Tweetovi
- Tweetovi, trenutna stranica.
- Tweetovi i odgovori
- Medijski sadržaj
Blokirali ste korisnika/cu @NicolasHeiniger
Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @NicolasHeiniger
-
Nicolas proslijedio/la je Tweet
https://whynotsecurity.com/blog/teamviewer/ … Teamviewer has been storing user passwords encrypted with AES, not hashed, in the registry accessible to low privilege users on the machine. This works for versions dating back from at least as far back as 2012 to the latest version.
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Nicolas proslijedio/la je Tweet
Move Faster, Stay Longer https://posts.specterops.io/move-faster-stay-longer-6b4efab9c644 … blog about extending CS and tools to go with it.
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Nicolas proslijedio/la je Tweet
Revisiting RDP lateral movement https://posts.specterops.io/revisiting-remote-desktop-lateral-movement-8fb905cb46c3 … and releasing a project that will be part of a bigger tool coming next week
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
One regret, the flag 'Some secrets are meant to be broken' that is completely unrelated to the lab IMHO... I was hoping for some DPAPI secrets giving access to one of the websites!
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
I finally found the last flag on Offshore (on
@hackthebox_eu). Not so easy, especially the last flags. But as usual, worth doing the effort. I could apply techniques that I only knew theoretically and discover some new tricks. Maybe going for@_RastaMouse RastaLabs next
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Awesome, looking forward!https://twitter.com/a41con/status/1215721105664724993 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Nicolas proslijedio/la je Tweet
Wrote some stuff on analysing your C2 comms to make sure you are opsec aware and operational safe + better visibility. Principles can be applied to any logging mechanism :) https://www.tommacdonald.co.uk/increasing-situational-awareness-and-operational-safety-through-c2-proxy-log-analysis/ …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Now that 2019 is over, here is my write-up for Hackvent 2019:https://github.com/nheiniger/hackvent2019 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Nicolas proslijedio/la je Tweet
[Blog] Wrote a basic guide on how to add Tasks in Covenant.https://rastamouse.me/2019/12/covenant-tasks-101/ …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Nicolas proslijedio/la je Tweet
St.Nicholas
has some gifts for you
If you want the Defcon Switzerland Snowflake, then retweet *this* till Sun 8.12. 23:59 CET
we will select 10 at random & send each one per post
PS: Dont forget to safe the date for AREA41 conference 11-12/6/2020
#DC4131@a41conpic.twitter.com/wfXaQtqISu
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Looks awesome, can't wait to test it !https://twitter.com/HackAndDo/status/1202909745092411393 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Workshop with
@TheHackingLab 2.0@BlackAlpsConf is ready. We start in 30 minutes.#blackalps19pic.twitter.com/khADiwa20M
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Nicolas proslijedio/la je Tweet
Train your brain! Don't miss the workshop on the new
#HackingLab 2.0 platform. Benefit from the trainer's support and face up to the security challenges.
This Friday afternoon @BlackAlpsConf in Yverdon.https://twitter.com/BlackAlpsConf/status/1184080453738860545 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Nicolas proslijedio/la je Tweet
Do you like cheat sheets? We created a new one for hacking tools we use in our pentests and security trainings! Check it out: https://blog.compass-security.com/2019/10/hacking-tools-cheat-sheet/ …
#pentest#cheatsheetpic.twitter.com/SyRTzVpSIP
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Nicolas proslijedio/la je Tweet
Black box signal analysis by
@cybrz of a not so smart card in ID-1 form factor that is in use for the billing of washing machines and tumble driers.#i2c#eeprom#junk#hacking https://blog.compass-security.com/2019/09/smart-card-odyssee/ …pic.twitter.com/faQy4MDCmo
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Nicolas proslijedio/la je Tweet
@BlackAlpsConf schedule is now live! https://www.blackalps.ch/ba-19/program.php … Go get your tickets while they’re available!Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Nicolas proslijedio/la je Tweet
We've just released ophcrack pro tables for free as a torrent...https://www.objectif-securite.ch/2019/09/01/tables-on-torrent.html …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Today I exploited 2 types of Kerberos delegation through a Citrix session and 2 nested RDP sessions to gain local admin on a host where the expected creds were not present in memory anymore. It failed but I learnt a lot thanks to the work of
@elad_shamir,@harmj0y and@_dirkjanHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Have a look at the blog post, the 2 objectives are fulfilled imo.https://twitter.com/am0nsec/status/1164521639985451009 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Nicolas proslijedio/la je Tweet
Had an awesome time presenting new NTLM vulnerabilities and mitigations with
@simakov_marina at#BHUSA . Sildes are now available at http://i.blackhat.com/USA-19/Wednesday/us-19-Simakov-Finding-A-Needle-In-An-Encrypted-Haystack-Leveraging-Cryptographic-Abilities-To-Detect-The-Most-Prevalent-Attacks-On-Active-Directory.pdf …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.
Detect paths to domain admin from compromised users
Set compromised hosts as owned
Beautified lsassy output
Comments, improvements and fixes are most welcome !