@[email protected] 🦄 @netbiosX
Red Teamer | Blogger | Director @pentestlabltd | Mod @ https://t.co/1nzjl9KpSH | https://t.co/mIM1GA1mN4 pentestlab.blog Internet Joined January 2012-
Tweets13K
-
Followers23K
-
Following807
-
Likes4K
LSA Whisperer - Tool for interacting with authentication packages using their individual message protocols github.com/EvanMcBroom/ls…
📣 Big Update! My course prices now include VAT, and I did it without raising the current prices! Enjoy the same great content with no hidden costs! 👉 academy.bluraven.io #KQL #Kusto #SIEM #MicrosoftSentinel #MicrosoftDefender #Defender #cybersecurity…
Updated the Persistence checklist. There are 4⃣0⃣ persistence techniques which are backed up with an article ⤵️ github.com/netbiosX/Check… #redteam
[New Post] Persistence - DLL Proxy Loading pentestlab.blog/2024/04/03/per… #redteam
The standard invitation to your red/purple/blue team content 🔥 discord.gg/rR6FJBH
A PoC demonstrating code execution via DLL Side-Loading in WinSxS binaries github.com/thiagopeixoto/…
@ShitSecure You can try github.com/leftp/BackupCr… which is an implementation of James Forsaw’s article
[New Post] Persistence - Explorer pentestlab.blog/2024/03/05/per… #pentestlab #redteam
Currently, pentestlab.blog contains 3⃣9⃣ documented persistence techniques. You can find all of them here ⤵️ pentestlab.blog/methodologies/…
Persistence - Visual Studio Code Extensions pentestlab.blog/2024/03/04/per… #pentestlab #redteam
Building an arbitrary Visual Studio Code extension for fun and #persistence - Fun read from @netbiosX 😄 pentestlab.blog/2024/03/04/per… #redteam #security
Persistence - Explorer pentestlab.blog/2024/03/05/per…
Persistence – Explorer pentestlab.blog/2024/03/05/per…
Mail in the Middle – A tool to automate spear phishing campaigns sensepost.com/blog/2024/mail… #redteam
MultCheck - Identifies bad bytes from static analysis with any Anti-Virus scanner github.com/MultSec/MultCh…
A Technical Deep Dive: Comparing Anti-Cheat Bypass and EDR Bypass whiteknightlabs.com/2024/02/09/a-t…
⚛️Friends of Atomics on a Friday ⚛️ Come join us as we kick off Purple Madness 2024 with special guests @_josehelps , @jamieantisocial and @nas_bench discussing Data Source Diversity! Subscribe - Like - and be there! - twitch.tv/atomicsonafrid… - youtube.com/watch?v=O_tGVr…
⚛️Friends of Atomics on a Friday ⚛️ Come join us as we kick off Purple Madness 2024 with special guests @_josehelps , @jamieantisocial and @nas_bench discussing Data Source Diversity! Subscribe - Like - and be there! - twitch.tv/atomicsonafrid… - youtube.com/watch?v=O_tGVr… https://t.co/j0fB4UfxBH
Florian Roth @cyb3rops
180K Followers 2K Following Head of Research @nextronsystems #DFIR #YARA #Sigma | detection engineer | creator of @thor_scanner, Aurora, Sigma, LOKI, YARA-Forge | always busy ⌚️🐇Justin Elze @HackingLZ
52K Followers 5K Following Hacker/CTO @TrustedSec | Former Optiv/SecureWorks/Accuvant Labs/Redspin | Race carsPtrace Security GmbH @ptracesecurity
53K Followers 883 Following Empowering IT Security Professionals through Hands-On Online Courses.Grzegorz Tworek @0gtweet
29K Followers 1K Following My own research, unless stated otherwise. Not necessarily "safe when taken as directed". GIT d- s+: a+ C++++ !U !L !M w++++$ b++++ G-DirectoryRanger @DirectoryRanger
31K Followers 100 Following This account assembles and disseminates information related to Active Directory and Windows security.Vincent Yiu @vysecurity
