Nikhil Mittal @nikhil_mitt
Hacker, Infosec Researcher, Military Affairs & History, PowerShell, AD and Azure pwner, Creator of Nishang and others :) Founder @alteredsecurity alteredsecurity.com Joined May 2010-
Tweets8K
-
Followers18K
-
Following442
-
Likes1K
code[.]microsoft[.]com became pretty interesting to the community over the weekend. Blog post about what we use it for and what we’ve been seeing. Crucially why it had to say goodbye. techcommunity.microsoft.com/t5/microsoft-s…
We are proud to finally share some great research by Arnau Ortega on a 1-click #Azure tenant takeover attack. You can read all about it in our latest blog post. It explains how we could take over any Azure tenant; just by clicking one legitimate link 😨 falconforce.nl/arbitrary-1-cl…
Few days left! Get a 20% discount on our Azure Courses. Use Azure20OFF with Stripe. Celebrate April - Month of Azure Red Teaming with us! alteredsecurity.com #Azure #RedTeam #Pentesting
"Hello: I'm your Domain Administrator and I want to authenticate against you". My #SilverPotato is out, check the blog post: decoder.cloud/2024/04/24/hel… 😃
I was one of the first to clear the new Certified Azure Red Team Expert (CARTE) exam earlier this week! Once again a fantastic training and lab by @nikhil_mitt, where we are encouraged to take the role of hacktivists to compromise the Azure environment of a big oil corporation!
I was one of the first to clear the new Certified Azure Red Team Expert (CARTE) exam earlier this week! Once again a fantastic training and lab by @nikhil_mitt, where we are encouraged to take the role of hacktivists to compromise the Azure environment of a big oil corporation!
I do not joke when I say that I would rather dive into the Arctic over dealing with Microsoft support. Our severity A ticket is pending for 4 days and the support has not been helpful. Takes a day to come back with the exact same solution - link to the limits document. Typical,…
Awesome! Three of our certifications CRTP, CRTE and CRTM feature in the list by Japanese Ministry of Economy, Trade and Industry as 'Satisfies the expertise required to provide penetration testing services.' 😍
"I Hacked The Cloud" -- compromising an Azure website, swiping the access token for the managed identity of the web app, leveraging permissions to gain code execution on a virtual machine, and extracting credentials for further access! 😎 youtu.be/othiOX9BRAo
@IgnoulJoris @Mickey_De_Baets I am definitely not a master. I stand on the shoulders of giants. Everything I learned I learned from others in the field. @_RastaMouse and @nikhil_mitt were instrumental for my journey. Without them I would not be where I am today. I'm lucky enough to talk to a lot of incredible
This is a fantastic tool for Azure security folks!
This is a fantastic tool for Azure security folks!
🚀I'm finally releasing GraphSpy to the public!🕵️ A powerful offensive security tool focused on making initial access and post-compromise enumeration in Microsoft Entra and M365 much more convenient during penetration tests and red team assessments! github.com/RedByte1337/Gr…
We did a major exposé today: Webmail providers are wide open to malicious office document attacks! SquareX @getsquarex has been building a browser-native security product capable of mitigating web threats including malicious office documents. Our research team consisting of…
I found an old stone tablet with the word ‘hunter1’ carved into it on top of our physical domain controller. I asked the sysadmin who’s been here the longest what it was and he said “judging by its age, it’s the DSRM password”
The xz fiasco has shown how a dependence on unpaid volunteers can cause major problems. Trillion dollar corporations expect free and urgent support from volunteers. @Microsoft @MicrosoftTeams posted on a bug tracker full of volunteers that their issue is "high priority"
@binitamshah FWIW, I didn't actually start looking due to the 500ms - I started looking when I saw failing ssh logins (by the usual automated attempts trying random user/password combinations) using a substantial amount of CPU. Only after that I noticed the slower logins.
The xz backdoor was initially caught by a software engineer at Microsoft. He noticed 500ms lag and thought something was suspicious. This is the Silver Back Gorilla of nerds. The internet final boss.
