AN @Script0mAn
Joined May 2023-
Tweets18
-
Followers0
-
Following87
-
Likes158
Apple released a hearing aids feature for the AirPods Pro a while ago. I bought a pair for grandma, but then realized that the feature was geoblocked in India So we at @_lagrangepoint decided to unblock it. It ended up involving a leaky microwave and building a Faraday cage:
🚨Outlook Zero-Click🚨TLDR; Recommended Steps for Microsoft 365 Admins can be seen in this blog post. ironscales.com/blog/zero-clic… The CVE-2024-30103 vulnerability leverages a flaw in how Microsoft Outlook handles specific types of email content. An attacker can embed malicious…
Lock down those ADCS servers folks! Even templates with just the Server Authentication EKU can cause problems. Enroll for the targets Okta login portal DNS hostname and some DNS poisoning to your malicious server and you've got yourself a FastPass/Passwordless MitM
Nothing fancy here but if you want to dump emails from an Azure tenant through a device code phishing this may help. github.com/Mr-Un1k0d3r/Ms… Bonus feature you can also push your payload on the target tenant and use the shareable link in your weaponized campaign.
SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Directory Web Services (ADWS) protocol. github.com/FalconForceTea…
CVEMAP Simple #go command line tool for getting information about CVEs: - by ID - by vendor - by product - by severity - by cvss score and much more. github.com/projectdiscove… Creator @pdiscoveryio
Abusing #AzureAD / #EntraID Domain Services part 2 from @Secureworks is out now: Dumping NTHashes from Microsoft Entra ID
Abusing #AzureAD / #EntraID Domain Services part 2 from @Secureworks is out now: Dumping NTHashes from Microsoft Entra ID
How I just got gained access to 22 unauthorized endpoints across 116 websites (260k endpoints) in about 10 minutes. Use what your comfy with. 👇
Scene in MGM Grand according to a TikTok user who said slots machines down and casino floor empty after cyber attack. She also says staff had to make and distribute physical room keys and an admin error caused her to walk in on another guest. Source: vm.tiktok.com/ZGJnKXd6R/
Microsoft Excel Python has the following registry key setting values HKCU\software\policies\microsoft\office\16.0\excel\security\PythonFunctionWarnings DWORD 0 = All Security Warnings Disabled 1 = Security Warning: Enable-Content 2 = Blocks all Python Execution
As promised, here is a blogpost on SharpSCCMs new AdminService/CMPivot capabilities. The creator of SharpSCCM, @_Mayyhem and I will be at the SpecterOps booth tomorrow @ 11am and ARSENAL @ 11:30am Thursday presenting SCCM takeover and post-ex techniques medium.com/@dlomellini/la…
Uncommon funny cyber related post on LinkedIn. The idea of CISO's doing press briefing post an incident 😂😂
#Moonlighter has reached the @Space_Station! This mini satellite from @AerospaceCorp is the world’s first & only hacking sandbox in space and will allow #cybersecurity professionals and some of the world’s best #hackers to do space-based cyber experiments: issnationallab.org/spx28-moonligh…
Can't wait to see you get hacked, Moonlighter. ❤️ @defcon @hack_a_sat
Can't wait to see you get hacked, Moonlighter. ❤️ @defcon @hack_a_sat
100% agree It simply works and doesn’t get in the way.
100% agree It simply works and doesn’t get in the way.
Nuclei by ProjectDisc... @pdnuclei
37K Followers 183 Following Nuclei uses a vast templating library to scan applications, cloud infrastructure, and networks to find and remediate vulnerabilities.
ProjectDiscovery @pdiscoveryio
38K Followers 132 Following Detect real, exploitable vulnerabilities. Harness the power of Nuclei for fast and accurate findings without false positives.