27K Followers 203 Following Follow me for Cybersecurity #Thought #Leadership. Director Red Team. Help organizations safeguard their businesses from the bad guys.Charlie Bromberg « .. @_nwodtuhs
13K Followers 648 Following Trying to hack the way we hack things 🏴☠️☣ KitPloit - Hacker.. @KitPloit
118K Followers 3K Following Hacking and PenTest Tools for your Security Arsenal!Oliver Lyak @ly4k_
8K Followers 267 Following Yet another security researcher 🔦 Github: https://t.co/7WFOFz17KIsn🥶vvcr💥sh @snovvcrash
10K Followers 439 Following Sr. Penetration Tester / Red Team Operator @ptswarm :: Author of Pentester’s Promiscuous Notebook (https://t.co/rL1sv5A2R7) :: He/him :: Tweets’re my pwn 🐣rootsecdev @rootsecdev
24K Followers 1K Following Security Consultant @TrustedSec | Military grade meme poster, researcher, cloud penetration tester, voider of warranties. My thoughts are my own.an0n @an0n_r0
11K Followers 716 Following CRT(E|O|L) | OSCP | @RingZer0_CTF 1st (for 2yrs) | HackTheBox Top10 | RPISEC MBE | Flare-On completer | GoogleCTF writeup winner | SSD research | Math MSc |🇭🇺mgeeky | Mariusz Bana.. @mariuszbit
11K Followers 611 Following 🔴 Red Team operator, ex-MWR/F-Secure pentester, ex-AV engine developer @ESET, green tea addict. 🫖 @[email protected]Josh @passthehashbrwn
7K Followers 344 Following Adversarial Simulation at IBM, tweets are mine etc.DebugPrivilege @DebugPrivilege
37K Followers 2K Following Security “Researcher” | Former Microsoft MVP | All Tweets are my opinions and thoughts. Interested in Security, Debugging, and Troubleshooting.Michael Koczwara @MichalKoczwara
18K Followers 2K Following Founder @Intel_Ops_io Threat Intelligence, Adversary Infrastructure Hunting, Curated TI Feed (Coming Soon) https://t.co/vixTz8xKuF https://t.co/VQWaze6gaFWill Dormann @wdormann
26K Followers 1K Following I play with vulnerabilities and exploits. @[email protected]SEKTOR7 Institute @SEKTOR7net
12K Followers 332 Following Homo Aptus. Vincit qui se vincit - Publilius Syrus. Consulting, Training, Technology, Cyber domain, and more... @x33fcon supporter.Smart Cherrys Tech @smartcherrystc
9K Followers 5K Following Smart Cherrys Tech is Technology World.Sai Charan Paloju @SmartCherrysTho
27K Followers 17K Following Founder of Smart Cherrys Thoughts, Global Technology Influencer, International Speaker.Play Football @football_p53721
18 Followers 218 FollowingElectronicsseeker @libertarian108
8 Followers 1K FollowingAdam @Jeager7
91 Followers 1K FollowingMarc @snavemarc
2K Followers 5K Following Nerd. Interests: Tech, Privacy, Cybersecurity. Developer. Dating the delightful @Katelouise23981 PGP: https://t.co/dti1RPc5d0slv ramana @TslvRamana
17 Followers 315 Following Security Analyst | protocol analysis | Network analysis| Hackthebox | Learnersink0Rswim @laceandload
114 Followers 2K FollowingThomas Anderson @mrthomasanders
18 Followers 636 Following Programmer/ graduated in Mathematics, Researcher/ Hacking/ Pentester 🧑💻T @manw3l
271 Followers 953 Followinguser31fibcxw2 @user31fibcxw2
0 Followers 531 FollowingGuardianPhoenix @phoenixguard22
57 Followers 22 Following Streamer fan de la série Souls (mon bébé ça) et de RPG en général. https://t.co/LLxUSz2NXp https://t.co/W9cZ7u7QuMWing Yan Cheng @WingYan69739
0 Followers 33 FollowingEzsecurity @Ezecurity
1 Followers 139 Followingi_scream @iscream40167910
10 Followers 561 Followingبخيت @b_5_t
224 Followers 1K Followingالدكتاتوري @rootx02
3 Followers 117 Followingmaison millemont @maison1000mont