This was a great find by Joshua on our team. Here's the @NetSPI blog covering an Azure privilege escalation (Automation Account Reader-> Subscription Contributor) caused by Azure Site Recovery Services and Automation Accounts. - netspi.com/blog/technical…
totally forgot that naming your wifi after mimikatz script makes windows eat itself
Florian Roth @cyb3rops
180K Followers 2K Following Head of Research @nextronsystems #DFIR #YARA #Sigma | detection engineer | creator of @thor_scanner, Aurora, Sigma, LOKI, YARA-Forge | always busy ⌚️🐇
Justin Elze @HackingLZ
52K Followers 5K Following Hacker/CTO @TrustedSec | Former Optiv/SecureWorks/Accuvant Labs/Redspin | Race cars
🇷🇴 cristi @CristiVlad25
38K Followers 151 Following
Mike Felch (Stay Read.. @ustayready
15K Followers 2K Following Pentester / Red Team | Hacking since Renegade BBS backdoors | Dev since vb3 | Content since '99-'03 ezines | Prior CrowdStrike / BHIS | In Christ's grip
Jason Haddix @Jhaddix
146K Followers 7K Following CEO, CISO, Trainer, Hacker, and Speaker. @arcanuminfosec 18 years hacking + sec leadership. ex:BuddoBot-Ubisoft-Bugcrowd-Fortify-HP-Redspin-Citrix.
Vivek Ramachandran @vivekramac
23K Followers 5K Following Founder, SquareX (@getsquarex) | (exited) Founder, PentesterAcademy (@securitytube) - acquired by INE (@ine) | Defcon - Blackhat Speaker | Book Author
Josh @passthehashbrwn
7K Followers 344 Following Adversarial Simulation at IBM, tweets are mine etc.
Pentester Academy @SecurityTube
187K Followers 15K Following We help professionals acquire the skills, knowledge and certificates by teaching defense through offense to advance their careers in cybersecurity.
Dr. Nestori Syynimaa @DrAzureAD
17K Followers 2K Following Principal Identity Security Researcher at Microsoft. Ex-Secureworks. (MSc, MEng, PhD, CITP, CCSK). And yes, opinions are my own ;)
Charlie Bromberg « .. @_nwodtuhs
13K Followers 648 Following Trying to hack the way we hack things 🏴☠️
rootsecdev @rootsecdev
24K Followers 1K Following Security Consultant @TrustedSec | Military grade meme poster, researcher, cloud penetration tester, voider of warranties. My thoughts are my own.
Jean @Jean_Maes_1994
11K Followers 1K Following Director of Advanced Assessments -EU @neuvik | @sansoffensive Certified instructor/SEC565 author/SEC699 co author https://t.co/haRI3ruvlg
Nikhil @Ox4d5a
15K Followers 1K Following Penetration Tester | i XCHG 0's 1's and do hacks | Red Team Sorcery https://t.co/6LUhkvNA77 | #eJPT | #OSCP | #CRTP | #CRTA | #CESP | #CRTE
Joe Helle - Mayor of .. @joehelle
28K Followers 60 Following Proud Girl Dad | U.S. Army Iraq & Afghanistan Veteran | Former Mayor | Penetration Tester | PPG Trike Pilot
Rad @rad9800
6K Followers 824 Following labs @praetorianlabs opinions are my own and not of my employer
DebugPrivilege @DebugPrivilege
37K Followers 2K Following Security “Researcher” | Former Microsoft MVP | All Tweets are my opinions and thoughts. Interested in Security, Debugging, and Troubleshooting.
sn🥶vvcr💥sh @snovvcrash
10K Followers 438 Following Sr. Penetration Tester / Red Team Operator @ptswarm :: Author of Pentester’s Promiscuous Notebook (https://t.co/rL1sv5A2R7) :: He/him :: Tweets’re my pwn 🐣
r1vs3c @r1vs3c
65 Followers 245 Following Security Analyst | Junior Pentester | eJPT | EHCA | ISO 27001 | CTF Player
slv ramana @TslvRamana
17 Followers 315 Following Security Analyst | protocol analysis | Network analysis| Hackthebox | Learner
Dq Hung @DqHung6
2 Followers 35 Following
Tobias @TobyTorp
13 Followers 111 Following
.asm @dot_asm
4 Followers 299 Following
Eusebiu Blindu @testalways
3K Followers 2K Following General stuff, tech, security, travel. testing. Ex Solarwinds, EU Commission projects, DHL. Math Olympiads , movie extra in Borat and Bloodrayne
