brmk @_brmkit
just an aimless student. Italy Joined November 2019-
Tweets53
-
Followers8
-
Following417
-
Likes207
MATCH (c1:Computer)-[:MemberOf*1..]->(g:Group) WHERE g.objectsid ENDS WITH '-516' WITH COLLECT(c1[.]name) AS dcs MATCH (c2:Computer) WHERE c2.enabled = true AND (c2.operatingsystem contains '2025') AND (c2[.]name IN dcs) RETURN c2[.]name If this query hits, you're in.
MATCH (c1:Computer)-[:MemberOf*1..]->(g:Group) WHERE g.objectsid ENDS WITH '-516' WITH COLLECT(c1[.]name) AS dcs MATCH (c2:Computer) WHERE c2.enabled = true AND (c2.operatingsystem contains '2025') AND (c2[.]name IN dcs) RETURN c2[.]name If this query hits, you're in.
Gli sperperi di denaro pubblico post terremoto dell’Irpinia sono ormai entrati nella storia di questo Paese. Una brutta storia, riassunta in dieci volumi presentati al Parlamento il 5 febbraio 1991 e inviati a varie procure da una commissione d’inchiesta presieduta da Scalfaro.
OK, I promise to stop spamming about relays with NTLM/Kerberos 😅. But if you're a member of the Distributed COM or Performance Log group, these juicy CLSIDs let you trigger remotely machine authentication of any computer, including DCs, and relay DCOM -> HTTP, SMB… 👇
How I discovered and exploited an unauthenticated SSRF in the Havoc C2 teamserver, allowing attackers to leak origin IPs of teamservers behind redirectors and much more! blog.chebuya.com/posts/server-s… github.com/chebuya/Havoc-…
New blog post "Google: Stop Burning Counterterrorism Operations" My reflection on an incident where Project Zero and TAG knowingly shut down an active Western counterterrorism cyber operation, and the real-world harm that could have resulted from it. poppopret.org/2024/06/24/goo…
Watching people tweet they bypassed a certain EDR is just cringe at this point. When you ask them what did they bypass, they dont know what. So let me take you back to school... Executing OpenSource tool is not a bypass. An EDR employs several mechanisms for detection. Getting a…
Intern, Junior, Senior, Principal, Sr Principal, Staff, Master, Artisan. These are the levels I believe best suites most of the fields of study in Cyber Security. I worked with @carnal0wnage to put some of this together one day and wanted to share my thoughts on it:
Wondering what telemetry an EDR collects? Wonder no more! @Kostastsale and @ateixei run an EDR Telemetry Project, covering all major EDRs: "The main goal of the EDR Telemetry project is to encourage EDR vendors to be more transparent about the telemetry they provide". Blog:…
Active Directory Enumeration for Red Teams mdsec.co.uk/2024/02/active… #Pentesting #CyberSecurity #Infosec
Kerberos tickets dumping in pure PowerShell 😍 I simply love such approach. So much more beautiful than loading pre-compiled binary blob. And so much harder to detect... linkedin.com/posts/mzhmo_hi…
Good Morning Everyone!! We are pleased to announce that CFP and Sponsorship is open for #BSidesRoma check it out. roma.securitybsides.it #Cyber #Italy #Roma #BSides #January23 #hybrid and we have a lot cool initiative, and some great speakers to announce :)
Building a server that can host a lot of VMs is still one of the best career investments I've made. Having the ability to spin up complex labs to test attack paths has been extremely valuable.
From initial access to Global Admin with #BloodHound and BARK. In this thread let's walk, step by step, through an example attack path based on real configurations we've seen in real environments:
Do you want a FREE seat to Advanced Threat Emulation: Evasion? Retweet and comment below and we will be randomly selecting 1 person on Monday at 8am PST to attend our brand-new course. eventbrite.com/e/advanced-thr…
This is really bad, if you ever installed components of ArcSoft, check this:
Certipy just received a major upgrade. The new version includes BloodHound integration, 5 new domain privilege escalation techniques, Shadow Credentials, Golden Certificates, and more. research.ifcr.dk/34d1c26f0dc6
Blog post and tool by @last0x00 for killing Defender without it showing up as disabled and loading an arbitrary driver in place of WdFilter aptw.tf/2021/08/21/kil… Credits to @jonasLyk from @the_secret_club for the technique!