Stephan Berger @malmoeb
28K Followers 1K Following Head of Investigations @InfoGuardAG https://t.co/A5lnFAu7eX
Justin Gardner @Rhynorater
35K Followers 2K Following Christian | Full-time Bug Bounty Hunter | Host of @ctbbpodcast | Advisor @CaidoIO | 4x LHE MVH | 🗣️ English, 日本語 | ♥️ @mariahchan_ ♥️
Burp Suite @Burp_Suite
131K Followers 14 Following Burp Suite is the leading software for web security testing.
Shodan @shodanhq
109K Followers 2 Following Monitor your external network, search the Internet of Things and perform empirical market research. You can also find us on https://t.co/nPLFbFy8R5
Fabian Bader @fabian_bader
9K Followers 819 Following #Security #Azure #AAD #MDE #M365 #AD #PKI Microsoft MVP Tweets and opinions are my own @[email protected]
Karol Paciorek @karol_paciorek
3K Followers 332 Following 🎯 Cybersecurity enthusiast, focused on CTI and threat hunting. 🛡️ Head of @CSIRT_KNF
OSINT Industries @OSINTindustries
13K Followers 1 Following OSINT-powered tools for email and phone number investigations. Telegram: https://t.co/wzX59rY4LS Linkedin: https://t.co/ivbM2gkKnq
OSINT 🪙 @0xtechrock
17K Followers 793 Following @0xtechrock OSINT analyst | Uncovering digital trails & threat intel | Sharing tools & tips | Not advice | #CyberSec | DM for collabs Make money using #OSINT
Muqsit 𝕏 @mqst_
8K Followers 98 Following Sharing resources from the cybersecurity community • Passionate learner and creator • YouTube: https://t.co/1BmE6QOd0D • Turn ON Notifications 🔔
X @TheMsterDoctor1
28K Followers 654 Following 👨💻 Retired Hacker & Mentor | 🔎 Exposing flaws & leaks | 🛡 AppSec, Bug Bounties | 🧠 Teaching you to find what others miss!
R A W S A L E R T S @rawsalerts
1.3M Followers 2K Following RawsAlerts is your go-to source for fast and accurate news coverage, specializing in groundbreaking events. Powered by @Polymarket
Disclose.tv @disclosetv
1.5M Followers 1K Following Observing world events unfold in the grand theater of our time.
Jake Williams @MalwareJake
143K Followers 2K Following Breaker of software | VP R&D @hunterstrategy | CTI/DFIR | @ians_security faculty | Bookings: jake at malwarejake dot com | GSE #150 | He/him
mr.d0x @mrd0x
45K Followers 297 Following Security researcher | Co-founder https://t.co/QxBlzp9A8w | https://t.co/zqMXQRZjQN | https://t.co/Fq7WSqTBva | https://t.co/eKezFcO6nd
Chetan Nayak (Brute R... @NinjaParanoid
31K Followers 0 Following Founder Dark Vortex/Brute Ratel | Former RedTeam @CrowdStrike @Mandiant @niiconsulting
slonser @slonser_
4K Followers 164 Following Co-Founder @neploxaudit. CTF team @C4TBuTS4D Security Researcher at Solidlab.
Dark Web Informer @DarkWebInformer
132K Followers 57 Following Providing intel from the Dark Web & Clearnet: Breaches, Ransomware, Darknet Markets, Threats & more. Follow the X Bot: @DarkWebIntelBot. https://t.co/Fi7VW9lg94
MalDev Academy @MalDevAcademy
17K Followers 5 Following Providing specialized, module-based security training and resources designed for cyber security professionals
Michael Bargury @mbrg0
9K Followers 490 Following Breaking AI. Hacked Copilot, hijacked ChatGPT. Building @zenitysec.
Alisa Esage Шевч�... @alisaesage
38K Followers 101 Following Independent Hacker, Sovereign Builder, Solo Business Owner • @zerodaytraining • Pronounced ‘is edge’
Black Hills Informati... @BHinfoSecurity
48K Followers 2K Following Specializing in pen testing, red teaming, and Active SOC. We share our knowledge through blogs, webcasts, open-source tools, and Backdoors & Breaches game.
