Fabio Baroni

@Fabiothebest89

Ethical hacker, pen tester, dev, web designer, vulnerability assessment, forensics, malware analysis. Founder

Italy
pentest.guru
Vrijeme pridruživanja: kolovoz 2011.
42 fotografije ili videozapisa Fotografije i videozapisi

Tweetovi

Blokirali ste korisnika/cu @Fabiothebest89

Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @Fabiothebest89

  1. Prikvačeni tweet
    9. kol 2016.

    New book: Beginner’s Guide to Information Security: Kickstart your security career with insight from InfoSec experts

    1 reply 16 proslijeđenih tweetova 15 korisnika označava da im se sviđa
    Poništi
  2. proslijedio/la je Tweet
    10. svi 2019.

    New blog post is up starting a series of looking at just how Mimikatz achieves its magic, beginning with WDigest (and ending with a bit of lsass DLL loading fun).

    11 replies 315 proslijeđenih tweetova 594 korisnika označavaju da im se sviđa
    Poništi
  3. proslijedio/la je Tweet
    17. stu 2019.

    Defenders should deploy this settings: HKLM\SYSTEM\CurrentControlSet\Control\Lsa Dword: RunAsPPL Value: 1 Protects dumping of Lsass with a simple registry value. Encountered that on an engagement recently. 🤯 Mimikatz driver needed to bypass Details

    19 replies 680 proslijeđenih tweetova 1.550 korisnika označava da im se sviđa
    Poništi
  4. proslijedio/la je Tweet
    10. pro 2019.

    Introducing SysWhispers, a tool that helps with AV/EDR evasion by using direct system calls to bypass user-mode API hooks. It works by generating header/ASM pairs supporting all core syscalls from Windows XP to 10. Check it out here with examples:

    10 replies 397 proslijeđenih tweetova 755 korisnika označava da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  5. proslijedio/la je Tweet
    17. sij

    If you have AppLocker deployed, be aware that most times when Windows 10 is updated/upgraded, it creates a TASKS_MIGRATED folder under C:\windows\system32 that has the CREATOR OWNER, meaning that users can create and execute files from the folder and bypassing AppLocker 😱

    7 replies 330 proslijeđenih tweetova 654 korisnika označavaju da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  6. proslijedio/la je Tweet
    17. sij

    I spent some time learning about blockdlls and parent process spoofing from and . Using a recent sample from SubTee, I modified it to spoof the parent process and inject x64 shellcode from a dll on UNC into hidden iexplore.exe.

    6 replies 123 proslijeđena tweeta 307 korisnika označava da im se sviđa
    Poništi
  7. proslijedio/la je Tweet
    19. sij

    command-line MSBuild.exe detection's got your down? How about MSBuild without MSBuild.exe?

    7 replies 254 proslijeđena tweeta 526 korisnika označava da im se sviđa
    Poništi
  8. proslijedio/la je Tweet
    20. sij

    Dear , Putting the private key for a CA blessed certificate in firmware is a bad idea. and I found a couple a couple terrible things.

    17 replies 209 proslijeđenih tweetova 441 korisnik označava da mu se sviđa
    Poništi
  9. proslijedio/la je Tweet
    20. sij

    Happy to announce that you now can find the lecture notes for my Hardware and Embedded Systems Security course online, including tex sources:

    101 proslijeđeni tweet 277 korisnika označava da im se sviđa
    Poništi
  10. proslijedio/la je Tweet
    20. sij

    my new current project. automatic ropchain generation!

    80 proslijeđenih tweetova 197 korisnika označava da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  11. proslijedio/la je Tweet
    13. pro 2019.

    And... Wafw00f 2.0 is out. Major rewrite and so many new detections. Thanks for all the hard work!

    With more than 300 commits and hard work for the past few months, I am happy to finally announce that WAFW00F v2.0 (Emporium) release is out. WAFW00F can now accurately fingerprint 150+ WAFs out there (largest fingerprint database till now).
    Prikaži ovu nit
    10 proslijeđenih tweetova 27 korisnika označava da im se sviđa
    Poništi
  12. proslijedio/la je Tweet
    15. pro 2019.

    Are you ready to takeover subdomains? ;) I have developed a tool to scan subdomain takeover vulnerabilities. Found 300+ vulnerable subdomains on Twitter,Yahoo,Pinterest,Periscope,Spotify,HarvardUni,StanfordUni,BerkeleyUni,YaleUni,PrincetonUni... Its free!

    302 proslijeđena tweeta 624 korisnika označavaju da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  13. proslijedio/la je Tweet
    14. pro 2019.

    Pretty good workshop, describing Windows drivers DSE bypassing! It allows run LiveCloudKd with own hvmm.sys driver on Windows Server 2019 with Dec 2019 patches and Secure Boot enabled.

    1 reply 80 proslijeđenih tweetova 168 korisnika označava da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  14. proslijedio/la je Tweet
    16. pro 2019.

    My PhD thesis "Software-based Side-Channel Attacks and Defenses in Restricted Environments" is finally available online: I really enjoyed my last 3 years working on it, also due to my great colleagues, especially , , and

    18 replies 157 proslijeđenih tweetova 558 korisnika označava da im se sviđa
    Poništi
  15. proslijedio/la je Tweet
    15. pro 2019.

    So I translated to myself 's article on Exploitation and the internals of Windows 10 RS5 (Userspace), and Saar suggested I'll upload it for everyone, so why not :) I hope this helps as it helped me, thank you Saar!

    5 replies 204 proslijeđena tweeta 464 korisnika označavaju da im se sviđa
    Poništi
  16. proslijedio/la je Tweet
    4. ožu 2019.

    Want to learn how to do well in your ? Here's a guide from

    3 proslijeđena tweeta 5 korisnika označava da im se sviđa
    Poništi
  17. proslijedio/la je Tweet
    1. ožu 2019.

    Need privilege escalation? Have access to SMB and NFS shares? Automate looking for credentials! 1) pip3 install -r requirements.txt sudo apt-get install cifs-utils 2) git clone 3) python3 -p all -w -v -H hosts.lst -C creds.lst

    9 replies 280 proslijeđenih tweetova 655 korisnika označava da im se sviđa
    Poništi
  18. proslijedio/la je Tweet
    21. velj 2019.

    C# (CL +AMSI bypass), here the quick&dirty code:

    63 proslijeđena tweeta 123 korisnika označavaju da im se sviđa
    Poništi
  19. proslijedio/la je Tweet
    25. velj 2019.

    Reverse shell in Node.JS

    200 proslijeđenih tweetova 551 korisnik označava da mu se sviđa
    Poništi
  20. proslijedio/la je Tweet
    28. velj 2019.

    This ZoomEye dork reveals current Cobalt Strike C&C servers: There are about 3,600, 86% of which are also found on Fox-IT's list

    1 reply 7 proslijeđenih tweetova 21 korisnik označava da mu se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  21. proslijedio/la je Tweet
    28. velj 2019.

    Want to learn how to do well in your ? Here's a guide from

    1 proslijeđeni tweet 2 korisnika označavaju da im se sviđa
    Poništi

@Fabiothebest89 još nije objavio nijedan Tweet.

Čini se da učitavanje traje već neko vrijeme.

Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.

    Možda bi vam se svidjelo i ovo:

    ·