Salah Saleh @_SalahSaleh
Cyber Security Engineer | Red Teamer wannabe | PACES | eCPTXv2 | eWAPTXv2 | CRTE | OSCP | aka Yuns Joined November 2020-
Tweets178
-
Followers65
-
Following124
-
Likes271
Best Citrix Breakout ever. You can only download .ica files that provide access to certain local applications but breakout out of these applications is not possible? Just modify the .ica file before starting it and remove The InitialProgram= value -> Full Citrix Session! 🤓
Another hoontr find: tprtdll.dll (like so many others) exposes some Nt/Rtl/Zw functions. It doesn't redirect to ntdll, instead it makes the syscall itself - so you can call something like NtAllocateVirtualMemoryEx without ever touching ntdll! PoC: github.com/whokilleddb/fu…
If you didn't find my Black Hat / Def Con slides yet, they are available on dirkjanm.io/talks . Also includes the demo videos where I use actor tokens from on-prem to access SharePoint online and get Global Admin.
I'm teaching a 4 hr pay-what-you-can (as low as $25) Offensive Tooling Foundations w/ @Antisy_Training May 30. Due to my own laziness, students will get ALL the material (slides, VMs, lab guides, etc.) from my full 8 hr class by the same name. Register➡️pwyc.ridgebackinfosec.com
okay my free cursor rule builder is live, built by 3.7 sonnet max and $6/hour cost (link in replies) compose your own cursor rules starter kit and export to mdc, legacy, windsurf and cline! should i do this for prompts too and build a huge open source library of prompts?
Yearly blog post just dropped: Control Flow Hijacking via Data Pointers 🐸 Showcasing how to find your own in Binary Ninja, how to weaponize and write a shellcode stub etc. Hopefully people find it useful :) legacyy.xyz/defenseevasion…
Device Code Auth is certainly a phish I could see myself falling for, as it blends in with a regular meeting invite and doesn't require entering my password. If you don't know what a Device Code Phish is, check out this video @odiesec and I did. youtu.be/Y8SSYLEq15Q
RemoteMonologue - A Windows credential harvesting attack that leverages the Interactive User RunAs key and coerces NTLM authentications via DCOM. Remotely compromise users without moving laterally or touching LSASS. Hope you enjoy the blog & tool drop 🤟 ibm.com/think/x-force/…
How To Craft Your Own Windows x86/64 Shellcode with Visual Studio xacone.github.io/custom_shellco…
Excited to release LDAPNightmare! The first PoC tool exploiting CVE-2024-49112 that I created with @ShahakMo ! Check out the repo and blog post detailing about the vulnerability: github.com/SafeBreach-Lab… Honored to be a part of the @safebreach labs team once again🫠
Excited to release LDAPNightmare! The first PoC tool exploiting CVE-2024-49112 that I created with @ShahakMo ! Check out the repo and blog post detailing about the vulnerability: github.com/SafeBreach-Lab… Honored to be a part of the @safebreach labs team once again🫠
You can now relay any protocol to SMB over Kerberos with krbrelayx.py and the latest PRs from @hugow_vincent. Thanks @_dirkjan for merging it! Here is an example from SMB to SMB:
🚨Alert🚨CVE-2024-47076/CVE-2024-47175/CVE-2024-47176/CVE-2024-47177: Multiple CUPS flaws enable Linux remote code execution 🧐Deep Dive from @evilsocket: evilsocket.net/2024/09/26/Att… 🔥PoC: github.com/RickdeJager/cu… 🔥PoC: github.com/OpenPrinting/c… 📊 2.9M+ Services are found on…
🎥My @OrangeCon talk "Offensive Development in Modern Languages" is available on YouTube! In this new talk I combine the topics of offensive development, good development practice, and the merit of learning many programming languages. Feedback welcome!🥳 youtu.be/zPbH-xJ_RpM
Inspired by the great talk by @subat0mik, @_Mayyhem and @garrfoster at #Troopers24, I wrote a new SCCM reconnaissance module that implements the RECON-1 (LDAP) part of the Misconfiguration Manager. This makes it much easier to enumerate the existing SCCM infrastructure🎯
