Will

@harmj0y

co-founder Empire/BloodHound/Veil-Framework | PowerSploit developer | Microsoft PowerShell MVP | security at the misfortune of others |

Seattle, WA
blog.harmj0y.net
Joined August 2012
93 Photos and videos Photos and videos

Tweets

You blocked @harmj0y

Are you sure you want to view these Tweets? Viewing Tweets won't unblock @harmj0y

  1. Pinned Tweet
    Oct 30

    So excited - here's my updated "Guide to Attacking Domain Trusts" ! Was a blast to write

    10 replies 567 retweets 849 likes
  2. Retweeted
    Dec 18

    Still waiting answers for , in wiki, especially for 2.

    5 replies 5 retweets 29 likes
  3. Retweeted
    Dec 20

    Shout out to the crew for making AD ACLs quickly enumerable. Used them today to add a low privileged compromised user to "Group A", "Group A" members had permissions to add to Domain Admins.

    3 replies 25 retweets 110 likes
  4. Retweeted
    Dec 19

    What if you can avoid all events ? Even the one saying you cleared all events ? 🙃

    13 replies 399 retweets 648 likes
  5. Retweeted
    Dec 19

    We've open sourced our framework for developing alerting and detection strategies for incident response. We have also included several internal strategies as examples to spur greater sharing and collaboration with defenders.

    10 replies 245 retweets 456 likes
  6. Retweeted
    Dec 18

    Do you know how to get cleartext passwords of users, at logon, in a Windows 10? Especially with Credential Guard enabled? - It's easy as an Authentication Package (mimilib) or a piece of code injected...

    5 replies 537 retweets 828 likes
    Show this thread
    Show this thread
  7. Retweeted
    Dec 17

    Girl Scouts will soon earn badges in cybersecurity <- This is so Awesome!

    33 retweets 53 likes
  8. Retweeted
    Dec 11

    Today I'm releasing Detection Lab, a personal project that uses Packer & Vagrant to quickly stand up up a fully customizable Windows Active Directory loaded with security tooling and some logging best practices. Blog: Github:

    14 replies 403 retweets 759 likes
  9. Retweeted
    Dec 16

    This Week in – 16 December 2017 ft 

    9 retweets 26 likes
  10. Retweeted
    Dec 15

    Visibility on available data for hunting is priceless. Thanks !

    Are you really ready for ? What does your data look like? Data Availability != Data Quality
    1 reply 3 retweets 8 likes
  11. Retweeted
    Dec 14

    We've hidden golden Kerberos tickets in five randomly selected chocolate bars and shipped them throughout the world. The lucky winners are invited to visit our candy factory's IT department as domain admins.

    15 replies 397 retweets 1,006 likes
  12. Retweeted
    Dec 15

    Are you really ready for ? What does your data look like? Data Availability != Data Quality

    3 replies 122 retweets 197 likes
  13. Retweeted
    Dec 14

    Our CEO, , will be on a panel today discussing this year’s big lessons learned and recommendations for breach prevention in the new year with , , Ashton Mozano, and Jon Green . Tune in at 1pm Eastern

    4 retweets 11 likes
  14. Retweeted
    Nov 28

    After an extended delay, the ADSecurity unofficial Mimikatz guide is now current & updated for version 2.1.1 (November 28, 2017). Includes all modules & commands.

    7 replies 437 retweets 621 likes
  15. Retweeted
    Dec 12

    Our February training offering of Adversary Tactics: Red Team Operations is officially sold out. Waitlist is available. More course offerings to be announced shortly.

    6 replies 12 retweets 28 likes
  16. Retweeted
    Nov 9

    Invoke-SocksProxy : Creates a Socks proxy using powershell :

    1 reply 100 retweets 142 likes
  17. Retweeted
    Dec 6

    We're ready for you ! Our workshop starts in 45 minutes!

    1 reply 11 retweets 23 likes
  18. Retweeted
    Dec 6
    Replying to and

    Sorry, Marketing is out of office for the holidays. Hope this hand-written apology will suffice.

    2 replies 5 retweets 38 likes
  19. Dec 5

    my good friend Felicity () is a great UX and graphic designer if anyone needs good work!

    5 retweets 6 likes
  20. Retweeted
    Dec 5

    I did a quick write-up on my method of getting BadIntent for Android set up.

    1 reply 36 retweets 46 likes
    Show this thread
    Show this thread
  21. Retweeted
    Dec 5

    [blog] Designing Effective Covert Red Team Attack Infrastructure

    142 retweets 212 likes

@harmj0y hasn't Tweeted yet.

Loading seems to be taking a while.

Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.

    You may also like

    ·