync Signature for #secretsdump I’ve been asked lately to bypass a private IDS rule for #impacket’s DCSync operation and I’ve immediately remembered this Charlie’s question ⬇️
Another way to abuse SeImpersonate privilege. This time using RasMan service. github.com/crisprss/Rasma…
Will have to write a post on abusing SeManageVolumePrivilege This exploit grants full permission on C:\ drive for all users on the machine. GitHub - CsEnox/SeManageVolumeExploit github.com/CsEnox/SeManag…
detecting EDR services remotely without admin privs. indicators: - installed services: [MS-LSAT] LsarLookupNames() - running processes: named pipes (there are some characteristic to EDRs) needs some more testing and cleanup before release, but looks like promising.
Finding one vulnerable kernel driver is cool, but finding multiple vulnerable drivers it’s even better! I’m excited to share my blog post about an interesting vulnerable driver code base that many different vendors tend to share. cyberark.com/resources/thre…
Red Teamers: One of the easiest ways to deal with AV - operate in .NET and unhook AMSI. The quintessential powershell bypass: [Ref].Assembly.GetType('System.Management.Automation.AmsiUtils').GetField('amsiInitFailed','NonPublic,Static').SetValue($null,$true) #redteam
@gladiatx0r pointed out that coercing NTLM authentication from the SCCM primary site server via RPC (e.g., using Coercer by @podalirius_) and relaying to the site database to take over the site doesn't require automatic client push or NTLM fallback to be enabled in SCCM. (1/3)
Decided to publish the Lexmark printer exploit + writeup + tools instead of sell it for peanuts. 0day at the time of writing: github.com/blasty/lexmark -- enjoy!
The Maverick of Wall ... @__Themaverickws
3K Followers 3K Following Expertise: Economics, Finance and Stock Market Psychology. I don't initiate sending money to me
Calcs @0000CCS
550 Followers 654 Following Thoughts and opinions are my own alone. Running at a 98.6°F core temperature and a side of existential humor
maria laura @monamour99
2 Followers 84 Following
∵ しょうがな�... @ALT8757
49 Followers 497 Following Lost Red Teamer :: Has some certs :: RTs sometimes :: Lurks often ::
TruPositiv @TruPositiv
7 Followers 79 Following Join us in our mission to create a safer digital world. Together, we can protect your business from the ever-present dangers of the cyber realm.
Ori Biran @ori_biran26
0 Followers 28 Following
Гай Юлий @GUlij87813
0 Followers 61 Following
m3s4 @M3S4_
84 Followers 3K Following
Dan @d778941
246 Followers 809 Following MSP Security Engineering Lead. Content posted is on my own behalf, and not that of my employer.
Peter Winter-Smith @peterwintrsmith
6K Followers 3K Following Security researcher & implant developer @mdseclabs; developing SAST @wsastsupport; malware, code analysis, appsec, cryptography. Trying to follow Christ.
Sandra Schwartz @r3ds4ndr4
4 Followers 98 Following
kelly belly @KellybellyTvd
8 Followers 227 Following
Yoav Tamir @Yoav_Tamir_
33 Followers 241 Following
Yaniv Kapilianov @YanivKap
4 Followers 105 Following
raven 🌸 @RavenWithSwords
273 Followers 1K Following cybersecurity | bisexual | polyamorous | sometimes I'll play games |
Evangelos Mitakidis �... @mrpentest
253 Followers 920 Following Cybersecurity is my passion and Offensive Security is my expertise. Follow me for the latest insights on Adversary Emulation and cutting-edge security content.
WPA3 @_WPA3
1K Followers 694 Following
yishay stein @YishayStein
1 Followers 159 Following
Alon Sasson @Desnekk
3 Followers 30 Following
Dodo @TheFlyingAgama
11 Followers 281 Following
roee @RoeeMimran
1 Followers 28 Following
aj @amjson_t
1 Followers 106 Following
Ofek Harel @OfekHarel254
1 Followers 76 Following
Guy Ovadya @guy_ovadya
5 Followers 108 Following
Ryan Haley @R_haley
111 Followers 139 Following Purple Team. Adjunct Faculty @CDMDepaul. Always enjoy a good pun or scotch.
RazBarrie.eth @RazBarrie7
3 Followers 50 Following
Scott McGhee @Mcgigglez16
14 Followers 285 Following
Ryan Barrie @razbarrie12
3 Followers 63 Following Opinions are my own. RT's not necessarily endorsements. Hack the planet!
ew, just ew @pythontwoseven
375 Followers 825 Following shiiiiiiiiiiiiitpost? probably don't engage Everything on main ° Bet you wanna know what this mouth does ° munch ° eats it like a mango
Blue Team News @blueteamsec1
52K Followers 9K Following The cybersecurity home for the latest #BlueTeam, #DFIR, and #ThreatHunting news and tools.
