Aexyn @stHackPointer
Yet another Red Teamer Joined April 2017-
Tweets487
-
Followers154
-
Following287
-
Likes1K
New attack vector: FileFix. A phishing trick that executes PowerShell straight from your browser no Run dialog, no pop-ups. Just a fake file path + clipboard + File Explorer. Red teamers, this one’s wild. 📽️ PoC + write-up: medium.com/@t3chfalcon/fi…
New attack vector: FileFix. A phishing trick that executes PowerShell straight from your browser no Run dialog, no pop-ups. Just a fake file path + clipboard + File Explorer. Red teamers, this one’s wild. 📽️ PoC + write-up: medium.com/@t3chfalcon/fi… https://t.co/5BG04QW71Z
No one is likely surprised by this, but it does feed into the narrative of humanity actually dumbing down instead of becoming more intelligent. I have no empirical evidence at hand to support my gut feeling, but ever since the internet in general, I feel like we are dumber.
No one is likely surprised by this, but it does feed into the narrative of humanity actually dumbing down instead of becoming more intelligent. I have no empirical evidence at hand to support my gut feeling, but ever since the internet in general, I feel like we are dumber.
If you want to know about how helpdesk attacks really look like, @AnthonySecurity published the playbook. Practical read, of what really works - this stuff really works from my personal experience on RTs. You don't need crazy 0 days. Pick up the phone. praetorian.com/blog/helpdesk-…
By making minor changes to command-line arguments, it is possible to bypass EDR/AV detections. My research, comprising ~70 Windows executables, found that all of them were vulnerable to this, to varying degrees. Here’s what I found and why it matters 👉 wietze.github.io/blog/bypassing…
In our latest article, @croco_byte and @SScaum demonstrate a trick allowing to make Windows SMB clients fall back to WebDav HTTP authentication, enhancing the NTLM and Kerberos relaying capabilities of multicast poisoning attacks! synacktiv.com/publications/t…
NetExec has a new Module: Timeroast🔥 In AD environments, the DC hashes NTP responses with the computer account NT hash. That means that you can request and brute force all computer accounts in a domain from an UNAUTHENTICATED perspective! Implemented by @Disgame_ 1/3🧵
Excited to share a tool I've been working on - ShadowHound. ShadowHound is a PowerShell alternative to SharpHound for Active Directory enumeration, using native PowerShell or ADModule (ADWS). As a bonus I also talk about some MDI detections and how to avoid them
Interesting Gmail Prv-Esc Exploit you can exploit most organization that use @GoogleWorkspace, and won't be fixed indicated by Google. I found this unintentional when working on SMTP/ DMARC, and accidentally forged my head-of-school's gmail account, bypassed access-control, and…
''BOFHound: AD CS Integration'' #infosec #pentest #redteam #blueteam posts.specterops.io/bofhound-ad-cs…
Did you know that 7z can browse .VHD and .VMDK files? You can open them right up, and even directly browse ntfs filesystems. On a pentest and find a bunch of disk images? Copy the SAM/SECURITY/SYSTEM hives directly from the images, no mounting, copying, or fussing around.