Beyond the Basics: Exploring Uncommon #NTLM #Relay #Attack Techniques guidepointsecurity.com/blog/beyond-th…
Here is Active Directory Pentesting Mind Map: V1: raw.githubusercontent.com/esidate/pentes… V2: raw.githubusercontent.com/esidate/pentes…
First, we gotta learn some fundamentals. I would highly recommend learning following things: Win32 API Networking (Communicate over HTTP/s, DNS, ICMP) Encryption (basic use of Aes, Xor, Rc4, etc.) Injection Techniques Learn how to use Debuggers. trust me you gonna need this 2/12
POC for #SilverPotato utilizing Kerberos relay vs SMB ;) Starting from @cube0x0 great krbrelay tool with extra layer of complexity to get the SilverPotato beast working.. Still in the rough but will publish soon :-)
Let`s see when and if Microsoft patches this 0-day vulnerability. 🤪 Anyway, another Offset to patch added to Amsi Bypass Powershell: github.com/S3cur3Th1sSh1t…
Let`s see when and if Microsoft patches this 0-day vulnerability. 🤪 Anyway, another Offset to patch added to Amsi Bypass Powershell: github.com/S3cur3Th1sSh1t…
New blog: Lateral movement and on-prem NT hash dumping with Microsoft Entra Temporary Access Passes. Some tips and tricks on abusing TAPs for Windows Hello persistence and NT hash recovery over Cloud Kerberos Trust. dirkjanm.io/lateral-moveme…

عبدالله بن �... @secretleve_
21 Followers 86 Following أخصائي الأمن السيبراني | مختبر أختراق | مستشار | أخصائي دعم فني |أخصائي نضم معلومات|مدرب
kalilord1 @kalilord788
9 Followers 436 Following
Hossam @0xHossam
1K Followers 1K Following I love doing hacky stuff | red team operator @CyShieldCompany | adversary simulations newbie | interested in malware & windows security research
Anshuman Srivastava @TweetAnshumaan
374 Followers 6K Following Networking + Cyber Security - Firewalls + Ethical Hacking & Penetration Testing Enthusiast
Andrew Baji @baji_andrew
3 Followers 5K Following
JeeX @JeeX874641
1 Followers 76 Following
Mujtaba @Mu8x0
9 Followers 238 Following python JavaScript PHP Bug bounty hunter I'm Still learning to become better
Yasser Rafid @yasser_rafid
6 Followers 77 Following Pentester eJPTv1 | eCPPTv2 | CertifiedAppSec (CAP) | CEH practical
𝘸l @w_2ie
23 Followers 713 Following
Nina @n_donner65
224 Followers 3K Following
d33psypher @d33psypher
26 Followers 295 Following I research the internet just to be sane. #OSINT #CyberResearcher
Alganad @reqwx
46 Followers 463 Following
goback @l2_sec
89 Followers 3K Following
ArVy @Falcon_ArVy
12 Followers 786 Following
Abdelrahman @Abdelra14067150
4 Followers 68 Following
Ibraheem Adil @cyber_iq
0 Followers 544 Following باحث في مجال امن المعلومات | ومطور ادوات بايثون | باحث عن الثغرات في المواقع الالكترونية
fofa @Wafaa450550741
1K Followers 1K Following
Parker Daudt @PDaudt_InfoSec
3K Followers 3K Following Jack of all trades | Sr. Web App Penetration Tester | Founder @InfoSecTogether
Tarek @Conan0x3
2K Followers 789 Following Smart Contract Auditor @code4rena | Offensive Security Consultant | OS(EP/WE/CP) and others.. DM for private audits.
Andres Roldan @andresroldan
807 Followers 799 Following GIAC Advisory Board | OSEE, OSCE, OSEP, OSWP, OSCP, GXPN, GPEN, eCPTXv2, eWPTXv2, eCXD, CRTL, CRTO, CRTE, among others
Aizen @AizenV3
0 Followers 401 Following
Jubayer Ahmed Rhyme @Jub4y3r_3x009
240 Followers 3K Following مهاجم آسيوي عشاق الأمن السيبراني | _-_ | المتعلم | باغ باونتي هنتر Web Application Security Researchers At Hackerone & Bugcrowd
Purab Parihar @purab_parihar
2K Followers 483 Following I tweet about #cybersecurity, #entrepreneurship and #growth 🚀 • Solving cyber risks problems for #SMEs 🛡️ • Product Security & Red Teaming ❤️
Ken Nevers @k3nundrum
1K Followers 3K Following †Christian|hubby|dad|pet papa|co-founder @hackspacecon, @HackRedCon|@RedSeerSecurity|https://t.co/jsa7dA1pkA|OSEP|OSCP|CRTO|CRTE|CRTP… ”be kind & hack the planet.”