عبدالله 🎓 @A10T95
333 Followers 3K Following مهتم ب أمن المعلومات والشبكات. اقرأ هنا وهناك وأنشر بعض ما اقرا 👨🏻💻📕
Liz DiLuzio @LizDiLuzio
949 Followers 293 Following Telling stories one dataset at a time. Evaluator, capacity builder, NYU instructor, lead curator of AEA365. Cofounder of Evaluation + Learning Consulting.
SAL_THE_MANIAC 😎 @Sal_the_maniac
105 Followers 2K Following OSCP/ eCPTX / Blue team by day / Red team by night.
Mark Linton @marklinton
505 Followers 3K Following IT and Information Risk Professional. https://t.co/dP0nRLvCHK
M4rkgrcp @mrkgrcp
201 Followers 1K Following Cybersecurity Specialist | #PurpleTeam | #BlueTeam | #OffensiveSecurity | #DFIR | #Cybersecurity AI
Brendan Griffin @brendanjgriffin
174 Followers 1K Following Formerly and sometimes still a malware analyst | Devoted public transit user | Will retweet MyDoom
Yiftach Karkason @YKarkason
89 Followers 769 Following
Satya Narayana @satyana3
264 Followers 5K Following
Carel van Rooyen @carelvanrooyen
1K Followers 4K Following red & purple team operations,*nix plumber,bass,org-(mode/roam),🇨🇭🇿🇦,🌶 & 🎶 addict. SMI²LE. Herbivore. Opinions my own, not that of my employer
Doug Burns @DougSec
264 Followers 219 Following Interests lie in DFIR, malware analysis, web apps, powershell, red team exercises, and anything else I read on the internet that I don't understand.
Conrad @eric_conrad
11K Followers 1K Following SANS Fellow, CTO of Backshore Communications, GIAC GSE #13 I'm not here. Find me on BlueSky: https://t.co/Ut2rwc0GAH
NibbleFinder @Nibblefinder
2 Followers 265 Following
Calcs @0000CCS
550 Followers 654 Following Thoughts and opinions are my own alone. Running at a 98.6°F core temperature and a side of existential humor
Binary Defense @Binary_Defense
13K Followers 492 Following We're determined to make the world a safer place through our-industry recognized managed security services. Founded by @HackingDave|Sister company @TrustedSec
TrustedSec @TrustedSec
77K Followers 765 Following End-to-end Cybersecurity consulting team leading the industry, supporting organizations, and giving back. #Hacktheplanet Blogs, news, webinars, and tools!
Black Hills Informati... @BHinfoSecurity
48K Followers 2K Following Specializing in pen testing, red teaming, and Active SOC. We share our knowledge through blogs, webcasts, open-source tools, and Backdoors & Breaches game.
Matt Eidelberg @Tyl0us
6K Followers 273 Following Red Teamer @BHinfoSecurity. Implant Dev is my passion. Part-time Comic Book Nerd.
SPEED SPORT 1 @SPEEDSPORT1
379 Followers 3 Following The first network dedicated to live motorsports. Designed for the world's most passionate motorsports fans.
greg @greg16676935420
1.2M Followers 508 Following im greg I like football and stocks and my birthday im from kentuckey. I'm a investor. I like to golf at the golf course. subscribe for just 10¢ a day ⤴️
Ron Coleman @RonColeman
277K Followers 3K Following Lawyer (NY/NJ). Conservative; orthodox (the Jewish kind). Husband of @janebcoleman. Father of four men. Has podcast: @colemannation1.
Jord @0xLegacyy
2K Followers 362 Following Lover of frogs, specialising in defence evasion, CTF addict
The Trans Am Series @GoTransAm
10K Followers 533 Following The Trans Am Series Presented By Pirelli The longest-running professional road racing series in North America.
FR Americas @FRAmericas
2K Followers 138 Following 🏎- Ligier JS F3 carbon fiber chassis 💨- Honda Civic Type R 303HP engine 🛞- Hankook Tires #FRAmericas
F4 U.S. Championship @F4Championship
3K Followers 313 Following Accessible, developmental, safe and fun. Also fast, very fast. @FIA certified @SCCAProRacing sanctioned #F4US
speedtourtv @SpeedTourTV
7 Followers 4 Following
SpeedTour @SpeedTourEvents
17 Followers 5 Following
Raunak Parmar @trouble1_raunak
2K Followers 1 Following Senior Cloud Security Engineer @WKL_cyber | OSWE | Presenter at @BlackHatEvents @defcon @nullcon | Author of Vajra | ex DJ & Music Producer
xAI @xai
1.8M Followers 38 Following
Ross Ulbricht @RealRossU
518K Followers 0 Following Sentenced to die in prison. Pardoned by President Trump after spending 4,130 days (11+ years) in max security. Freedom is sweet!
