brmk @_brmkit
just an aimless student. Italy Joined November 2019-
Tweets54
-
Followers8
-
Following421
-
Likes209
MATCH (c1:Computer)-[:MemberOf*1..]->(g:Group) WHERE g.objectsid ENDS WITH '-516' WITH COLLECT(c1[.]name) AS dcs MATCH (c2:Computer) WHERE c2.enabled = true AND (c2.operatingsystem contains '2025') AND (c2[.]name IN dcs) RETURN c2[.]name If this query hits, you're in.
MATCH (c1:Computer)-[:MemberOf*1..]->(g:Group) WHERE g.objectsid ENDS WITH '-516' WITH COLLECT(c1[.]name) AS dcs MATCH (c2:Computer) WHERE c2.enabled = true AND (c2.operatingsystem contains '2025') AND (c2[.]name IN dcs) RETURN c2[.]name If this query hits, you're in.
Gli sperperi di denaro pubblico post terremoto dell’Irpinia sono ormai entrati nella storia di questo Paese. Una brutta storia, riassunta in dieci volumi presentati al Parlamento il 5 febbraio 1991 e inviati a varie procure da una commissione d’inchiesta presieduta da Scalfaro.
OK, I promise to stop spamming about relays with NTLM/Kerberos 😅. But if you're a member of the Distributed COM or Performance Log group, these juicy CLSIDs let you trigger remotely machine authentication of any computer, including DCs, and relay DCOM -> HTTP, SMB… 👇
How I discovered and exploited an unauthenticated SSRF in the Havoc C2 teamserver, allowing attackers to leak origin IPs of teamservers behind redirectors and much more! blog.chebuya.com/posts/server-s… github.com/chebuya/Havoc-…
New blog post "Google: Stop Burning Counterterrorism Operations" My reflection on an incident where Project Zero and TAG knowingly shut down an active Western counterterrorism cyber operation, and the real-world harm that could have resulted from it. poppopret.org/2024/06/24/goo…
Watching people tweet they bypassed a certain EDR is just cringe at this point. When you ask them what did they bypass, they dont know what. So let me take you back to school... Executing OpenSource tool is not a bypass. An EDR employs several mechanisms for detection. Getting a…
Intern, Junior, Senior, Principal, Sr Principal, Staff, Master, Artisan. These are the levels I believe best suites most of the fields of study in Cyber Security. I worked with @carnal0wnage to put some of this together one day and wanted to share my thoughts on it:
Wondering what telemetry an EDR collects? Wonder no more! @Kostastsale and @ateixei run an EDR Telemetry Project, covering all major EDRs: "The main goal of the EDR Telemetry project is to encourage EDR vendors to be more transparent about the telemetry they provide". Blog:…
Active Directory Enumeration for Red Teams mdsec.co.uk/2024/02/active… #Pentesting #CyberSecurity #Infosec
Kerberos tickets dumping in pure PowerShell 😍 I simply love such approach. So much more beautiful than loading pre-compiled binary blob. And so much harder to detect... linkedin.com/posts/mzhmo_hi…
Good Morning Everyone!! We are pleased to announce that CFP and Sponsorship is open for #BSidesRoma check it out. roma.securitybsides.it #Cyber #Italy #Roma #BSides #January23 #hybrid and we have a lot cool initiative, and some great speakers to announce :)
Building a server that can host a lot of VMs is still one of the best career investments I've made. Having the ability to spin up complex labs to test attack paths has been extremely valuable.
From initial access to Global Admin with #BloodHound and BARK. In this thread let's walk, step by step, through an example attack path based on real configurations we've seen in real environments:
Do you want a FREE seat to Advanced Threat Emulation: Evasion? Retweet and comment below and we will be randomly selecting 1 person on Monday at 8am PST to attend our brand-new course. eventbrite.com/e/advanced-thr…
This is really bad, if you ever installed components of ArcSoft, check this:
Certipy just received a major upgrade. The new version includes BloodHound integration, 5 new domain privilege escalation techniques, Shadow Credentials, Golden Certificates, and more. research.ifcr.dk/34d1c26f0dc6
Blog post and tool by @last0x00 for killing Defender without it showing up as disabled and loading an arbitrary driver in place of WdFilter aptw.tf/2021/08/21/kil… Credits to @jonasLyk from @the_secret_club for the technique!