140 Followers 2K Following💧🌳🏖🐕🏂�.. @mornedownunder
173 Followers 555 Following Fan of all animals. Sustainability, renewable energy, and technology nerd. No-code fan404 Law Not Found @404lawnotfound
12 Followers 46 Followinginfected liblzma.so @_nullroute_
52 Followers 142 FollowingQWERTY @QWERTYRBG
351 Followers 3K FollowingUmut PELİSTER @UmutP3
32 Followers 183 FollowingDhaval Prajapati @dhaval_4599
90 Followers 370 Following Just minor work here to be done! Remember: New is always better!🙃Jonatan G. @jo_gwadloup
50 Followers 477 Followingf10aty @f10aty
6 Followers 130 Followinggoutattack @chmod888
25 Followers 2K Following You've heard of Vans, the shoe company? Now introducing Shoes, the van company!Ashok Kumar @AshokKu96477301
8 Followers 836 Followingshaun @jaded_it_worker
74 Followers 216 FollowingLeo9108 @Leo910825
63 Followers 440 FollowingRahbar Livss @Rahbar_livss
6 Followers 173 FollowingNL @NLx64
53 Followers 672 FollowingFlorian Roth @cyb3rops
180K Followers 2K Following Head of Research @nextronsystems #DFIR #YARA #Sigma | detection engineer | creator of @thor_scanner, Aurora, Sigma, LOKI, YARA-Forge | always busy ⌚️🐇Justin Elze @HackingLZ
52K Followers 5K Following Hacker/CTO @TrustedSec | Former Optiv/SecureWorks/Accuvant Labs/Redspin | Race carsGrzegorz Tworek @0gtweet
29K Followers 1K Following My own research, unless stated otherwise. Not necessarily "safe when taken as directed". GIT d- s+: a+ C++++ !U !L !M w++++$ b++++ G-DirectoryRanger @DirectoryRanger
31K Followers 100 Following This account assembles and disseminates information related to Active Directory and Windows security.Mike Felch (Stay Read.. @ustayready
15K Followers 2K Following Pentester / Red Team | Hacking since Renegade BBS backdoors | Dev since vb3 | Content since '99-'03 ezines | Prior CrowdStrike / BHIS | In Christ's gripCharlie Bromberg « .. @_nwodtuhs
13K Followers 648 Following Trying to hack the way we hack things 🏴☠️☣ KitPloit - Hacker.. @KitPloit
118K Followers 3K Following Hacking and PenTest Tools for your Security Arsenal!sn🥶vvcr💥sh @snovvcrash
10K Followers 439 Following Sr. Penetration Tester / Red Team Operator @ptswarm :: Author of Pentester’s Promiscuous Notebook (https://t.co/rL1sv5A2R7) :: He/him :: Tweets’re my pwn 🐣an0n @an0n_r0
11K Followers 716 Following CRT(E|O|L) | OSCP | @RingZer0_CTF 1st (for 2yrs) | HackTheBox Top10 | RPISEC MBE | Flare-On completer | GoogleCTF writeup winner | SSD research | Math MSc |🇭🇺Josh @passthehashbrwn
7K Followers 344 Following Adversarial Simulation at IBM, tweets are mine etc.DebugPrivilege @DebugPrivilege
37K Followers 2K Following Security “Researcher” | Former Microsoft MVP | All Tweets are my opinions and thoughts. Interested in Security, Debugging, and Troubleshooting.Will Dormann @wdormann
26K Followers 1K Following I play with vulnerabilities and exploits. @[email protected]mpgn @mpgn_x64
17K Followers 234 Following Flibustier du net ̿ ̿̿'̿'\̵͇̿̿\=(•̪●)=/̵͇̿̿/'̿̿ ̿ ̿ ̿ Podcast Hack'n Speak @hacknspeak / https://t.co/GyACSFg9mwJean @Jean_Maes_1994
11K Followers 1K Following Director of Advanced Assessments -EU @neuvik | @sansoffensive Certified instructor/SEC565 author/SEC699 co author https://t.co/haRI3ruvlghackerxbella | Allie .. @hackerxbella
5K Followers 707 Following Principal @Forrester analyst covering SecOps - EDR·XDR/SA·SIEM·SOAR/ransomware/MITRE ATT&CK - infosec, natsec, engineer, opinionated human - tweets = mineAtomicsonaFriday @AtomicsonaFri