Jason Lang @curi0usJack
16K Followers 200 Following @TrustedSec Red Team lead | Hi-Fidelity trolling | Privacy Enthusiast | Putting the "no" in nano | Avatar: https://t.co/3XHmKR8nCk
Feeder Series America... @FSAmericas
3K Followers 289 Following 🇺🇸🇲🇽🇧🇷🇦🇷 Covering American junior single-seaters: Indy NXT, USF Pro 2000, USF2000, USF Juniors, FR Americas, F4 US, NACAM F4, Brazil F4 & F4 Argentina
∵ しょうがな�... @ALT8757
49 Followers 497 Following Lost Red Teamer :: Has some certs :: RTs sometimes :: Lurks often ::
TruPositiv @TruPositiv
7 Followers 79 Following Join us in our mission to create a safer digital world. Together, we can protect your business from the ever-present dangers of the cyber realm.
Yehuda Smirnov @yudasm_
758 Followers 531 Following Security Researcher @Microsoft, opinions are my own.
Red panda @MrRed_Panda
23 Followers 6 Following
Caleb @squared_
24 Followers 185 Following
security_dumpster @securitydumpstr
150 Followers 340 Following 303: @ https://t.co/I4aYuNOKKY Life long snowboarder and opportunist threat hunter | my views are my own
FearBuck @FearedBuck
1.1M Followers 1K Following not impersonating anyone || turn notis on || DM for submissions & credit ||
Dark Web Informer @DarkWebInformer
129K Followers 60 Following Providing Cyber Threat Intelligence from the Dark Web & Clearnet: Breaches, Ransomware, Darknet Markets, Threat Alerts & more. https://t.co/Fi7VW9lg94
Nick Powers @zyn3rgy
2K Followers 225 Following Adversary Simulation @SpecterOps | Previously @Rapid7 & @Protiviti
Crosslink Motorsports @CrosslinkMTSP
145 Followers 50 Following
Ligier Automotive @LigierAutomotiv
9K Followers 404 Following Ligier Automotive, a French racing car constructor designing and selling a full range of racing cars (sports prototypes, single seaters, GTs, etc.).
SVRA @SVRAlife
1K Followers 114 Following Some people collect art. We race it! 🏁 Sportscar Vintage Racing Association is celebrated as America’s premier & largest #VintageRacing org with 2500+ racers.
Ligier Junior Formula... @LigierJFC
65 Followers 11 Following
Chris Thompson @_Mayyhem
3K Followers 467 Following Senior Security Researcher @SpecterOps https://t.co/Sz5fRYkX6u
Cody Thomas @its_a_feature_
7K Followers 310 Following Mythic Developer (https://t.co/Uz4fOxIUbe) | @SpecterOps @[email protected] | @its-a-feature.bsky.social
Grzegorz Tworek @0gtweet
36K Followers 2K Following My own research, unless stated otherwise. Not necessarily "safe when taken as directed". GIT d- s+: a+ C++++ !U !L !M w++++$ b++++ G-
Nasreddine Benchercha... @nas_bench
11K Followers 1K Following Detection @Splunk & @cisco | previously @nextronsystems | @sigma_hq & @magicswordio maintainer | Eternal Learner
Andrew @4ndr3w6S
3K Followers 2K Following Detection Engineering @HuntressLabs | Prev. Practice Lead, TAC (Purple Team) @TrustedSec | @SpursOfficial Super Fan - COYS!
DebugPrivilege @DebugPrivilege
40K Followers 2K Following Windows Nerd | Ex-MSFT | Microsoft MVP in Windows | Interested in Security, Debugging, and Windows Internals.
Gabriel Landau @GabrielLandau
4K Followers 707 Following Tech Lead @ Elastic Security. Thoughts are my own. Also @[email protected] & @gabriellandau.bsky.social
Justin Ibarra @br0k3ns0und
2K Followers 917 Following Tech Lead, security intel @elastic @elasticseclabs via @endgameinc | security research | detection engineering | bench press: 455lbs & 📈 | I like my own tweets
FalconForce Official @falconforceteam
3K Followers 337 Following Building a resilient digital society through highly specialised digital security consulting.Trends for United States
You might like