k5acyborg @K5aCyborg
0 Followers 87 Following IT wizard making tech magic for muggles. Fluent in code, sarcasm & dad jokes.
hackyprince007 @hackyprince007
114 Followers 547 Following Security Engineer |Curious to learn new tech | OSCP | CEHv11 | BlueTeamguy | coder/programmer | Bugbounty | Offensive~Defensive Geek| Top 1% in THM
呼死你电报 twtw5.. @Hercules412
2 Followers 55 Following
呼死你电报 twtw5.. @eaboemar
5 Followers 44 Following
呼死你电报twtw56.. @SmansaWaw
2 Followers 34 Following
呼死你电报twtw56.. @zhairazataaqma
3 Followers 39 Following
呼死你电报twtw56.. @tessar_20
4 Followers 35 Following
呼死你电报twtw56.. @Jhumfuyunghay
0 Followers 42 Following
呼死你短信轰炸.. @ElizabethJ86251
0 Followers 50 Following
呼死你短信轰炸.. @KellyReyno21357
1 Followers 50 Following
Wagan @Wagan_arora
44 Followers 131 Following
jorkle @j0rkle
20 Followers 33 Following
M.A HAROUN @a_haroun52554
0 Followers 7 Following
shirto cubher @cubher15531
20 Followers 175 Following
Xose LP MSFT @XLPMSFT65
40 Followers 672 Following
为之奈何 @yBhLbfwTb16JKLE
34 Followers 494 Following
fepra @FelipeP89916938
3 Followers 179 Following /* meu ofício é saber o que os outros não sabem sou técnico, mas só tenho técnica dentro da técnica */
🎴Rez @RezNyx
6 Followers 563 Following “If you do not enter the tiger’s cave, you will not catch its cub” Enjoy life and all the universe has to offer. In all things there is a balance.
cscfufo @cscfufo
25 Followers 1K Following
Richard Rothwell @RothwellSec
46 Followers 172 Following
Sedric Louissaint @sedric____
321 Followers 279 Following If you want to get into an exciting cybersecurity career click the link below and let’s talk.
Víctor Fresk0 💻 @hacefresko
316 Followers 317 Following I like breaking stuff and getting root shells
Senshi @SenshiOffsec
4 Followers 34 Following
issa mohammed @issamohamm17941
27 Followers 729 Following
kino @kinon0n
30 Followers 136 Following I am a Beginner in Cybersecurity. Exicted to learn more about this field
Alireza Roshandel @Senku_Ro
3 Followers 252 Following
KK @kk0128_
61 Followers 85 Following Learning Cyber security. CTF/HackTheBox/TryHackMe Certification: CompTIA Security+,CND Qiita: https://t.co/p1HuOJVQUx GitHub: https://t.co/erkgZFrzTM
yum, CISSP, CCSP, CEH.. @yum_yum_YB
125 Followers 1K Following
BiGBells 🎈 @Traxx4G
266 Followers 654 Following
Yerko @ymra00101110
5 Followers 1K Following
moldyacorn @moldyAcorn
3 Followers 138 Following ✝ Love dogs. Overly proud of my Honda Civic Si. I try to do security stuff.
Florian Roth @cyb3rops
180K Followers 2K Following Head of Research @nextronsystems #DFIR #YARA #Sigma | detection engineer | creator of @thor_scanner, Aurora, Sigma, LOKI, YARA-Forge | always busy ⌚️🐇
Justin Elze @HackingLZ
52K Followers 5K Following Hacker/CTO @TrustedSec | Former Optiv/SecureWorks/Accuvant Labs/Redspin | Race cars
Mike Felch (Stay Read.. @ustayready
15K Followers 2K Following Pentester / Red Team | Hacking since Renegade BBS backdoors | Dev since vb3 | Content since '99-'03 ezines | Prior CrowdStrike / BHIS | In Christ's grip
Grzegorz Tworek @0gtweet
29K Followers 1K Following My own research, unless stated otherwise. Not necessarily "safe when taken as directed". GIT d- s+: a+ C++++ !U !L !M w++++$ b++++ G-
Oliver Lyak @ly4k_
8K Followers 267 Following Yet another security researcher 🔦 Github: https://t.co/7WFOFz17KI
DirectoryRanger @DirectoryRanger
31K Followers 100 Following This account assembles and disseminates information related to Active Directory and Windows security.
Vivek Ramachandran @vivekramac
23K Followers 5K Following Founder, SquareX (@getsquarex) | (exited) Founder, PentesterAcademy (@securitytube) - acquired by INE (@ine) | Defcon - Blackhat Speaker | Book Author
Pentester Academy @SecurityTube
187K Followers 15K Following We help professionals acquire the skills, knowledge and certificates by teaching defense through offense to advance their careers in cybersecurity.