Ibrahim Omar @Bitcoin_LY
3K Followers 2K Following 💻 Pentester | 💰 Bitcoin Enthusiast & Crypto Trader | 📈 Forex Trader | 💡 Knowledge Seeker | Protecting the digital world, one byte at a time. #HODL 🚀
Kirito @0xKirito
782 Followers 2K Following InfoSec Blog: https://t.co/p8yh7mpSyL n00b | Developer | Trying to hack my way into #CyberSecurity #InfoSec
Rohit (@[email protected]... @s4dr0t1
177 Followers 2K Following security engineer | metalhead | otaku | perpetually curious | resident @CRED_club
Al-hassan abbas | ا�... @exploit_msf
3K Followers 53 Following Certifed : #Ecptxv2 #Oscp #Ecpptv2 #Ceh11 #Ejpt #ECES #Metasploit_pro_specialist #Ewpt #Ceh_master Snap & instagram : exploit.msf CVE-2021-40303
Omar Eid @Omario2021
21 Followers 413 Following Bug bounty | cyber security | network security and Administration student
mr_whitehat @mrwhitehat9
5 Followers 182 Following
٢ @tlxac
46 Followers 2K Following
оникс. @0nyxl
2 Followers 383 Following Interested in Cryptocurrency. #CTF_Player | #Programmer | #Bug_Bounty | #Hacker | #Chess_Tactician.
. @cti0110
70 Followers 481 Following
ZeroOne @s7880s
630 Followers 2K Following
Ammar | عمار 🇸... @xAmmar09
661 Followers 793 Following VAPT Consultant | #eJPT #eCPPTv2 #OSCP #OSWA
RedTeam Pentesting @RedTeamPT
8K Followers 174 Following Official RedTeam Pentesting GmbH account -- Impressum: https://t.co/pS9oK62Lsu
CodeGuide @CodeGuidedev
20K Followers 1 Following Generate coding docs for AI tools or run autonomous coding agent that can code for hours | by @cjzafir
Bad Sector Labs @badsectorlabs
8K Followers 503 Following Cybersecurity news, techniques, exploits, and tools every week at https://t.co/UgKmeEEjIV 🐘 @[email protected]
RedTeamTacticsAcademy @RedTeamTactics
5K Followers 436 Following Outsmart, Outmaneuver, Redefine the Tactics blog 👉 https://t.co/jBrypEoM7c learn 👉 https://t.co/llylzGEs0D
Jackson Hinkle 🇺�... @jacksonhinklle
3.6M Followers 605 Following Follow: @LegitTargets & @ACPMain [email protected]
[email protected]... @0xdea
14K Followers 19 Following When cryptography is outlawed, bayl bhgynjf jvyy unir cevinpl.
Intigriti @intigriti
193K Followers 658 Following Bug bounty & VDP platform trusted by the world’s largest organisations! 🌍
Gray Hats @the_yellow_fall
9K Followers 379 Following Welcome to the Daily Cybersecurity site, your trusted source for cybersecurity news and insights since 2017!
HackGit @hack_git
55K Followers 2 Following The channel was created for cybersecurity specialists 🥷 → Open Source Software → RedTeam → BugBounty → etc 🍻 https://t.co/0PYtBpfJ4f
MalDev Academy @MalDevAcademy
17K Followers 5 Following Providing specialized, module-based security training and resources designed for cyber security professionals
Threat Intel Center @threatintelctr
3K Followers 113 Following #threatintelligence bot tweeting latest Common Vulnerabilities and Exposures published or modified today in realtime from @NISTCyber.
CCob🏴�... @_EthicalChaos_
9K Followers 438 Following Ceri Coburn: Hacker | R̷u̷n̷n̷e̷r̷ DIYer| Vizsla Fanboy and a Little Welsh Bull apparently 🏴 Author of poorly coded tools: https://t.co/P6tT2qQksC
Randori Attack Team @RandoriAttack
3K Followers 60 Following Trusted Adversary @RandoriSecurity | Exploit Development | Offensive Operations | #InfoSec tweets only | Managed by @syndrowm @pwnpnw @aaronportnoy
spencer @techspence
12K Followers 2K Following 🛡️Empowering defenders & dismantling threats | Ethical Threat | pentester @securit360 | host @cyberthreatpov | SWAG https://t.co/AFJtZQcti7
Ahmed Aboul-Ela @aboul3la
6K Followers 632 Following Infosec Geek. Security Researcher, CTFer with @BalalaikaCr3w / LC↯BC
BC Security @bcsecurity
9K Followers 52 Following Threat Emulation | Training | Red Team | Penetration Testing | Compliance Discord: https://t.co/4C5C3M1Tk9
Charlie Bromberg « ... @_nwodtuhs
15K Followers 653 Following Trying to hack the way we hack things 🏴☠️
Filip Dragovic @filip_dragovic
7K Followers 1K Following My research unless stated otherwise. My opinions are my own and do not represent the views of my employer.