- How a single "?" can bypass Httpd’s built-in access control and auth. - How unsafe RewriteRules can escape the Web / and access the entire filesys. - How to leverage a piece of code from 1996 to transform an XSS into RCE. Must Read --> (credit link): blog.orange.tw/2024/08/confus…
Fun little IOC in impacket-smbserver's Negotiate Protocol Response 🙃
📢 Exciting news: today we announced CrowdStrike Falcon® Complete Next-Gen MDR to stop breaches with unprecedented speed and precision across the entire enterprise attack surface. 🔗 Full details on our blog: crwdstr.ke/6019iR6uv #Cybersecurity #MDR #AI #ThreatIntelligence
You wouldn't see this with any of our products (just sayin.) 🤷
systemd-tmpfiles, deleting /home "systemd-tmpfiles --purge" will delete /home in systemd 256 tested with systemd-tmpfiles --dry-run --purge on @debian
Ecosia Browser, ou quand le greenwashing numérique fume la moquette tout en plantant des arbres louisderrac.com/2024/04/ecosia… #lavageVert
A GitHub flaw lets attackers upload executables that appear to be hosted on a company's official repo, such as Microsoft's—without the repo owner knowing anything about it. The following URLs, for example, make it seem like these ZIPs are present on Microsoft's source code repo:…
Can a DHCP administrator become a domain administrator? Well, as it turns out, sometimes it sure can. 🥴 In our latest blog post, see how Akamai researchers discovered a new PrivEsc technique affecting Active Directory. Full write-up: akamai.com/blog/security-…
Okafor Christian @OkaforChri1349
6 Followers 161 Following
Sm1th001 @sm1th001
128 Followers 1K Following ▪️Arduino / ▪️Raspberry Pie Fan ▪️Linux & Bsd ▪️ Coding Bash / Python Newbie / C++ Baby ▪️ Cyberpunk Lover ▪️ Pentesting Addict
the dreamer @Silky55__
319 Followers 2K Following DevOps Engineer | PowerShell | Dotnet | RE beginner
Advik @Ad_vi_k
80 Followers 5K Following
Clément Notin @cnotin
6K Followers 974 Following 😈 Security research (#ActiveDirectory #EntraID) & pentest 🎉 #CTF @tipi_hack 👨💼 Works @TenableSecurity, opinions my own 🪂 https://t.co/4HRwJQ6PUm
0xblank @0xblank
52 Followers 1K Following
sexy boy @sexyboy1736053
6 Followers 263 Following
Thomas Sankara @Fuesh
78 Followers 489 Following Guard your integrity & character with your life. Its the only thing that will be left of you when all the material things are gone.
pruno @pruno9
98 Followers 503 Following Your average Red Teamer. Also a gamer and cats lover (maybe too much).
Connor Johnson @CJ_Fortra
39 Followers 195 Following Lead Account Executive - Fortra's Offensive Security | @fortraofficial - Representing Core Impact, Cobalt Strike, Outflank Security Tooling (OST).
Helfer @realHelfer
5 Followers 59 Following
Barbara Viersen @BViersen
101 Followers 2K Following
m4 @m4strcpy
0 Followers 197 Following
leco @_lec0_
42 Followers 265 Following
rosen @pierrosen
385 Followers 686 Following Red Teamer & Senior Cybersecurity consultant @WavestoneFR YoloSw4g CTF team member 😎
IvreSec @ivresec
513 Followers 509 Following Bienvenue sur IvreSec, le Twitter de l'InfoSec Ivre - Fanclub de @pentesteur #infosec #charlatans #parodyaccount À propos du compte : https://t.co/IzYM2OSZOv
somewhere @S0m3wh3r3_0
267 Followers 5K Following
Rauxam @Rauxam_
14 Followers 70 Following
R @Romain_SEVERIN
70 Followers 220 Following
Agent Shiba 🕵️ @agent_shiba
480 Followers 2K Following FR 🇫🇷/EN 🇬🇧 #Shakhtar fan 🧡🖤 #OSINT enthusiast 📡
NOODLE @bragames2
439 Followers 840 Following I like to learn about Windows/Active Directory pentesting, Red Team stuff & Maldev enjoyer
World Wide Greg @MorelGrgory1
16 Followers 133 Following
Roni Bachar @Roni_Bachar
211 Followers 709 Following
She's a runner, she's... @xo_kinsley
70 Followers 627 Following #skater, #snorkeling, #hacker. Repaired computers for @DHSgov personnel. #OpenSource enthusiast. GA resident. Ex @USArmy. Supporter of human & animal rights.
leseminariste @le_seminariste
35 Followers 1K Following
Zephyr @ZephyrZ_FR
4 Followers 225 Following
3ldidi @3ldidi
10 Followers 638 Following
MH @MorpheusH3x
648 Followers 5K Following baby reverser, @esnhack, @securinsa, student @ ESNA • CTF @ret2school_fr • @infosec.exchange
bouchra @emily19krystal
9 Followers 255 Following
7 chakras @LesaffreLouis62
8 Followers 115 Following https://t.co/MPhvRv1M0r | https://t.co/wT6GIvaim2
Ewaël @Ewael_
18 Followers 122 Following
Qingzhao @Qingzhao19
3 Followers 50 Following
Zephyr @plastiquedur
3 Followers 179 Following
Joseph raj @Josephr67553698
3 Followers 39 Following
Fhloston @Fhloston_
187 Followers 4K Following
Olaf Hartong @olafhartong
17K Followers 964 Following @FalconForceTeam | researcher with a camera | Microsoft MVP | Snow man role model
CovertAccessTeam @Covert_Access
50 Followers 50 Following
Haifei Li @HaifeiLi
8K Followers 151 Following For contact in the security community. NOTE: All the tweets are totally my personal opinions, not about any of my current employer stuff.
