Will

@harmj0y

co-founder Empire/BloodHound/Veil-Framework | PowerSploit developer | Microsoft PowerShell MVP | security at the misfortune of others |

Joined August 2012

Tweets

You blocked @harmj0y

Are you sure you want to view these Tweets? Viewing Tweets won't unblock @harmj0y

  1. Pinned Tweet
    Oct 30

    So excited - here's my updated "Guide to Attacking Domain Trusts" ! Was a blast to write

  2. Retweeted
  3. Retweeted
    Dec 20

    Shout out to the crew for making AD ACLs quickly enumerable. Used them today to add a low privileged compromised user to "Group A", "Group A" members had permissions to add to Domain Admins.

  4. Retweeted

    What if you can avoid all events ? Even the one saying you cleared all events ? 🙃

  5. Retweeted
    Dec 19

    We've open sourced our framework for developing alerting and detection strategies for incident response. We have also included several internal strategies as examples to spur greater sharing and collaboration with defenders.

  6. Retweeted

    Do you know how to get cleartext passwords of users, at logon, in a Windows 10? Especially with Credential Guard enabled? - It's easy as an Authentication Package (mimilib) or a piece of code injected...

    Show this thread
  7. Retweeted
    Dec 17

    Girl Scouts will soon earn badges in cybersecurity <- This is so Awesome!

  8. Retweeted
    Dec 11

    Today I'm releasing Detection Lab, a personal project that uses Packer & Vagrant to quickly stand up up a fully customizable Windows Active Directory loaded with security tooling and some logging best practices. Blog: Github:

  9. Retweeted
    Dec 16
  10. Retweeted
    Dec 15

    Visibility on available data for hunting is priceless. Thanks !

  11. Retweeted
    Dec 14

    We've hidden golden Kerberos tickets in five randomly selected chocolate bars and shipped them throughout the world. The lucky winners are invited to visit our candy factory's IT department as domain admins.

  12. Retweeted
    Dec 15

    Are you really ready for ? What does your data look like? Data Availability != Data Quality

  13. Retweeted
    Dec 14

    Our CEO, , will be on a panel today discussing this year’s big lessons learned and recommendations for breach prevention in the new year with , , Ashton Mozano, and Jon Green . Tune in at 1pm Eastern

  14. Retweeted
    Nov 28

    After an extended delay, the ADSecurity unofficial Mimikatz guide is now current & updated for version 2.1.1 (November 28, 2017). Includes all modules & commands.

  15. Retweeted
    Dec 12

    Our February training offering of Adversary Tactics: Red Team Operations is officially sold out. Waitlist is available. More course offerings to be announced shortly.

  16. Retweeted
    Nov 9

    Invoke-SocksProxy : Creates a Socks proxy using powershell :

  17. Retweeted
    Dec 6

    We're ready for you ! Our workshop starts in 45 minutes!

  18. Retweeted
    Dec 6
    Replying to and

    Sorry, Marketing is out of office for the holidays. Hope this hand-written apology will suffice.

  19. Dec 5

    my good friend Felicity () is a great UX and graphic designer if anyone needs good work!

  20. Retweeted
    Dec 5

    I did a quick write-up on my method of getting BadIntent for Android set up.

    Show this thread
  21. Retweeted
    Dec 5

Loading seems to be taking a while.

Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.

    You may also like

    ·