351 Followers 26 Following In the wild of cyberspace, 'Atomics on a Friday' is the El Camino of security testing. Guiding defenders with vital content to safeguard their organizations.IAMERICA @EricaZelic
7K Followers 4K Following Still exploiting weak passwords for fun and profit. Your perception is not my reality. Posts don't represent my employer(s).HackSpaceCon @HackSpaceCon
3K Followers 1K Following Launch with us! Hack Space Con April 10-13th,2024. Tickets Available Now: https://t.co/VtWXzZwbybmeg west @cybersecmeg
137K Followers 1K Following #CISSP | #CCSP | MSc #Cybersecurity | Sr. Cybersecurity Consultant @CrowdStrike | Tweets about #dogs & travel & APTs, oh my! | Opinions are my own.waldoirc @waldoirc
3K Followers 623 Following Trying to figure out how computers work. Figuring out SDR, IOT, and Mobile exploitation. https://t.co/rLZFU0dOBypfiatde @pfiatde
1K Followers 863 Following "Every machine is a smoke Machine if you operate it wrong enough" RedTeamer by day, sleeping at night! https://t.co/ZcTfWHeGZOWomen4Cyber @Women4Cyber
3K Followers 247 Following Bringing together ♀️ and ♂️ to foster the participation & skills of women in #CyberSecurity. An initiative by @ecso_eu. Join us!Steven @0xthirteen
3K Followers 904 Following Working to become smarter everyday. Adversary Simulation Service Architect @SpecterOps. Coffee Brew TeamerFotini Papagiannaki @F_Papagiannaki
943 Followers 2K Following Sales Manager, Neurosoft SA, Cyber SecurityX-C3LL @TheXC3LL
5K Followers 622 Following Just a biologist that loves to break cyber-stuff. Ka0labs / @AdeptsOf0xcc / ID-10-Ts member. 🦉The DFIR Report @TheDFIRReport
53K Followers 0 Following Real Intrusions by Real Attackers, the Truth Behind the Intrusion. Services: https://t.co/XW613EKt2wChris Au @netero_1010
1K Followers 519 Following Red teamer, my tools for red teaming: https://t.co/j6Z018m09L, my blog to share offensive security stuff: https://t.co/MKvSTjpWoiAnni Panagiotopoulou @AnniPan2310
424 Followers 434 Following Multi-hyphenate engineer | Loves creating value through business & tech | People connector | It's a balancing act. #business #blockchain #web3 #ai #biohackingmodexp @modexpblog
4K Followers 500 Following All opinions expressed here are mine only (not of my employer etc). Developer @MDSecLabsOctoberfest7 @Octoberfest73
4K Followers 150 Following Red Team | Offensive Tool Dev | Malware Dev | OSCP | OSEP | RTJCBinary Defense @Binary_Defense
13K Followers 509 Following We're determined to make the world a safer place through our-industry recognized managed security services. Founded by @HackingDave|Sister company @TrustedSecWHOAMI @wh0amitz
504 Followers 147 Following Red Team / Offensive Security, Cameo in @StrawHat_CTF for pentest. Web Security / Windows / Active Directory / Post ExploitationLilian @e_balatsou
874 Followers 883 Following AI Evangelist🤖 Cognitive Neuroscientist🧠 @BangorUni Advocate for women in tech & science 💪@GreekGirlsCode #SocialActionAward2023Hollie Hennessy @HollieHennessy
2K Followers 699 Following Principal Analyst in IoT Cybersecurity. London. Foodie. Classicist. Views are my own.The Haag™ @M_haggis
8K Followers 2K Following Threat Researcher | Co-Host of Atomics on a Friday | LOLDrivers & Atomic Red Team Maintainer | I'm Everywhere and Nowhere - BSG.Anton @Antonlovesdnb
4K Followers 3K Following Blue Team stuff | Trying to be a decent human being | @munkschool Grad | Threat Research @SumoLogicDaniel Feichter @VirtualAllocEx
