Tract0r @Tract0r_
Offensive Security Windows Intrernals Active Directory Initial Access Malware Dev Joined April 2012-
Tweets3K
-
Followers266
-
Following160
-
Likes3K
Best Citrix Breakout ever. You can only download .ica files that provide access to certain local applications but breakout out of these applications is not possible? Just modify the .ica file before starting it and remove The InitialProgram= value -> Full Citrix Session! 🤓
Please look at the vulnerable drivers. Even if you don't plan on reversing them or exploiting them, just behold the beauty of the potential which will not be used by lots of people (myself included, probably) vx-underground.org
Looking at a Roadrecon collection through the lenses of SQLiteBrowser may pay dividends. It allows you to perform custom SQL queries and, overall, search intelligently. For this purpose I'm publishing a list of Roadrecon-compatible SQL queries stmxcsr.com/micro/roadreco…
I Just documented a cool way to authenticate proxied tooling to LDAP in an AD environment using C2 payload auth context, without stealing any tickets or hashes! Keep tooling execution off-host and away from EDR on your Red Team assessments! specterops.io/blog/2025/08/2…
Oh, that's nice! I've done something similar recently with a vibe coded HTTP proxy server run in context of the target user to access the needed web resource behind domain authentication instead of an LDAP relay 😁
Oh, that's nice! I've done something similar recently with a vibe coded HTTP proxy server run in context of the target user to access the needed web resource behind domain authentication instead of an LDAP relay 😁 https://t.co/1UQiifmTjQ
Woohooo! Working on final post for Month of AI Bugs! Can't believe I followed through with this 😀 Hope it serves as useful reference + inspires many to get into AI security testing! We need more people asking tough questions & holding vendors accountable Let's do this! 🚀
Cookie theft has evolved. 🍪 Over the last year, stealing cookies on Windows devices has changed significantly for Chromium browsers like Chrome and Edge. Andrew Gomez dives into these changes, how threat actors adapt, & new detection opportunities. ghst.ly/45S1ZgW
NTLMv1: NTLMv1 is removed starting in Windows 11, version 24H2 and Windows Server 2025. learn.microsoft.com/en-us/windows/…
It seems there now is a BOF implementation of ADSyncDecrypt to dump Entra ID connect creds 👀 github.com/Paradoxis/ADSy…
Not again... Citrix, the company that keeps on giving. cyberplace.social/@GossiTheDog/1… If you want to check your systems: github.com/fox-it/citrix-…
Another hoontr find: tprtdll.dll (like so many others) exposes some Nt/Rtl/Zw functions. It doesn't redirect to ntdll, instead it makes the syscall itself - so you can call something like NtAllocateVirtualMemoryEx without ever touching ntdll! PoC: github.com/whokilleddb/fu…
Plaintext vs Encoding vs Hashing vs Encryption
I automated the POC for stealing policies from MP relays from this blog into a modified version of mssqlclient specterops.io/blog/2025/07/1… would work too with any other piv account to the DB github.com/garrettfoster1… (no PR because impacket doesnt merge, sorry)
Hosts running the WebClient service are prime targets for NTLM relay attacks, and it may be possible to start the service remotely as a low-privileged user. @0xthirteen breaks down the service startup mechanics, plus the protocols and technologies. ghst.ly/41QT7GW
@SpecterOps found out that the EFS service (PetitPotam) can simply be activated by asking the endpoint mapper. Great research!🎓 Now our efsr_spray NetExec module is obsolete, but we're on it: This PR activates the service by default with coerce_plus 🚀 github.com/Pennyw0rth/Net…
@SpecterOps found out that the EFS service (PetitPotam) can simply be activated by asking the endpoint mapper. Great research!🎓 Now our efsr_spray NetExec module is obsolete, but we're on it: This PR activates the service by default with coerce_plus 🚀 github.com/Pennyw0rth/Net…
gpoParser, which I presented at #leHACK2025 and #DEFCON, is available here: github.com/synacktiv/gpoP… It is a specialized utility designed to enumerate Group Policy Objects (GPOs) and identify potential security misconfigurations.