Microsoft 365 Status @MSFT365Status
288K Followers 4 Following The official @Microsoft account for updates on certain @Microsoft365 service incidents. Get push notifications on our admin app: https://t.co/pGaOsdAblF.
Chris Sanders 🔎 �... @chrissanders88
34K Followers 489 Following Ed.D. | Founder @networkdefense @RuralTechFund | Former @Mandiant, DoD | Author: Intrusion Detection Honeypots, Practical Packet Analysis, Applied NSM
Dark Reading @DarkReading
343K Followers 48 Following One of the most widely read and trusted cybersecurity news sites, providing IT security professionals informed insights into the latest news and trends.
Threat Insight @threatinsight
11K Followers 217 Following @Proofpoint's insights on targeted attacks & the security landscape. Follow us on Bluesky: https://t.co/8OVfhotdeP
Andrew Northern 𓅓 @ex_raritas
5K Followers 1K Following 🔮 Principal Researcher at Censys 🔮 | formerly Proofpoint | Knowledge Piñata 🪅 | Attack Chain Connoisseur | Epicurean
Offensive OSINT @the_wojciech
9K Followers 149 Following Pentester/Security Analyst/OSINT Researcher doing cyber security art brut. https://t.co/5bGCU6UuZO https://t.co/GzHh2JDJR5
its___Sam__Official �... @Real_aka_Lucifr
155 Followers 308 Following Pentester, RTO 💀, Security Enthusiast, @hackthebox_eu, @RealTryHackMe, Ctf Player, Bug Hunter @Hacker0x01, @Bugcrowd Software developer. Just Love #Pyhton...
Douglas Mun @douglasmun
5K Followers 1K Following National Cyber Incident Response Expert | Former CISO & DPO
Michael Cade @MichaelCade1
23K Followers 9K Following Global Field CTO | Lead Technologist @Veeam - Kubernetes, Cloud-Native, DevOps & Data #90DaysOfDevOps 👨🏻💻
Florian Hansemann @CyberWarship
84K Followers 46 Following Father, Founder @HanseSecure, Pentesting, Student, ExploitDev, Redteaming, InfoSec & CyberCyber; -- Mastodon: https://t.co/KFSKYUN98M
Nic Losby @Blurbdust
659 Followers 964 Following Red Teamer | He/Him | Obligatory opinions don't reflect employer | Occasional terrible developer of tools | PGP: 826087AF5C6653F0BAACA1C5E4CE747DEA558A13
Web Security Academy @WebSecAcademy
131K Followers 36 Following Free web security training from @PortSwigger
br5x @br5xTR
914 Followers 517 Following 🇹🇷 Application Security | OSWE | OSCP | Bug Bounty https://t.co/sPHOS5gYYE https://t.co/aXXT44tM1m
Grzegorz Tworek @0gtweet
36K Followers 2K Following My own research, unless stated otherwise. Not necessarily "safe when taken as directed". GIT d- s+: a+ C++++ !U !L !M w++++$ b++++ G-
0 day exploit @0day_exploit_
3K Followers 722 Following Security Researcher | Crypto auditor and malware analyst 🥰
ShimizuKawasaki @shimizukawasak
1K Followers 113 Following
HackGit @hack_git
55K Followers 2 Following The channel was created for cybersecurity specialists 🥷 → Open Source Software → RedTeam → BugBounty → etc 🍻 https://t.co/0PYtBpfJ4f
Clandestine @akaclandestine
50K Followers 5K Following | Security | Osint | Threat Research | Opsec | Threat Intelligence | Infosec | Threat Hunting | Humint |
Dr. Nestori Syynimaa @DrAzureAD
20K Followers 2K Following Principal Identity Security Researcher at Microsoft. Ex-Secureworks. (MSc, MEng, PhD, CITP, CCSK). And yes, opinions are my own ;)
HackerOne @Hacker0x01
326K Followers 3K Following The only official HackerOne Twitter account. A global leader in offensive security solutions. #HackForGood #togetherwehitharderTrends for United States
You might like