6K Followers 232 Following Founder @RedOps / IT-Sec Research / Red TeamGabriel Landau @GabrielLandau
3K Followers 701 Following WinDbg’er @ Elastic Security. Thoughts are my own. Some of my writing: https://t.co/EMJxj12lut More: https://t.co/pxG2OnO1OC @[email protected]Wendi Whitmore @wendiwhitmore
3K Followers 470 Following SVP, Palo Alto Networks Unit 42. Member DHS CSRB, WEF Cybersecurity Council. USAF Veteran.Former CrowdStrike, Mandiant, & IBM Security X-Force.All views my own.Bishop Fox @bishopfox
26K Followers 5K Following A leading provider of #offensivesecurity solutions & contributor to the #infosec community. #pentesting #hacking VC @forgepointcap @carrickcapital @WestCap8Martha Vardaki @marthouli_v
804 Followers 1K Following Raman Bio- Spectroscopist (re)searching around the world🌎👩🏻🔬 PhD in 🇬🇧 Back from 🇨🇦 Currently postdoc @EIEgr 🇬🇷 @RealScienceEdu tweetsAntisyphon Training @Antisy_Training
5K Followers 446 Following Antisyphon Training is here to disrupt the traditional training industry by providing high-quality and affordable education to everyone.lazzslayer @lazzslayer
4K Followers 543 Following Red Team | Lead for @redteamvillage_ | OSCP, GCPN, CISM, GPEN | 🤠Saad AHLA @d1rkmtr
7K Followers 369 Following d1rkmtr, Security researcher @AlteredSecurity, malware dev, kickboxerSecure 🧜🏼♀.. @Chatty2023
1 Followers 34 FollowingPlexTrac @PlexTrac
2K Followers 856 Following Spend more time hacking and less time reporting. | The premier pentest reporting and collaboration platform 💥 https://t.co/Qte4s76JvZMicrosoft DART @MicrosoftDART
2K Followers 3 Following We are the Microsoft Detection and Response Team. All things #DFIR #IncidentResponseDave Cossa @G0ldenGunSec
2K Followers 241 Following Adversary Simulation @xforcered / Frequent reader of the first page of Google results / Occasional reader of the second page of Google resultsNicole Hoffman @threathuntergrl
9K Followers 4K Following Friendly Neighborhood Intel Analyst | Children’s Book Author | Lego | Hufflepuff | AuDHD | She / Hervx-underground @vxunderground
291K Followers 211 Following The largest collection of malware source code, samples, and papers on the internet. Password: infectedLindsay Kaye @TheQueenofELF
906 Followers 259 Following VP of Threat Intelligence @SecurewithHUMAN | Reverse Engineer | Conference Speaker | Ransomware Columnist@EricaZelic @_xpn_ Note for others reading: there are two requirements for this technique: 1. SCCM is not configured for PKI client auth 2. Domain computer credentials - Either through LPE or creating a computer account github.com/subat0mik/Misc…
Another intriguing aspect of #SilverPotato: slui.exe - sppui can be found running on an ADCS server, activated by an admin. A simple domain user could then remotely coerce and relay authentication of users logged into the ADCS server, normally high-privileged 😉
Here are a few recent (and fantastic) additions to the Ultimate WDAC Bypass List: ☑️ "Intune Windows Agent bypass explanation" by @TheWMIGuy ☑️" Harden Windows Security: WDAC Notes" by @CyberCakeX github.com/bohops/Ultimat…
"Hello: I'm your Domain Administrator and I want to authenticate against you". My #SilverPotato is out, check the blog post: decoder.cloud/2024/04/24/hel… 😃
You can plant a few of your favorite DLLs into \Downloads and bounce off those shiny new Microsoft Store installers 👍 ncrypt.dll, cryptsp.dll, cryptbase.dll, bcrypt.dll, msvcp140_clr0400.dll, profapi.dll, en\StoreInstaller.resources.dll, d3d9.dll, etc.