Hands [off|on] MS cloud services youtu.be/XOF8fw_aW5E via @YouTube
When (NTLM) relaying potatoes lead you to domain admin... A "permanent" 0day Privilege Escalation Vulnerability in Windows RPC Protocol ;-) cc @splinter_code Our writeup here: labs.sentinelone.com/relaying-potat…
Warren Okuneva @WOkuneva49105
25 Followers 3K Following
stunn4 @0xstunn4
144 Followers 599 Following
Charles Shirer @bsdbandit
25K Followers 27K Following A Hacker who is A Lover of People, and Life @RetroTwinz @Secbsd, @GrumpyHackers, @NovaHackers, @deadpixelsec @hacknotcrime Advocate @PositivelyBlue_ OSCP, OSWP
VincentDThe @vincentdthe
92 Followers 592 Following 🇮🇹🇺🇦Aspiring average IT user…I misuse tools for grown Cyber Security operators. Lurker and beer operator @APTortellini
Carlo Pelliccioni @cpelliccioni
453 Followers 1K Following
:~$ ./bssec @Black_Sheep_Sec
839 Followers 3K Following 🌱 The way to prove yourself is to better yourself
flux @0xfluxsec
2K Followers 1K Following CRTO | Cyber professional (red team), security and systems programming | Rust | https://t.co/QIih2B7vya | https://t.co/VC3xsm0Wvq
MalDev Academy @MalDevAcademy
17K Followers 5 Following Providing specialized, module-based security training and resources designed for cyber security professionals
Gianluca Varisco @gvarisco
4K Followers 4K Following I work at @Google on @googlecloud. Formerly @arduino, @ITdigitalteam, @RocketBerlin, @RedHat. Tweets are my own.
_leon_jacobs(💥) @leonjza
5K Followers 490 Following ⟦ 'cto @sensepost', '@orangecyberdef', 'caffeine fueled', '(╯°□°)╯︵ ┻━┻', 'security guy', 'metalhead', 'i saw your password', 'KOOBo+KXleKAv+KXlSnjgaM=' ⟧
Michele Boldrin @micheleboldrin
73K Followers 3K Following PD-CMP-VE-Rochester-Stanford-Chicago-LA-SantaFe-Evanston-BCN-MAD-Philly-HK-Shanghai-Tokyo-Phoenix-BA-Taipei-Mpls-Wuhan-StL-Palma-Beijing-SMdiL-Scorze-SouthTyrol
babush @pmontesel
838 Followers 594 Following @mhackeroni / I do stuff with computers / opinions not my own / 🇮🇹🇨🇦🇯🇵
db @whokilleddb
1K Followers 515 Following Maldev @bhinfosecurity | Finding increasingly stupid ways to do simple things
Codebender Cate™ ξ... @Codebender_Cate
1K Followers 3K Following Mother | INTP-T | Cyber-BASc | Gamer | @XboxAmbassadors | @WGUCyberClub | ΟΣΣ | Cyber competitor | Former @USArmy | CSIE in progress (1/4) | posts are mine
will i am @BSummerz
250 Followers 479 Following Red/Purple teamer and senior consultant @Mandiant Canada 🇨🇦
Nick VanGilder @nickvangilder
3K Followers 3K Following Red Team Director | Mission Focused Leader | Combat Veteran | Offensive Security Program Builder | Mentor and Coach
Drin Drin @MovDrinDrin
11K Followers 2 Following 🔔 Un’alternativa politica credibile. 🔗Iscriviti, partecipa agli eventi e tanto altro ⤵️
Harley Lebeau @r3dQu1nn
3K Followers 249 Following Red Teamer/Penetration Tester, Husband, Father, OSCP
Jamie Shaw @1nPr0c
5K Followers 564 Following Principal Security Consultant / Red Team Lead @mdseclabs
L1nkd34d @L1NKD34D
813 Followers 716 Following High Tech Low Life -|- Targeted Operations @TrustedSec -|- Dissonant Maiar -|- Hyper Active, Hyper Focused -|- Father of Four
anubis @AnubisOnSec
3K Followers 1K Following Logging into things I shouldn't I build and break things as a Red Team Lead @ Large GPU Maker
Steven @0xthirteen
3K Followers 897 Following Working to become smarter everyday. Adversary Simulation Service Architect @SpecterOps.