As a little follow up, I wrote a small blog post/tutorial on how to reverse engineer windows drivers with IDA - this is aimed at people that newer touched drivers before and covers IOCTL codes, IRPs and some IDA shenanigans with unions. eversinc33.com/posts/driver-r… Enjoy :3
The AD CS security landscape keeps evolving, and so does our tooling. 🛠️ @bytewreck drops info on Certify 2.0, including a suite of new capabilities and refined usability improvements. ghst.ly/45IrBxI
Good article from Bleeping Computer about the Exchange hybrid tradecraft I dropped at Black Hat yesterday, with some of my comments on the techniques: bleepingcomputer.com/news/security/…
GPT-5 is here. Rolling out to everyone starting today. openai.com/gpt-5/
Akhshaytp Official @akhshaytp
12 Followers 132 Following pwn || go to /dev/null CTF Player | Penetration Tester
Agent Skywalker 👨�... @ramseyibe
436 Followers 1K Following Cyber Security Enthusiast || @Cyblackorg Alumni || @owasp_buea chapter Leader || Barcelona💙❤️ God first⛪ Family is Gold💕
haneen farag @olfat98631
29 Followers 354 Following
#Cyberwar @cyberwar_geek
5K Followers 7K Following "Cry havoc and unleash the nerds of war" IT professional by accident, geek by nature. Student of conflict.
Dan @DanVitorPH
65K Followers 48K Following Do good 🙏 Do it consistently 💪 Be patient 😎 🤖 👩💻 👨💻 Co-founder and CTO of @XpertsAi 🧠 💻
Yannick Boog @YannickBoog
76 Followers 5K Following
m00ndie @_m00ndie
403 Followers 420 Following Malware Development | Reverse Engineering | Penetration Testing | Red Teaming | Bug Bounty
καζακιανκέ @qazaqyanke
0 Followers 72 Following
Sokratis @sokratissz
64 Followers 1K Following
birdd @0xbirdd
128 Followers 381 Following
perfect4sec @perfect4sec
666 Followers 5K Following DFIR | Threat Intelligence | Malware Analyst | Researcher | Cybersecurity Proactive Defense Team
. @useruse46513503
19 Followers 441 Following
NCV @nickvourd
1K Followers 350 Following Just your friendly neighborhood APT :~# OSCE³ ℹ️Opinions are my own and not the views of my employer. 📌I’ll be at @BSidesTirana 2026 with @IAMCOMPROMISED
Advik @Ad_vi_k
80 Followers 5K Following
kam_go @kam__go
132 Followers 854 Following
Yeeb @Yeeb_
252 Followers 487 Following Penetration tester, red teamer and capture the flag player with incident response experience.
Vishnu Neuer @VishnuNeuer
47 Followers 368 Following
Hackviser @hackviserr
2K Followers 3K Following Tailored cybersecurity upskilling platform for all levels, catering to beginners and pros | Best way to boost your #cybersecurity skills