Hands [off|on] MS cloud services youtu.be/XOF8fw_aW5E via @YouTube
When (NTLM) relaying potatoes lead you to domain admin... A "permanent" 0day Privilege Escalation Vulnerability in Windows RPC Protocol ;-) cc @splinter_code Our writeup here: labs.sentinelone.com/relaying-potat…
Warren Okuneva @WOkuneva49105
22 Followers 2K Following
stunn4 @0xstunn4
139 Followers 587 Following
Charles Shirer @bsdbandit
25K Followers 26K Following A Hacker who is A Lover of People, and Life @RetroTwinz @Secbsd, @GrumpyHackers, @NovaHackers, @deadpixelsec @hacknotcrime Advocate @PositivelyBlue_ OSCP, OSWP
VincentDThe @vincentdthe
92 Followers 588 Following 🇮🇹🇺🇦Aspiring average IT user…I misuse tools for grown Cyber Security operators. Lurker and beer operator @APTortellini
Carlo Pelliccioni @cpelliccioni
453 Followers 1K Following
:~$ ./bssec @Black_Sheep_Sec
840 Followers 3K Following 🌱 The way to prove yourself is to better yourself
Michele Boldrin @micheleboldrin
72K Followers 3K Following PD-CMP-VE-Rochester-Stanford-Chicago-LA-SantaFe-Evanston-BCN-MAD-Philly-HK-Shanghai-Tokyo-Phoenix-BA-Taipei-Mpls-Wuhan-StL-Palma-Beijing-SMdiL-Scorze-SouthTyrol
babush @pmontesel
830 Followers 590 Following @mhackeroni / I do stuff with computers / opinions not my own / 🇮🇹🇨🇦🇯🇵
db @whokilleddb
1K Followers 500 Following Maldev @bhinfosecurity | Finding increasingly stupid ways to do simple things
Codebender Cate™ ξ... @Codebender_Cate
1K Followers 3K Following Mother | INTP-T | Cyber-BASc | Gamer | @XboxAmbassadors | @WGUCyberClub | ΟΣΣ | Cyber competitor | Former @USArmy | CSIE in progress (1/4) | posts are mine
will i am @BSummerz
252 Followers 478 Following Red/Purple teamer and senior consultant @Mandiant Canada 🇨🇦
Nick VanGilder @nickvangilder
3K Followers 3K Following Red Team Director | Mission Focused Leader | Combat Veteran | Offensive Security Program Builder | Mentor and Coach
Drin Drin @MovDrinDrin
11K Followers 2 Following 🔔 Un’alternativa politica credibile. 🔗Iscriviti, partecipa agli eventi e tanto altro ⤵️
Harley Lebeau @r3dQu1nn
3K Followers 248 Following Red Teamer/Penetration Tester, Husband, Father, OSCP
Jamie Shaw @1nPr0c
5K Followers 564 Following Principal Security Consultant / Red Team Lead @mdseclabs
L1nkd34d @L1NKD34D
813 Followers 717 Following High Tech Low Life -|- Targeted Operations @TrustedSec -|- Dissonant Maiar -|- Hyper Active, Hyper Focused -|- Father of Four
anubis @AnubisOnSec
3K Followers 1K Following Logging into things I shouldn't I build and break things as a Red Team Lead @ Large GPU Maker
Steven @0xthirteen
3K Followers 900 Following Working to become smarter everyday. Adversary Simulation Service Architect @SpecterOps.
Dave Cossa @G0ldenGunSec
2K Followers 259 Following Adversary Simulation @xforce/ Frequent reader of the first page of Google results / Occasional reader of the second page of Google results
Shawn @anthemtotheego
2K Followers 390 Following Adversary Sim @ X-Force Red | Head of Capability R&D | Offensive AI | Implant Dev | Work In Progress | Thoughts My Own | https://t.co/eNspx7jLvm
NULL @NUL0x4C
9K Followers 393 Following Windows Malware Researcher | co-founder of https://t.co/1YRk2CEjaO
BC Security @bcsecurity
9K Followers 52 Following Threat Emulation | Training | Red Team | Penetration Testing | Compliance Discord: https://t.co/4C5C3M1Tk9
Harakiri @Harakiri_Twitt
96 Followers 442 Following 🇮🇹 Passionate about InfoSec, Photography, Music & Movies. Hoping to build a better Internet. Climbing addicted 🐒 🏔️
Zero-Point Security @_ZeroPointSec
13K Followers 6 Following
Chris King @raikiasec
2K Followers 326 Following Mandiant (Google Cloud) Red Team Director. My views and comments are my own and do not reflect my employer's view
☠️ Brandon @__mez0__
3K Followers 432 Following 👽 UNC1194 🔥 Targeted Ops @TrustedSec 🤖 Dev @preemptdev "purveyors of the prettiest log files"
那个火饺🦆(JJ) @thatjiaozi
1K Followers 457 Following 🇲🇽🇨🇦. Cloud Vulnerability Research. Opinions are my own. Not those of my company.