Michael Bargury @mbrg0
8K Followers 484 Following Breaking AI. Hacked Copilot, hijacked ChatGPT. Building @zenitysec.
bearstech @bearstech
16K Followers 3K Following #SCOP d'experts du #LogicielLibre Confiez nous la performance de vos applications (hébergement, infogérance, #devops, #SRE, sécurité, efficacité énergétique)
/ˈziːf-kɒn/ @x33fcon
7K Followers 1 Following When Red meets Blue... The very first security conference for Purple Teams on the planet
Emeric Nasi @EmericNasi
5K Followers 427 Following CyberSecurity researcher and founder of BallisKit. I have a passion for all infosec subjects especially redteam and writing offensive tools!
Justin Elze @HackingLZ
65K Followers 5K Following CTO @TrustedSec | Former Optiv/SecureWorks/Accuvant Labs/Redspin | Race cars
Nathan McNulty @NathanMcNulty
17K Followers 1K Following Loves Jesus, loves others | Husband, father of 4, security solutions architect, love to learn and teach | Microsoft MVP | @TribeOfHackers | 🦋@nathanmcnulty.com
Md Ismail Šojal �... @0x0SojalSec
31K Followers 5K Following Cyber_Security_Re-searcher || 0SINT || Malware Analysis II Pwn || Ai Re-searcher || Project @AIStrikeSec || 0ld Accounts Suspended @0xSojalSec ||
mpgn @mpgn_x64
18K Followers 230 Following Flibustier du net ̿ ̿̿'̿'\̵͇̿̿\=(•̪●)=/̵͇̿̿/'̿̿ ̿ ̿ ̿ Podcast Hack'n Speak @hacknspeak / https://t.co/GyACSFg9mw
CCob🏴�... @_EthicalChaos_
9K Followers 438 Following Ceri Coburn: Hacker | R̷u̷n̷n̷e̷r̷ DIYer| Vizsla Fanboy and a Little Welsh Bull apparently 🏴 Author of poorly coded tools: https://t.co/P6tT2qQksC
ProjectDiscovery @pdiscoveryio
37K Followers 125 Following Detect real, exploitable vulnerabilities. Harness the power of Nuclei for fast and accurate findings without false positives.
Trackflaw @trackflaw
177 Followers 1 Following Trackflaw is a french startup specialized in offensive security and specifically in penetration testing.
Paul Seekamp @nullenc0de
17K Followers 608 Following I spend a significant amount of time reading security stuff. Co-Founder/Partner @CoastlineCyber https://t.co/ZQT5L8q2RO
Lee Chagolla-Christen... @tifkin_
14K Followers 816 Following I like making computers misbehave. Does stuff at https://t.co/YsrVyTjh8z. https://t.co/UsRIholree https://t.co/54TYQgSLiZ
Greg Darwin @gregdarwin
2K Followers 0 Following No longer using Twitter. Gone looking for blue skies.
HackGit @hack_git
55K Followers 2 Following The channel was created for cybersecurity specialists 🥷 → Open Source Software → RedTeam → BugBounty → etc 🍻 https://t.co/0PYtBpfJ4f
Alice Climent @AliceCliment
3K Followers 283 Following Malware and EDR stuff @harfanglab 🤓 || PTC || Sister of @h313n_0f_t0r & @lauriewired
Blue Team News @blueteamsec1
52K Followers 9K Following The cybersecurity home for the latest #BlueTeam, #DFIR, and #ThreatHunting news and tools.