Dave Cossa @G0ldenGunSec
2K Followers 261 Following Adversary Simulation @xforce/ Frequent reader of the first page of Google results / Occasional reader of the second page of Google results
Shawn @anthemtotheego
2K Followers 397 Following Adversary Sim @ X-Force Red | Head of Capability R&D | Offensive AI | Implant Dev | Work In Progress | Thoughts My Own | https://t.co/eNspx7jLvm
NULL @NUL0x4C
10K Followers 399 Following Windows Malware Researcher | co-founder of https://t.co/1YRk2CEjaO
BC Security @bcsecurity
9K Followers 52 Following Threat Emulation | Training | Red Team | Penetration Testing | Compliance Discord: https://t.co/4C5C3M1Tk9
Harakiri @Harakiri_Twitt
94 Followers 441 Following 🇮🇹 Passionate about InfoSec, Photography, Music & Movies. Hoping to build a better Internet. Climbing addicted 🐒 🏔️
Zero-Point Security @_ZeroPointSec
13K Followers 6 Following
Chris King @raikiasec
2K Followers 325 Following Mandiant (Google Cloud) Red Team Director. My views and comments are my own and do not reflect my employer's view
☠️ Brandon @__mez0__
3K Followers 432 Following 👽 UNC1194 🔥 Targeted Ops @TrustedSec 🤖 Dev @preemptdev "purveyors of the prettiest log files"
那个火饺🦆(JJ) @thatjiaozi
1K Followers 457 Following 🇲🇽🇨🇦. Cloud Vulnerability Research. Opinions are my own. Not those of my company.
stunn4 @0xstunn4
144 Followers 599 Following
BlackSnufkin @BlackSnufkin42
690 Followers 482 Following #RedTeam & #MalwareDev | #CRTL Just a pirate in the Cyber sea 🏴☠️
Bad Sector Labs @badsectorlabs
8K Followers 507 Following Cybersecurity news, techniques, exploits, and tools every week at https://t.co/UgKmeEEjIV 🐘 @[email protected]
spencer @techspence
13K Followers 2K Following 🛡️Sysadmin roots. Pentester insights. Defender mindset | Sr. Pentester @SecurIT360 | host @cyberthreatpov | SWAG https://t.co/TCPIC5krx6 Check pinned tweet
Nacho Gomez @_nag0mez
455 Followers 394 Following Offensive Security @ NCC Group | ❤️ Breaking Things
Thomas Roccia 🤘 @fr0gger_
32K Followers 2K Following AI Security x Threat Intel · Sr. Threat Researcher @Microsoft · Creator of #Unprotect & #NOVA · Malware Warlock · Python 🧡 · Prev @McAfee_Labs · Views mine 😈
Darknet Diaries @DarknetDiaries
124K Followers 1 Following True stories from the dark side of the Internet. Host @jackrhysider. New episodes released on the first Tuesday of each month. Discord: https://t.co/bZZRR8C59R
Stephan Berger @malmoeb
28K Followers 1K Following Head of Investigations @InfoGuardAG https://t.co/A5lnFAu7eX
ςεяβεяμs - м�... @c3rb3ru5d3d53c
25K Followers 243 Following 💕 Malware Hunter Killer 💕 #binlex & #mwcfg Developer 📽️ YouTuber 👩💻 She/Her 💍@DravenSwiftbow Support my work 👇 ☕️ https://t.co/NoM1TXq00P
Blue Team News @blueteamsec1
53K Followers 9K Following The cybersecurity home for the latest #BlueTeam, #DFIR, and #ThreatHunting news and tools.
☣ KitPloit - Hacker... @KitPloit
119K Followers 3K Following Hacking and PenTest Tools for your Security Arsenal!
Germán Fernández @1ZRR4H
35K Followers 461 Following 🏴☠️ OFFENSIVE-INTEL 🏴☠️ Cyber Threat Intelligence by Hackers | Security Researcher en https://t.co/rDrSxZASB3 | @CuratedIntel Member | 🥷🧠🇨🇱
LetsDefend @LetsDefendIO
132K Followers 1 Following LetsDefend, now part of Hack The Box. Read more: https://t.co/jxMnGZ4Yne
Unit 42 @Unit42_Intel
64K Followers 81 Following The latest research and news from Unit 42, the Palo Alto Networks (@paloaltontwks) Threat Intelligence and Security Consulting Team covering incident response.
blackorbird @blackorbird
36K Followers 672 Following Peace and Love. Just Analysis/Hunter. #APT #threatIntelligence #Exploit #CTI Need Job
SentinelOne @SentinelOne
56K Followers 1K Following ONE autonomous platform to prevent, detect, respond, and hunt. Do more, save time, secure your enterprise: https://t.co/N75g1HAnCs 🐱💻
HackerRats - Uncle Ra... @theXSSrat
156K Followers 955 Following Alone we survive, together we prosper. Are you with me? https://t.co/AfnDsVhqqATrends for United States
You might like
