invictus

@__invictus_

Security Consultant

Vrijeme pridruživanja: lipanj 2015.
13 fotografija ili videozapisa Fotografije i videozapisi

Tweetovi

Blokirali ste korisnika/cu @__invictus_

Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @__invictus_

  1. Prikvačeni tweet
    13. kol 2019.

    Re-sharing my research on abusing Autocad as part of a targeted attack - helpful if you have a red team this summer against an engineering and/or architecture firm, or found some autocad users during osint.

    1 reply 9 proslijeđenih tweetova 27 korisnika označava da im se sviđa
    Poništi
  2. proslijedio/la je Tweet
    1. velj

    Load encrypted PE from XML Attribute. MSBuild is still the best.😅 MSBuild sets Property then calls Execute. Use this example to decouple payloads & prove that all security products have a "Single File Bias". Decouple payloads to subvert detection.

    5 replies 149 proslijeđenih tweetova 309 korisnika označava da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  3. proslijedio/la je Tweet
    30. sij
    Odgovor korisnicima

    Just for you, custom version via execute-assembly.

    3 proslijeđena tweeta 2 korisnika označavaju da im se sviđa
    Poništi
  4. 30. sij

    On successful compromise of the user endpoint, the red team deployed their ultimate weapon

    0:45
    I made a goose that destroys your computer Download it free here:
    Prikaži ovu nit
    1 reply 28 proslijeđenih tweetova 104 korisnika označavaju da im se sviđa
    Poništi
  5. proslijedio/la je Tweet
    28. sij

    seriously considering tweeting at length about made up and unverifiable threat actor groups using high-level language to bolster my infosec thought leader credentials

    9 replies 6 proslijeđenih tweetova 51 korisnik označava da mu se sviđa
    Poništi
  6. proslijedio/la je Tweet
    27. sij

    If 's DotnetToJScript is blocked on newer versions of Windows or if it gets flagged by AMSI, you can use Excel automation via a COM object as an alternative to execute shellcode from JScript or VBScript w/o touching disk. PoC for x86 & x64 here:

    145 proslijeđenih tweetova 292 korisnika označavaju da im se sviđa
    Poništi
  7. proslijedio/la je Tweet
    24. sij

    cookie_crimes : Read local Chrome cookies without root or decrypting : sharpcookiemonster : cc

    18 proslijeđenih tweetova 35 korisnika označava da im se sviđa
    Poništi
  8. proslijedio/la je Tweet
    22. sij

    Revisiting RDP lateral movement and releasing a project that will be part of a bigger tool coming next week

    25 replies 485 proslijeđenih tweetova 884 korisnika označavaju da im se sviđa
    Poništi
  9. proslijedio/la je Tweet
    19. sij

    command-line MSBuild.exe detection's got your down? How about MSBuild without MSBuild.exe?

    7 replies 254 proslijeđena tweeta 526 korisnika označava da im se sviđa
    Poništi
  10. proslijedio/la je Tweet
    14. sij

    Hiding malicious code with “Module Stomping”: Part 1 : Part 2 : Part 3 : cc ModuleStomping :

    42 proslijeđena tweeta 74 korisnika označavaju da im se sviđa
    Poništi
  11. proslijedio/la je Tweet
    13. sij

    New blog post on the Microsoft Cloud: What is Azure Active Directory? Post covers what Azure AD is, how it compares to on-prem Active Directory, connecting via PowerShell, and password spraying attacks, mitigation, & detection.

    5 replies 175 proslijeđenih tweetova 351 korisnik označava da mu se sviđa
    Poništi
  12. proslijedio/la je Tweet
    9. sij

    Spray-AD, a new Kerberos password spraying tool for Cobalt Strike that might come in handy when assessing Active Directory environments for weak passwords (generates event IDs 4771 instead of 4625).

    248 proslijeđenih tweetova 469 korisnika označava da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  13. proslijedio/la je Tweet
    7. sij

    Very useful

    175 proslijeđenih tweetova 404 korisnika označavaju da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  14. proslijedio/la je Tweet
    6. sij

    Brutal from - honest rather than funny. Completely irrelevant awards event nowadays anyway. “Give all the awards to Netflix” !!

    7:49
    Ricky Gervais kicks off The .
    4 proslijeđena tweeta 3 korisnika označavaju da im se sviđa
    Poništi
  15. proslijedio/la je Tweet
    28. pro 2019.

    Just published some thoughts on red teaming, how to approach it, procure it and get in to it...

    15 replies 186 proslijeđenih tweetova 419 korisnika označava da im se sviđa
    Poništi
  16. 24. pro 2019.

    The best tweet so far on this whole debate/drama/ridiculousness

    Odgovor korisniku/ci @x0rz
    If I look at the number of people killed by bears in North America, I'm 100% positive that because we don't have bears in the UK that we've prevented/reduced bear murders. More bears enables more bear murders.
    2 korisnika označavaju da im se sviđa
    Poništi
  17. proslijedio/la je Tweet
    24. pro 2019.

    H0, H0, H0 Day

    76 proslijeđenih tweetova 154 korisnika označavaju da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  18. proslijedio/la je Tweet
    5. pro 2019.

    If someone takes the time to release something they learned publicly that can be used for offsec purposes, be the first to write the detection, not the first to complain. Those that complain just show they aren’t competent enough to write detections.

    1 reply 14 proslijeđenih tweetova 50 korisnika označava da im se sviđa
    Poništi
  19. 29. stu 2019.

    Absolute savagery 🤣

    I suppose it could be a convenient argument being against disclosure if you have nothing to disclose.
    Poništi
  20. 16. stu 2019.

    My Mrs gets the best DMs - I wonder what it's like to feel like a "serdine"

    1 reply 1 korisnik označava da mu se sviđa
    Poništi
  21. proslijedio/la je Tweet
    7. stu 2019.

    Check out my new blog post on how edit rights on an OU can be abused to compromise any of its child objects. Thanks to , and as a number of their tools were used in the PoC.

    1 reply 51 proslijeđeni tweet 72 korisnika označavaju da im se sviđa
    Poništi

@__invictus_ još nije objavio nijedan Tweet.

Čini se da učitavanje traje već neko vrijeme.

Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.

    Možda bi vam se svidjelo i ovo:

    ·