Kamil Monticolo @kmonticolo
193 Followers 2K Following
molu @xmo1u
5 Followers 222 Following
Ibrahim B.O Yusuf @themindbeams
83 Followers 1K Following Tech & Security | Explorer of people & places | Stories, culture, and purpose light the way.
\x00 CRASHES @michalbeza
103 Followers 1K Following ${191*7} && fuzz the world! ه҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿
Sitalu @Sitalu7
0 Followers 1K Following
zhonb @zh0nb
23 Followers 504 Following
Geepe @Ramdom__stuffz
44 Followers 340 Following Trader📉📈 | cybersecurity analyst | Computer analyst | Tech enthusiast
MD @Merkle_Daamgard
4 Followers 233 Following
Elizabeth Gray (Polly... @AuntPollyanna
11 Followers 316 Following | Matriarch | Teasurer | Gangster | Businesswoman | Witch | #PenTest #DFIR #OSINT #BugBounty #B_R_P_Team #wannabe All tweets by order of the Peaky Blinders
ㅤㅤㅤ @LeftFridgeDoor
0 Followers 69 Following
Ricardo Pesqueira @n4m3l3ss_b0t
8 Followers 590 Following
OpenAI @OpenAI
4.3M Followers 3 Following OpenAI’s mission is to ensure that artificial general intelligence benefits all of humanity. We’re hiring: https://t.co/dJGr6Lg202
Dark Web Informer @DarkWebInformer
129K Followers 60 Following Providing Cyber Threat Intelligence from the Dark Web & Clearnet: Breaches, Ransomware, Darknet Markets, Threat Alerts & more. https://t.co/Fi7VW9lg94
Bad Sector Labs @badsectorlabs
8K Followers 503 Following Cybersecurity news, techniques, exploits, and tools every week at https://t.co/UgKmeEEjIV 🐘 @[email protected]
Wolf of X @tradingMaxiSL
474K Followers 17 Following Empowering minds, Sharing valuable knowledge and insights to elevate your world. DM for credit / removal
Yuki Chen @guhe120
10K Followers 281 Following 古河, Indepent security researcher, Bug bounty, ACG Otaku, Pwn2Own 15/16/17, PwnFest16,TianfuCup 18/19/20, 5 times MSRC MVR yearly Top 1. Got two pwnie awards.
DebugPrivilege @DebugPrivilege
40K Followers 2K Following Windows Nerd | Ex-MSFT | Microsoft MVP in Windows | Interested in Security, Debugging, and Windows Internals.
NCV @nickvourd
1K Followers 350 Following Just your friendly neighborhood APT :~# OSCE³ ℹ️Opinions are my own and not the views of my employer. 📌I’ll be at @BSidesTirana 2026 with @IAMCOMPROMISED
\x00 CRASHES @michalbeza
103 Followers 1K Following ${191*7} && fuzz the world! ه҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿҈̿
Hussein Muhaisen @husseinmuhaisen
2K Followers 4K Following In stealth reversing security complexity for the consumer and the enterprise // @ // PagedOut and GuidedHacking
X @TheMsterDoctor1
28K Followers 652 Following 👨💻 Retired Hacker & Mentor | 🔎 Exposing flaws & leaks | 🛡 AppSec, Bug Bounties | 🧠 Teaching you to find what others miss!
Vulnlab @vulnlab_eu
6K Followers 1K Following Labs & Training by @xct_de | https://t.co/3vRSpRWwJb | You are welcome to join the community @ https://t.co/8tvZ0UZ5ZL
Mike Felch (Stay Read... @ustayready
16K Followers 2K Following Targeted Ops Red Team @ TrustedSec | Hacking since Renegade BBS backdoors | Prior CrowdStrike/BHIS | In Christ's grip | I speak for myself only | K1HAQ
Charlie Bromberg « ... @_nwodtuhs
15K Followers 653 Following Trying to hack the way we hack things 🏴☠️
SEKTOR7 Institute @SEKTOR7net
15K Followers 346 Following Homo Aptus. Vincit qui se vincit - Publilius Syrus. Consulting, Training, Technology, Cyber domain, and more... @x33fcon founder.
Microsoft Security Re... @msftsecresponse
145K Followers 215 Following We are the Microsoft Security Response Center. To report security vulnerabilities or abuse in Microsoft products, visit https://t.co/kxEbdfMny1.