Jon G @GainSec
582 Followers 775 Following Managing Security Consultant by day. Security Researcher, OSINT Lover, Founder by night. | 42 CVEs. Skateboarder
DEFCON GROUP Paris @dcgparis
2K Followers 10 Following A reboot of the DEFCON GROUP Paris group. Free bimonthly meetups. If you would like to give a talk, contact us here: [email protected]
Andrew @4ndr3w6S
3K Followers 2K Following Detection Engineering @HuntressLabs | Prev. Practice Lead, TAC (Purple Team) @TrustedSec | @SpursOfficial Super Fan - COYS!
Nikhil Mittal @nikhil_mitt
20K Followers 439 Following Hacker, Infosec Researcher, Military Affairs & History, PowerShell, AD and Azure pwner, Creator of Nishang and others :) Founder @alteredsecurity
pruno @pruno9
98 Followers 503 Following Your average Red Teamer. Also a gamer and cats lover (maybe too much).
Oliver Lyak @ly4k_
9K Followers 265 Following Yet another security researcher 🔦 Github: https://t.co/7WFOFz17KI
mgeeky | Mariusz Bana... @mariuszbit
14K Followers 813 Following 🔴 Operator, Initial Access afficionado, Researcher, ex-AV engine developer, ex-Malware analyst 🦋 @mgeeky.bsky.social 🫖 green tea lover
ekt0 @ektoplasma_
552 Followers 344 Following Malware analysis, RE, and DFIR Co-creator of DFIR-IRIS DFIR ninja @ Synacktiv
Will Dormann is on Ma... @wdormann
26K Followers 1K Following I play with vulnerabilities and exploits. I used to be here on Twitter but now I'm here: @[email protected] https://t.co/hXggdAVkSQ
Richard Ackroyd @rfackroyd
824 Followers 804 Following Cyber Security | Staff Security Engineer @Ripple (fintech/crypto) | Specialised in Detection & Response 🦈 Ex @PwC
Christopher Peacock @SecurePeacock
7K Followers 2K Following #PurpleTeam | Ex @RaytheonTech MSSP, @SCYTHE_IO, & @GD_OTS | Taught at BlackHat & DEFCON | #100DaysofSigma | Keep exploring, keep learning, and stay curious
Hakin9 @Hakin9
67K Followers 1K Following Hakin9 is a monthly magazine and online training provider dedicated to hacking and cybersecurity.
Justine Tunney @JustineTunney
40K Followers 326 Following I built a C library that lets you compile 12kb static binaries that run natively on Linux, Mac, Windows, FreeBSD, OpenBSD, NetBSD and BIOS using just GCC/Clang.
n00py @n00py1
13K Followers 963 Following Retweeter of InfoSec/Offsec/Pentest/Red Team. Occasional blogger/Independent security research.
Adam Chester 🏴�... @_xpn_
36K Followers 498 Following Hacker for Hire at @SpecterOps | Blog at https://t.co/tjfTOllCEu | Insta at https://t.co/PqR6CZPwjl
Zero-Point Security @_ZeroPointSec
13K Followers 6 Following
Florian Hansemann @CyberWarship
84K Followers 47 Following Father, Founder @HanseSecure, Pentesting, Student, ExploitDev, Redteaming, InfoSec & CyberCyber; -- Mastodon: https://t.co/KFSKYUN98M
Mr.Un1k0d3r @MrUn1k0d3r
13K Followers 508 Following I don't know how to search on Google so I do research on my own and tweet about it. Hacking as a life style https://t.co/a05mevChzu
Dominic Chell 👻 @domchell
18K Followers 540 Following Just your friendly neighbourhood red teamer @MDSecLabs | Creator of /r/redteamsec | https://t.co/3k3EBAZqGd | https://t.co/KwO2OwDOkl
Helfer @realHelfer
5 Followers 59 Following
Duane Michael @subat0mik
1K Followers 519 Following Security Researcher, Teacher, Leader @SpecterOps
Matt Hand @matterpreter
10K Followers 293 Following Director, Security Research @preluderesearch💜 | Author of Evading EDR https://t.co/E5fs0sSTOv 📖 | Adversary tradecraft & windows internals 🦠Trends for United States
You might like