JS0N Haddix @Jhaddix
167K Followers 7K Following CEO, CISO, Trainer, Hacker, and Speaker. Cybersecurity + Hacking + AI + Sec Leadership @arcanuminfosec
klez @KlezVirus
8K Followers 706 Following Independent Cyber Security Researcher - Opinions are my own
Charlie Clark @exploitph
5K Followers 1K Following
mgeeky | Mariusz Bana... @mariuszbit
14K Followers 813 Following 🔴 Operator, Initial Access afficionado, Researcher, ex-AV engine developer, ex-Malware analyst 🦋 @mgeeky.bsky.social 🫖 green tea lover
Abdelrahman @Abdelra14067150
4 Followers 68 Following
icyguider @icyguider
2K Followers 152 Following
SecurityLabs @securitylabs_
175 Followers 0 Following We help everyone learn Offensive Cloud Security. Fun gamified learning with Realistic Corporate-Grade Labs & Study Material. #AWS | #GCP | #AZURE
x86matthew @x86matthew
21K Followers 189 Following C / asm / system emulation / reverse engineering. @the_secret_club
netcat @0xBADCA7
669 Followers 2K Following Cato the Fako of Information Security. CTFing with LC↯BC, MSLC. Managing cyberz by day, pwning stuff by night. SecTalks organizer. Cogito, ergo sum, ergo pwn.
Cliff (BRD on 🟦Sky... @brdpoker
3K Followers 1K Following Poker player, board gamer, sports fan, Microsoft AD Senior PM, all-around nerd. Although after the first 4, you probably could have guessed the last one. He/him
SANS Offensive Operat... @SANSOffensive
72K Followers 583 Following More Offensive Than Ever #PenTest | #PurpleTeam | #RedTeam | #ExploitDev Training, Certification, and Research
fofa @Wafaa450550741
1K Followers 1K Following
Cas van Cooten @chvancooten
10K Followers 673 Following Benevolently malicious offensive security enthusiast || OffSec Developer & Malware Linguist || NimPlant & NimPackt author || @ABNAMRO Red Team
CyberSec BOT @botcybersec
4K Followers 1 Following I retweet everything related to CyberSecurity🤓 || Made in INDIA🇮🇳 || @0z09e developed me using Python🐍 || Source code 👇
Secura @SecuraBV
2K Followers 81 Following Secura: Raising your cyber resilience | https://t.co/GERC5m3TdX
BallisKit @BallisKit
3K Followers 33 Following BallisKit provides tooling and services to professional Pentesters & Red Teams. We develop MacroPack, ShellcodePack, and DarwinOps. #redteam #infosec
Panos Gkatziroulis �... @netbiosX
25K Followers 812 Following Red/Purple Teamer | Blogger | Ex-Director @pentestlabltd | Mod @ https://t.co/1nzjl9KpSH | https://t.co/mIM1GA1mN4
Melvin langvik @Flangvik
11K Followers 513 Following Red Team @TrustedSec , terrible creator of InfoSec content 📹Opinions are my own and not the views of my employer.
Antonio Cocomazzi @splinter_code
9K Followers 327 Following offensive security - windows internals | BlueSky: https://t.co/ytvJCoaF2c | Mastodon: https://t.co/hNIHa6L14d
MDSec @MDSecLabs
15K Followers 0 Following Consultancy and Training from a trusted supplier of offensive security. Red Team and Adversary Simulation by ActiveBreach team | https://t.co/fqpbJ9WDXD | https://t.co/UvOhGA4Zou
Spiros Fraganastasis @m3g9tr0n
14K Followers 1K Following Team @hashcat! Eternal n00b and knowledge seeker! Age is just a number and motivation is the fuel! Whatever you do in your life, do not forget to be humble.
Jean @Jean_Maes_1994
12K Followers 1K Following @sansoffensive Certified instructor/SEC565 author/SEC699 co author
Pentester Academy @SecurityTube
195K Followers 14K Following We help professionals acquire the skills, knowledge and certificates by teaching defense through offense to advance their careers in cybersecurity.
Andres Roldan @andresroldan
807 Followers 799 Following GIAC Advisory Board | OSEE, OSCE, OSEP, OSWP, OSCP, GXPN, GPEN, eCPTXv2, eWPTXv2, eCXD, CRTL, CRTO, CRTE, among others
edskoudis @edskoudis
62K Followers 306 Following President SANS Technology Institute College. SANS Fellow. CEO @CounterHackSec. @RSAConference Keynoter. IANS Faculty. BoD @manasquanbank & https://t.co/WD7vkoH5lH.