stunn4 @0xstunn4
139 Followers 587 Following
BlackSnufkin @BlackSnufkin42
656 Followers 483 Following #RedTeam & #MalwareDev | #CRTL Just a pirate in the Cyber sea 🏴☠️
Bad Sector Labs @badsectorlabs
8K Followers 503 Following Cybersecurity news, techniques, exploits, and tools every week at https://t.co/UgKmeEEjIV 🐘 @[email protected]
spencer @techspence
12K Followers 2K Following 🛡️Empowering defenders & dismantling threats | Ethical Threat | pentester @securit360 | host @cyberthreatpov | SWAG https://t.co/AFJtZQcti7
Nacho Gomez @_nag0mez
456 Followers 391 Following Offensive Security @ NCC Group | ❤️ Breaking Things
Thomas Roccia 🤘 @fr0gger_
32K Followers 2K Following AI Security x Threat Intel · Sr. Threat Researcher @Microsoft · Creator of #Unprotect & #NOVA · Malware Warlock · Python 🧡 · Prev @McAfee_Labs · Views mine 😈
Darknet Diaries @DarknetDiaries
124K Followers 1 Following True stories from the dark side of the Internet. Host @jackrhysider. New episodes released on the first Tuesday of each month. Discord: https://t.co/bZZRR8C59R
Stephan Berger @malmoeb
28K Followers 1K Following Head of Investigations @InfoGuardAG https://t.co/A5lnFAu7eX
ςεяβεяμs - м�... @c3rb3ru5d3d53c
25K Followers 243 Following 💕 Malware Hunter Killer 💕 #binlex & #mwcfg Developer 📽️ YouTuber 👩💻 She/Her 💍@DravenSwiftbow Support my work 👇 ☕️ https://t.co/NoM1TXq00P
Blue Team News @blueteamsec1
52K Followers 9K Following The cybersecurity home for the latest #BlueTeam, #DFIR, and #ThreatHunting news and tools.
☣ KitPloit - Hacker... @KitPloit
119K Followers 3K Following Hacking and PenTest Tools for your Security Arsenal!
Germán Fernández @1ZRR4H
35K Followers 461 Following 🏴☠️ OFFENSIVE-INTEL 🏴☠️ Cyber Threat Intelligence by Hackers | Security Researcher en https://t.co/rDrSxZASB3 | @CuratedIntel Member | 🥷🧠🇨🇱
LetsDefend @LetsDefendIO
131K Followers 0 Following Learn cybersecurity with hands-on blue team training
Unit 42 @Unit42_Intel
63K Followers 82 Following The latest research and news from Unit 42, the Palo Alto Networks (@paloaltontwks) Threat Intelligence and Security Consulting Team covering incident response.
blackorbird @blackorbird
35K Followers 671 Following Peace and Love. Just Analysis/Hunter. #APT #threatIntelligence #Exploit #CTI Need Job
SentinelOne @SentinelOne
56K Followers 1K Following ONE autonomous platform to prevent, detect, respond, and hunt. Do more, save time, secure your enterprise: https://t.co/N75g1HAnCs 🐱💻
HackerRats - Uncle Ra... @theXSSrat
154K Followers 945 Following Alone we survive, together we prosper. Are you with me? https://t.co/AfnDsVhqqA
MalwareHunterTeam @malwrhunterteam
244K Followers 38 Following Official MHT Twitter account. Check out ID Ransomware (created by @demonslay335). More photos & gifs, less malware.
Clément Notin @cnotin
6K Followers 974 Following 😈 Security research (#ActiveDirectory #EntraID) & pentest 🎉 #CTF @tipi_hack 👨💼 Works @TenableSecurity, opinions my own 🪂 https://t.co/4HRwJQ6PUm
Nathan McNulty @NathanMcNulty
17K Followers 1K Following Loves Jesus, loves others | Husband, father of 4, security solutions architect, love to learn and teach | Microsoft MVP | @TribeOfHackers | 🦋@nathanmcnulty.com
Rémi GASCOU (Podalir... @podalirius_
8K Followers 652 Following Security Researcher & Speaker | Microsoft Security MVP | Developer of security tools 🎬 https://t.co/QaAENc4NcYTrends for United States
You might like