Dave Cossa @G0ldenGunSec
2K Followers 259 Following Adversary Simulation @xforce/ Frequent reader of the first page of Google results / Occasional reader of the second page of Google results
Phil Konieczny @PhilKonieczny
217K Followers 86 Following NIGDY nie napiszę do Ciebie pierwszy z propozycją biznesu lub obrotu krypto. uważajcie na konta podszywające się #kryptowaluty #kruszce #nieruchomości #polityka
mgeeky | Mariusz Bana... @mariuszbit
14K Followers 812 Following 🔴 Operator, Initial Access afficionado, Researcher, ex-AV engine developer, ex-Malware analyst 🦋 @mgeeky.bsky.social 🫖 green tea lover
x86matthew @x86matthew
21K Followers 189 Following C / asm / system emulation / reverse engineering. @the_secret_club
l0ss @mikeloss
2K Followers 2K Following Feels like he shouldn't be on Twitter. He/Him. If you like my hackin tools throw me a few bucks at https://t.co/tjcn0pzayt
squad303 =www.1920.in... @squad3o3
60K Followers 28 Following https://t.co/duzo7jVZnS #FightForUkraine #OpRussia [email protected] #Anonymous: @YourAnonNews @YourAnonOne @GroupAnon @AnonyOps
vx-underground @vxunderground
368K Followers 290 Following The largest collection of malware source code, samples, and papers on the internet. Password: infected
MDSec @MDSecLabs
15K Followers 0 Following Consultancy and Training from a trusted supplier of offensive security. Red Team and Adversary Simulation by ActiveBreach team | https://t.co/fqpbJ9WDXD | https://t.co/UvOhGA4Zou
Panos Gkatziroulis �... @netbiosX
25K Followers 812 Following Red/Purple Teamer | Blogger | Ex-Director @pentestlabltd | Mod @ https://t.co/1nzjl9KpSH | https://t.co/mIM1GA1mN4
Pentest Laboratories @pentestlabltd
2K Followers 0 Following Provide #RedTeaming services by executing custom scenarios to test your cyber resilience.
sn🥶vvcr💥sh @snovvcrash
12K Followers 488 Following Sr. Penetration Tester / Red Team Operator @ptswarm :: Author of the Pentester’s Promiscuous Notebook :: He/him :: Tweets’re my pwn 🐣
Todd Spence @Todd_Spence
59K Followers 9K Following Film fan fella. Movie illustrator: https://t.co/sxbr5eveR0 Screenwriter
Marcin Grzesiak @m4rtPL
52 Followers 184 Following Yet another #security guy, keep scrolling. Opinions my own.
CCob🏴�... @_EthicalChaos_
9K Followers 437 Following Ceri Coburn: Hacker | R̷u̷n̷n̷e̷r̷ DIYer| Vizsla Fanboy and a Little Welsh Bull apparently 🏴 Author of poorly coded tools: https://t.co/P6tT2qQksC
Charlie Clark @exploitph
5K Followers 1K Following
mpgn @mpgn_x64
18K Followers 230 Following Flibustier du net ̿ ̿̿'̿'\̵͇̿̿\=(•̪●)=/̵͇̿̿/'̿̿ ̿ ̿ ̿ Podcast Hack'n Speak @hacknspeak / https://t.co/GyACSFg9mw
szymex73 @szymex73
2K Followers 1K Following CTFs & 🎶🎮 | Capturing 🚩 with @justCatTheFish | @[email protected] / @szy.bsky.social
Alex Becker 🍊🏆�... @ZssBecker
1.3M Followers 4 Following The Master Chief of Crypto. All my holds/advisories/paid consults & meme coin info is disclosed in the site below. Not financial advice.
Lesley Carhart @hacks4pancakes
157K Followers 7K Following ICS DFIR @dragosinc, martial artist, marksman, humanist, Lvl14 Neutral Good rogue, USAF Ret. Tweet *very serious* things about infosec. Thoughts mine. They/them
Francesco Soncina @phraaaaaaa
3K Followers 4K Following OSCE // OSCP // Ethical Hacker & Red Teamer // Full Stack Developer // CTF Player @DonkeysTeamTrends for United States
You might like