Dr. Nestori Syynimaa @DrAzureAD
17K Followers 2K Following Principal Identity Security Researcher at Microsoft. Ex-Secureworks. (MSc, MEng, PhD, CITP, CCSK). And yes, opinions are my own ;)
Charlie Bromberg « .. @_nwodtuhs
13K Followers 648 Following Trying to hack the way we hack things 🏴☠️
rootsecdev @rootsecdev
24K Followers 1K Following Security Consultant @TrustedSec | Military grade meme poster, researcher, cloud penetration tester, voider of warranties. My thoughts are my own.
mpgn @mpgn_x64
17K Followers 234 Following Flibustier du net ̿ ̿̿'̿'\̵͇̿̿\=(•̪●)=/̵͇̿̿/'̿̿ ̿ ̿ ̿ Podcast Hack'n Speak @hacknspeak / https://t.co/GyACSFg9mw
Jean @Jean_Maes_1994
11K Followers 1K Following Director of Advanced Assessments -EU @neuvik | @sansoffensive Certified instructor/SEC565 author/SEC699 co author https://t.co/haRI3ruvlg
Joe Helle - Mayor of .. @joehelle
28K Followers 60 Following Proud Girl Dad | U.S. Army Iraq & Afghanistan Veteran | Former Mayor | Penetration Tester | PPG Trike Pilot
DebugPrivilege @DebugPrivilege
37K Followers 2K Following Security “Researcher” | Former Microsoft MVP | All Tweets are my opinions and thoughts. Interested in Security, Debugging, and Troubleshooting.
Dirk-jan @_dirkjan
25K Followers 173 Following Hacker at @OutsiderSec. Researches AD and Azure (AD) security. Likes to play around with Python and write tools that make work easier.
mgeeky | Mariusz Bana.. @mariuszbit
11K Followers 610 Following 🔴 Red Team operator, ex-MWR/F-Secure pentester, ex-AV engine developer @ESET, green tea addict. 🫖 @[email protected]
Keanu Nys @RedByte1337
196 Followers 47 Following Offensive Security Lead @ Spotit. Creator of GraphSpy
teambi0s @teambi0s
3K Followers 57 Following Indian CTF and Security Research team from @AMRITAedu | Organisers of @InCTF and @InCTFj | Founded & Mentored by @Th3_M3nt0r | Contact Us for Expert Trainings
IAMERICA @EricaZelic
7K Followers 4K Following Your perception is not my reality. Posts don't represent my employer(s).
Tony Gore @nullg0re
480 Followers 1K Following Penetration Tester, US Marine Corps Veteran, Microsoft Most Valuable Researcher 2023
Jeffrey Appel | Micro.. @JeffreyAppel7
2K Followers 272 Following Microsoft MVP | Cloud Security Consultant | Microsoft 365 Defender #MDE | Azure | Sentinel | #M365D #XDR #EDR | Tweets are my own | blogger @ https://t.co/pAgXLcis0E
maverick🇵🇸 @mavric1337
174 Followers 1K Following Our sweetest songs are those that tell of saddest thoughts
Jason Ostrom @securitypuck
882 Followers 254 Following Instructor and Author @SANSInstitute | Blue & Red Team | GoLang & Terraform| Builder of things | Husband & Father | #NHL #NFL | @[email protected]
Carsten @0xcsandker
2K Followers 132 Following Security enthusiast, Likes Windows Internals & AD In case twitter implodes: https://t.co/O5CSoJnrIK
HackSpaceCon @HackSpaceCon
3K Followers 1K Following Launch with us! Hack Space Con April 10-13th,2024. Tickets Available Now: https://t.co/VtWXzZwbyb
darkQuasar @darkQuassar
1K Followers 608 Following I believe in community, human connection, concepts and puzzles. DFIR, CyberSec and bla, bla, bla... I own my opinions here, sometimes they own me.
thec0nci3rge @thec0nci3rge
181 Followers 356 Following Explorer of ADDS & Azure realms | one domain at a time |🇪🇺| https://t.co/CP8IFT6zlG
Bad Sector Labs @badsectorlabs
6K Followers 440 Following Cybersecurity news, techniques, exploits, and tools every week at https://t.co/UgKmeEEjIV 🐘 @[email protected]
Pam O’Shea @pamoshea
3K Followers 5K Following Security consultant | @BlackHatEvents & @BSidesCbr & @BSidesSG & @OWASPMelbourne Review Boards | @SDR_Melbourne | VK3HXX |@haXX_group | @sheasecurity🖖📚☕️
Andrew @4ndr3w6S
2K Followers 2K Following Senior Manager of Detection Engineering @HuntressLabs | Prev. Practice Lead, TAC (Purple Team) @TrustedSec | @SpursOfficial Super Fan - COYS!
