π [ m3g9tr0n, Spiros Fraganastasis ]
An excellent article by @martinsohndk about Windows Shares post exploitation activities! You will be impressed with the amount of information which can be found by digging in shares https://t.co/LiriUP3xVE
π https://improsec.com/tech-blog/network-share-risks-deploying-secure-defaults-and-searching-shares-for-sensitive-information-credentials-pii-and-more
π₯ [ tweet ]
An excellent article by @martinsohndk about Windows Shares post exploitation activities! You will be impressed with the amount of information which can be found by digging in shares https://t.co/LiriUP3xVE
π https://improsec.com/tech-blog/network-share-risks-deploying-secure-defaults-and-searching-shares-for-sensitive-information-credentials-pii-and-more
π₯ [ tweet ]
π1
π [ fr0gger_, Thomas Roccia π€ ]
I published a blogpost that presents ten useful python libraries that I use for malware analysis and reversing (with code examples)!
Which one are you using the most? π
#python #malware #cybersecurity #infosec
https://t.co/4q7N0ydQJa
π https://blog.securitybreak.io/10-python-libraries-for-malware-analysis-and-reverse-engineering-622751e6ebd0
π₯ [ tweet ]
I published a blogpost that presents ten useful python libraries that I use for malware analysis and reversing (with code examples)!
Which one are you using the most? π
#python #malware #cybersecurity #infosec
https://t.co/4q7N0ydQJa
π https://blog.securitybreak.io/10-python-libraries-for-malware-analysis-and-reverse-engineering-622751e6ebd0
π₯ [ tweet ]
π [ ShitSecure, S3cur3Th1sSh1t ]
My DInvoke implementation in Nim is now also public:
https://t.co/4sNjTVsYfv
Feel free with testing and have fun! π»π
Challenge: who modifies the Nim compiler for DInvoke usage?π€
π https://github.com/S3cur3Th1sSh1t/Nim_DInvoke
π₯ [ tweet ]
My DInvoke implementation in Nim is now also public:
https://t.co/4sNjTVsYfv
Feel free with testing and have fun! π»π
Challenge: who modifies the Nim compiler for DInvoke usage?π€
π https://github.com/S3cur3Th1sSh1t/Nim_DInvoke
π₯ [ tweet ]
π₯2
π [ ntlmrelay, Ring3API ]
π Python utility to generate #MITRE ATT&CK Vault for #Obsidian.
1οΈβ£Get Obsidian (https://t.co/ZBOCQ2ez7U)
2οΈβ£Generate Vault (https://t.co/3A5dbhoRC2)
3οΈβ£Explore!
#blueteam #threathunting #ThreatIntelligence
π https://obsidian.md/
π https://github.com/arch4ngel/sec-vault-gen
π₯ [ tweet ]
π Python utility to generate #MITRE ATT&CK Vault for #Obsidian.
1οΈβ£Get Obsidian (https://t.co/ZBOCQ2ez7U)
2οΈβ£Generate Vault (https://t.co/3A5dbhoRC2)
3οΈβ£Explore!
#blueteam #threathunting #ThreatIntelligence
π https://obsidian.md/
π https://github.com/arch4ngel/sec-vault-gen
π₯ [ tweet ]
π2
π [ DebugPrivilege, β’ ]
Great blog post on hijacking Azure subscriptions. https://t.co/i2zQHrazu2
π https://derkvanderwoude.medium.com/azure-subscription-hijacking-and-cryptomining-86c2ac018983
π₯ [ tweet ]
Great blog post on hijacking Azure subscriptions. https://t.co/i2zQHrazu2
π https://derkvanderwoude.medium.com/azure-subscription-hijacking-and-cryptomining-86c2ac018983
π₯ [ tweet ]
π [ bohops, bohops ]
[Quick Update] Added a few new and old resources/techniques to the WDAC Block List
https://t.co/2AhEtQ2aS0
I'll post a few more blogs in the coming months to include Part 3 of the "Exploring the Microsoft Recommended Block Rules" series as well as some new
techniques
π https://github.com/bohops/UltimateWDACBypassList
π₯ [ tweet ]
[Quick Update] Added a few new and old resources/techniques to the WDAC Block List
https://t.co/2AhEtQ2aS0
I'll post a few more blogs in the coming months to include Part 3 of the "Exploring the Microsoft Recommended Block Rules" series as well as some new
techniques
π https://github.com/bohops/UltimateWDACBypassList
π₯ [ tweet ]
π [ byt3bl33d3r, Marcello ]
This is neato
"Alpine, Ubuntu, Fedora, and Arch based containers containing full desktop environments in officially supported flavors accessible via any modern web browser."