Just like LinkedIn, posting the same here too (tradition :)) Those who attended my demo at @BlackHatEvents , if have any questions and stuff please let me know. Reach out to me in here, my DMs are open! I have uploaded V2 of my DarkWidow at github.com/reveng007/Dark… Finally…
Disobey Conference talks have been released! For any that might be interested in my talk you'll find it here. I'm also proud to be delivering v2 of that talk at Nolacon 2024. Hope to see you there! youtube.com/watch?v=i2cJ1v…
I published my PoC for CVE-2023-36047 as MSRC fixed the bypass today tracked as CVE-2024-21447. With some modification can be ported for CVE-2024-21447. github.com/Wh04m1001/User… msrc.microsoft.com/update-guide/v… msrc.microsoft.com/update-guide/v…
I spent a few hours this weekend making a tool to create randomly insecure file shares that also contain unsecured credential files. It's a rough cut, but, some of you may find it useful or may like to build upon it/customize it for your use cases ✌ github.com/techspence/Bad…
@domchell Made a tool to do that based on data on the host: huntandhackett.com/blog/introduci… Creates GPOs with firewall rules that takes server roles (file server, etc) into account
After well over a year of R&D, I just released my Zero-E network pentest tool! It automates the entire network enumeration process using an extensively-tested methodology that balances accuracy and efficiency, among many other features. Check it out! github.com/Inscyght/Zero-E
New tool in the arsenal for M365 and Entra ID red teaming github.com/RedByte1337/Gr… #redteam
Watching people tweet they bypassed a certain EDR is just cringe at this point. When you ask them what did they bypass, they dont know what. So let me take you back to school... Executing OpenSource tool is not a bypass. An EDR employs several mechanisms for detection. Getting a…
New blog post is up, exploring detection options for some recent In- the- Wild Windows LPE 0- days elastic.co/security-labs/…
Anything new in the automated labs with logging pre configured space? I'm about to try Attack range(github.com/splunk/attack_…) just curious if anything else is out with ongoing support.
SCCM Lab write up 📝part 0x3 is out: mayfly277.github.io/posts/SCCM-LAB… - Exploit as client admin - Exploit as sccm admin Find all the articles about the SCCM laboratory exploitation here : mayfly277.github.io/categories/scc…
I just created the tool which can help to get NT AUTHORITY\SYSTEM from arbitrary directory creation bugs. github.com/binderlabs/Dir…
"Summoning RAGnarok With Your Nemesis" posts.specterops.io/summoning-ragn… I detail how we built a a Nemesis powered Retrieval-Augmented Generation (RAG) chatbot PoC, code now public at github.com/GhostPack/Ragn… ! Fun example of how to build on top of Nemesis' functionality.
NEW BLOG! The #1 Stupid Thing we find during our Active Directory Security Assessments has to do with Nested Groups. NG's can be dangerous for a variety of reasons, including being a popular vector for Ransomware attacks. @dotdotdotHorse has a lot to say on the subject in his…
GitHub - thiagopeixoto/winsos-poc: A PoC demonstrating code execution via DLL Side-Loading in WinSxS binaries. github.com/thiagopeixoto/…