Securityblog @Securityblog
12K Followers 14K Following There are 10 types of people in the world. Those who understand binary, and those who don't. All opinions and views are my own. #BsidesDub organizer
Thomas Naunheim @Thomas_Live
5K Followers 485 Following #Microsoft MVP | #CloudSecurity Architect ☁️ | #Entra #AzureAD 🔑 + #AzureSecurity 🛡️ | #CommunityRocks | #Schaengel
Merill Fernando @merill
15K Followers 3K Following Product Manager @microsoft | Tweets my own Built → https://t.co/ujxKqxXjf2 • idPowerToys • Graph X-Ray • https://t.co/tSWrIw8Ajh Sign up to my weekly newsletter → https://t.co/tPzAEl0Zuq
Microsoft Threat Inte.. @MsftSecIntel
180K Followers 1K Following We are Microsoft's global network of security experts. Follow for security research and threat intelligence.
Mandiant @Mandiant
125K Followers 4K Following
Mor Davidovich @dec0ne
2K Followers 304 Following Security Researcher | Red Teamer | Malware Developer
Clément Notin @cnotin
5K Followers 954 Following 😈 Security research (#ActiveDirectory #EntraID) & pentest 🎉 #CTF @tipi_hack 👨💼 Works @TenableSecurity, opinions my own 🪂 https://t.co/4HRwJQ6PUm
Fabian Bader @fabian_bader
7K Followers 650 Following #Security #Azure #AAD #MDE #M365 #AD #PKI Microsoft MVP Tweets and opinions are my own @[email protected]
Elli Shlomo (IR) @ellishlomo
3K Followers 69 Following Threat Hunter - IR - Microsoft Security MVP - Cloud Security Researcher
topotam @topotam77
4K Followers 688 Following All I know is that I know nothing. I like Windows, Active Directory and IoT/Hardware hacking. "Responsable mais pas coupable" de PetitPotam
Matt Zorich @reprise_99
11K Followers 2K Following @Microsoft GHOST 👻 | https://t.co/HWozKuj5IQ | Tweets are my own
Caleb McMurtrey @CalebBMcMurtrey
5K Followers 1K Following Jesus follower International Relations / Defense Content Creator Learner of things
The DFIR Report @TheDFIRReport
53K Followers 0 Following Real Intrusions by Real Attackers, the Truth Behind the Intrusion. Services: https://t.co/XW613EKt2w
Tobias Zuegel | 🐘 .. @MrAzureAD
1K Followers 428 Following Azure AD aficionado, Identity architect, Sax player 🎷, Certified yoga teacher (425h) 🧘🏻♂️ Tweets are my own.
INE @ine
42K Followers 1K Following The premier provider of technical training for the #IT Industry. 💻 #infosec #cybersecurity #cloud #datascience #networking
Charlie Clark @exploitph
5K Followers 1K Following
Norbert Tihanyi, PhD @TihanyiNorbert
2K Followers 168 Following OSCE | OSEP | OSCP | OSWP | CRTP | CEH | ECES Head of Crypto & Hardware Laboratory, xen1thLabs Researcher, CTF player
Joosua Santasalo*Azur.. @SantasaloJoosua
2K Followers 781 Following DadOf2,Security researcher@Secureworks, Azure MVP,MSRC Top100 MVR23,Node.js Certified (JSNSD),Azure Security enthusiast,blogs @(https://t.co/QYYm197An2)
Raul • 𝖙𝖍𝖊.. @theg3ntl3m4n
934 Followers 568 Following Security Researcher @beyondtrust | Ex-Red Team @mandiant @crowdstrike
Cedric Owens @cedowens
3K Followers 675 Following Proud Husband to @sgowens0716 and Father | Offensive Security Engineer | https://t.co/CQv4PZcuvG
Jorge Orchilles @jorgeorchilles
11K Followers 468 Following SANS Principal Instructor & Author #SEC565 | #RedTeam | #PurpleTeam | #PenTest | #C2Matrix Creator | ATT&CK & Atomic Red Team Contributor | Published Author
@nikhil_mitt I opened a ticket in the begining of december 2023, marked as urgent, two weeks ago I got a reply ... the knowledge of the support employees is also very limited, most of the time I know it better and they're wasting my time.