https://t.co/VSTYMXDYma
π https://docs.linuxserver.io/images/docker-webtop
π₯ [ tweet ]
This is neato
"Alpine, Ubuntu, Fedora, and Arch based containers containing full desktop environments in officially supported flavors accessible via any modern web browser."
https://t.co/VSTYMXDYma
π https://docs.linuxserver.io/images/docker-webtop
π₯ [ tweet ]
π₯1
π [ Six2dez1, Six2dez ]
I can't say enough about how useful @TomNomNom's hacks repository is. Lately whenever I need something I go there to take a look because it almost always has the solution, so I can never improve my Golang skills!
Latest discovery https://t.co/0DYgf4qkko
long live open sourceβ€οΈ
π https://github.com/tomnomnom/hacks/tree/master/inscope
π₯ [ tweet ]
I can't say enough about how useful @TomNomNom's hacks repository is. Lately whenever I need something I go there to take a look because it almost always has the solution, so I can never improve my Golang skills!
Latest discovery https://t.co/0DYgf4qkko
long live open sourceβ€οΈ
π https://github.com/tomnomnom/hacks/tree/master/inscope
π₯ [ tweet ]
π1
π [ mttaggart, Taggart ]
I'd just like to point out that a number of us have been providing free, high quality infosec content on Twitch for years without so much as a blurb in the Register.
@goproslowyo
@0xTib3rius
@Alh4zr3d
@xfootpics4salex
@ShawnLo
And many more at https://t.co/LnMWvE4jwN https://t.co/MB2rYdNPjC
π https://infosecstreams.github.io/
π₯ [ tweet ][ quote ]
I'd just like to point out that a number of us have been providing free, high quality infosec content on Twitch for years without so much as a blurb in the Register.
@goproslowyo
@0xTib3rius
@Alh4zr3d
@xfootpics4salex
@ShawnLo
And many more at https://t.co/LnMWvE4jwN https://t.co/MB2rYdNPjC
π https://infosecstreams.github.io/
π₯ [ tweet ][ quote ]
πΉ [ snovvcrash, snπ₯Άvvcrπ₯sh ]
Was trying to improve my #password #spraying approach in AD by previewing FGPPs and mapping them to the users theyβre applied to, but it turns out you have to be an admin to do that π
π₯ [ tweet ]
Was trying to improve my #password #spraying approach in AD by previewing FGPPs and mapping them to the users theyβre applied to, but it turns out you have to be an admin to do that π
π₯ [ tweet ]
π₯1
π [ CyberarkLabs, CyberArk Labs ]
Passwords and cookies are stored in Chromeβs memory in clear-text. Attackers can load into memory all the passwords that are stored in the password manager (βLogin Dataβ file).
https://t.co/L1JRO22ktu
π https://spr.ly/6017zZ6Ft
π₯ [ tweet ]
Passwords and cookies are stored in Chromeβs memory in clear-text. Attackers can load into memory all the passwords that are stored in the password manager (βLogin Dataβ file).
https://t.co/L1JRO22ktu
π https://spr.ly/6017zZ6Ft
π₯ [ tweet ]
π3
π [ 0xBoku, Bobby Cooke ]
BokuLoader now uses its best evasion features out of the box, +ASM Caesar cipher string obfuscation, +bug fixes, and +code enhancements. Dropped 32bit for now and all around slimmed down the code. Needed a clean base for coming feature updates ;)
https://t.co/At0dcvYZF0
π https://github.com/boku7/BokuLoader
π₯ [ tweet ]
BokuLoader now uses its best evasion features out of the box, +ASM Caesar cipher string obfuscation, +bug fixes, and +code enhancements. Dropped 32bit for now and all around slimmed down the code. Needed a clean base for coming feature updates ;)
https://t.co/At0dcvYZF0
π https://github.com/boku7/BokuLoader
π₯ [ tweet ]
π₯2