😈 [ C5pider, 5pider ]

Talon
A (demo) 3rd party agent for the Havoc Framework.
https://t.co/BGmHOXkSCD

🔗 https://github.com/HavocFramework/Talon

🐥 [ tweet ]

😈 [ SEKTOR7net, SEKTOR7 Institute ]

Here we go!

Pre-sale of RTO: MalDev Advanced (Vol.1) is now open
Pre-sale end: Sep 27th
Course release date: Sep 28th

Userland rootkit tech, building MSVC COFFs, custom "RPC" instrumentation and more...

You can't miss it!
https://t.co/nEYFgyS0pE

#RTO #redteam #onlinelearning

🔗 https://institute.sektor7.net/rto-maldev-adv1

🐥 [ tweet ]

😈 [ m8sec, Mike Brown ]

Current state of infosec Twitter...

🐥 [ tweet ]

😈 [ BushidoToken, Will ]

Hey @MicrosoftTeams

🐥 [ tweet ]

так жизненно прастите

😈 [ netero_1010, Chris Au ]

Having some fun to re-implement indirect syscall in C#.
https://t.co/7E0Ebk0Uub

🔗 https://www.netero1010-securitylab.com/evasion/indirect-syscall-in-csharp

🐥 [ tweet ]

😈 [ TrimarcSecurity, Trimarc ]

If you happened to miss our webinar back in June on 10 Ways to Secure AD Quickly, @JimSycurity wrote you a whitepaper on how to do the very things we talked about. He's a champion.

It's available for download right now:
https://t.co/3wPehRbWP5

🔗 https://www.hub.trimarcsecurity.com/post/ten-ways-to-improve-ad-security-quickly

🐥 [ tweet ]

😈 [ gentilkiwi, 🥝 Benjamin Delpy ]

Always fabulous to see editors low the Windows Security level

When Citrix SSO is enabled... passwords are stored in *user processes* (in addition to system ones)

Ho yeah, *even if you have Credential Guard*
Yeah, that's what Citrix is calling "SSO"

> Will be in #mimikatz 3 🥝

🐥 [ tweet ]

😈 [ TrustedSec, TrustedSec ]

Does crack[.]sh being offline got you down? 😔 Don't worry, you have options.
Find out how @n00py1 uses two different techniques to exploit systems that allow for the NTLMv1 authentication protocol.

https://t.co/eMqdnbZHLP

🔗 https://hubs.la/Q01mpY-j0

🐥 [ tweet ]

😈 [ SkelSec, SkelSec ]

Python. Asyncio. SSH. Client. (library)
Don't use it if you need security, use it when you want to test security :)
Public, MIT license.
As usual, thank you for all supporters of @porchetta_ind

https://t.co/hc6izOo6Xd

🔗 https://github.com/skelsec/amurex

🐥 [ tweet ]

😈 [ zux0x3a, Lawrence 勞倫斯 ]

Imagine you are 18 years old and accidentally putting your life and future on the edge just because you want to hack/show fame !? For what? Being a criminal is not a smart move, and in the end, you will be caught.

🐥 [ tweet ]

true

👹 [ snovvcrash, sn🥶vvcr💥sh ]

Being on a vacation I couldn’t resist from playing with a slightly modified example of internal credential phishing by @zux0x3a (which is not as complex as the CredentialPhisher from @foxit). Below is a quick demo of invoking a credential dialog with CME, DInjector and donut 🍩

🔗 https://github.com/0xsp-SRD/0xsp.com/tree/main/creds_hunt

🐥 [ tweet ]

😈 [ 0xdf_, 0xdf ]

Streamio retires from @hackthebox_eu. A Windows box with MSSQL injection in a PHP site, local and remote file includes, and LAPS.

https://t.co/dE4dFy3n9F

🔗 https://0xdf.gitlab.io/2022/09/17/htb-streamio.html

🐥 [ tweet ]

😈 [ ippsec, ippsec ]

#HackTheBox StreamIO video is live, this box has an excellent primer on manually enumerating MSSQL Databases after a successful inject. There’s a lot more to the box than that like active director and LAPS.
https://t.co/of1Puv1EBR

🔗 https://youtu.be/qKcUKlwoGw8

🐥 [ tweet ]

😈 [ theluemmel, S4U2LuemmelSec ]

Not sure if ADCS ESC 3 is abusable, because Certify and Certipy only give info on the 1st prerequisit "Certificate Request Agent"?

Use ldapfilter
(&(objectclass=pkicertificatetemplate)(msPKI-RA-Application-Policies=1.3.6.1.4.1.311.20.2.1)(pkiextendedkeyusage=1.3.6.1.5.5.7.3.2))'

🐥 [ tweet ]