Congrats!
Awesome! Three of our certifications CRTP, CRTE and CRTM feature in the list by Japanese Ministry of Economy, Trade and Industry as 'Satisfies the expertise required to provide penetration testing services.' 😍
@nikhil_mitt i will show original document link. meti.go.jp/policy/netsecu…
@nikhil_mitt @AlteredSecurity The Most awaited !! 🍻
This was a great find by Joshua on our team. Here's the @NetSPI blog covering an Azure privilege escalation (Automation Account Reader-> Subscription Contributor) caused by Azure Site Recovery Services and Automation Accounts. - netspi.com/blog/technical…
Finally got around to updating my 5 year old SMB enumerations cheat sheet! Check it out here, and let me know what I should add. 0xdf.gitlab.io/2024/03/21/smb…
We've put together an index of the latest identity-based attacks, focusing on examples of networkless and SaaS-SaaS attacks that have been publicly disclosed. These attacks can tell us a lot about where identity attacks are headed. Check it out! pushsecurity.com/blog/identity-…
This is a good read, but most orgs have a lot of work to do beyond a Conditional Access policy CA will only block tokens for Entra ID integrated apps. If you use All devices often, you are likely going to issue certs and VPN software to attackers Time to redesign your policies
**𝗡𝗘𝗪 𝗕𝗟𝗢𝗚 𝗣𝗢𝗦𝗧** - Autopilot & Tenant Security Risk. In this post by @sandy_tsang and I, we look at how much of a risk is the Autopilot offline JSON, and where CA comes into play. #MSIntune #Security #WindowsAutopilot msendpointmgr.com/2024/03/25/aut…
Great research by Yehuda on how to evade FIDO authentication when phishing MS accounts. Spoiler: Let the server know the client doesn't support FIDO. Simple! 🤷♂️ The referenced PR has been merged into the master branch! 🥳 Follow @yudasm_ as a sign of appreciation! 🔥
Excited to share my latest research on phishing Windows Hello for Business by way of a downgrade attack, using EvilGinx. Looking forward to your thoughts. Read it here: medium.com/@yudasm/bypass…
Excited to share my third blog covering Microsoft DHCP! This time we go into the DHCP Administrators group, while exploring the question: Can a DHCP admin become a Domain admin? (Spoiler alert: Pretty often!) Get the full details here: akamai.com/blog/security-…
Can a DHCP administrator become a domain administrator? Well, as it turns out, sometimes it sure can. 🥴 In our latest blog post, see how Akamai researchers discovered a new PrivEsc technique affecting Active Directory. Full write-up: akamai.com/blog/security-…
My new blog has arrived. A lot of what is in here mimics APT29 (Midnight Blizzard) Tradecraft. Some good nuggets also on using Evilginx development mode for phishlet development if you don’t want to expose a VPS. Enforcing cloud native in Entra ID? I got you covered with a…
Hello: I'm your ADCS server and I want to authenticate against you. My latest Post and PoC are out. You can read it here: decoder.cloud/2024/02/26/hel… Enjoy :)
Good read here. From hybrid / fully joined devices to Entra ID hybridbrothers.com/device-to-entr…
Another awesome project to live off the land added to lolol.farm 🎉 Living off the Pipeline by @boostsecurityio Just needs a spiffy logo! Thanks for sharing @M_haggis
🆕 Living Off the Pipeline (LOTP) A project to inventory how developer tools commonly used in CI/CD pipelines have lesser-known RCE-By-Design features ("foot guns") boostsecurityio.github.io/lotp/
Wrote a blog post about a new ADCS abuse technique involvering issuance policies and OID group links 📝 posts.specterops.io/adcs-esc13-abu…
SharpADWS is an Active Directory Recon and Exploit tool for Red Teams via the ADWS protocol, Inspired by @falconforceteam Without the LDAP protocol, it can easily bypass most traffic monitoring for LDAP #BloodHound #redteam #Pentesting #CyberSecurity github.com/wh0amitz/Sharp…
Trends for United States
You might like
