Tweetovi
- Tweetovi, trenutna stranica.
- Tweetovi i odgovori
- Medijski sadržaj
Blokirali ste korisnika/cu @rootfudimo
Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @rootfudimo
-
A#root proslijedio/la je Tweet
Quickly identify users / groups / password policy of the domain with prettyloot after dumping domain info using ntlmrelayx ! https://github.com/mpgn/prettyloot The script reads all files from the loot directory and prints information like a classic enum4linux output
https://twitter.com/ditrizna/status/1103964505510416384 …pic.twitter.com/H52izvze1Z
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
A#root proslijedio/la je Tweet
There was once upon a time when I understood that not every Infosec professional had the opportunity to pop companies full end to end. I started to write https://vincentyiu.com/red-team-tips to share out some ideas, themes, and messages to help others to think about more areas.

Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
A#root proslijedio/la je Tweet
modexp is one of my fav. researchers; while I often skim on details he is killing it with posts that combine an extensive and comprehensive research on interesting and often nuanced topics and a very well written narrative top quality right therehttps://modexp.wordpress.com/2019/12/08/shellcode-compression/ …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
A#root proslijedio/la je Tweet
PoC (Denial-of-Service) for CVE-2020-0609 & CVE-2020-0610 Please use for research and educational purpose only. https://github.com/ollypwn/BlueGate …pic.twitter.com/R43AHUwGV0
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
A#root proslijedio/la je Tweet
If you're playing with Kerberos and want to view the encrypted parts in Wireshark you can do so with a keytab file. Since impacket was missing structures for this I added a script to my forest trust tools repo which easily allows adding multiple keys:https://github.com/dirkjanm/forest-trust-tools …
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
A#root proslijedio/la je Tweet
Hey Defender friends. Turns out that removing those services with Unicode/non-printable characters is pretty hard, so I wrote you a tool to help with that. I'll be releasing the offensive PoC later this week or early next week. https://github.com/matterpreter/OffensiveCSharp/commit/089c1db4909ab365b45fb69e45abb1adcac2861e#diff-e8991566df61818c826e7964e3078579 …pic.twitter.com/SCEV9WtpnF
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
A#root proslijedio/la je Tweet
Added 2 more PoC scripts to the OffensiveDLR repo. One of which embeds the SSharp Compiler within a Posh script (Can be easily embedded from within any .NET language.) SSharp code compilation does not call csc.exe :)https://github.com/byt3bl33d3r/OffensiveDLR …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
A#root proslijedio/la je Tweet
Because I prefer C,
#curveball#cve20200601 little POC to create your own EC alternative keys > https://github.com/gentilkiwi/curveball/releases/ … With a lots of keys included in the release.pic.twitter.com/kkboaxUARk
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
A#root proslijedio/la je Tweet
#BlueTeam command-line MSBuild.exe detection's got your#RedTeam down? How about MSBuild without MSBuild.exe? https://s5.gifyu.com/images/msbuild_api.gif …https://github.com/rvrsh3ll/MSBuildAPICaller …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
A#root proslijedio/la je Tweet
Okay here it is, Zipper a new
@OutflankNL file and folder compression utility for CobaltStrike. Blue Teams/Hunters/Defenders: Lookout for non file-compression related processes creating (random named) zipfiles within temp folders.https://github.com/outflanknl/Zipper …Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
A#root proslijedio/la je Tweet
If you are unable to install the patch for RDP vulns CVE-2020-0609 and CVE-2020-0610,
@MalwareTechBlog points out a workaround https://www.kryptoslogic.com/blog/2020/01/rdp-to-rce-when-fragmentation-goes-wrong/ …pic.twitter.com/4ythzF9AiN
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
A#root proslijedio/la je Tweet
Because VBA is not all,
#curveball#cve20200601 with Microsoft PowerShell signed script. Very useful with AllSigned or RemoteSigned execution policy
pic.twitter.com/tUS9vnyx97Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
A#root proslijedio/la je Tweet
Ho, by the way,
#curveball#cve20200601 is not only about TLS & Authenticode... it's also for S/MIME and other signatures. Yes, it's also valid against#Outlook mail signature verification
I hope nobody rely on it for legal / workflow validationpic.twitter.com/xds8l2gSILPrikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
A#root proslijedio/la je Tweet
If you have AppLocker deployed, be aware that most times when Windows 10 is updated/upgraded, it creates a TASKS_MIGRATED folder under C:\windows\system32 that has the CREATOR OWNER, meaning that users can create and execute files from the folder and bypassing AppLocker
pic.twitter.com/YLUxRxDyxr
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
A#root proslijedio/la je Tweet
Updated PoC to include the root trusted CA "Microsoft ECC Product Root Certificate Authority 2018" Also included a signed and unsigned 7z.exe for you to test out. https://github.com/ollypwn/CVE-2020-0601 … Please only use for research and education.
#curveballpic.twitter.com/VHPUtg96zh
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
A#root proslijedio/la je Tweet
RCE zero-day in Seagate Central Storage NAS devices https://pentest.blog/advisory-seagate-central-storage-remote-code-execution/ …pic.twitter.com/dcRd7trUzW
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
A#root proslijedio/la je Tweet
COMMENTARY ON CVE-2020-0601: I have been speaking to several players on this on background and there are a few things they want to highlight / clarify based on the public discourse so far.
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
A#root proslijedio/la je Tweet
Nothing super exciting, but I updated the Alternate Data Stream gist with two binaries to dump content from an ADS to a file: expand c:\ads\file.txt:test.exe c:\temp\evil.exe esentutl.exe /Y C:\temp\file.txt:test.exe /d c:\temp\evil.exe /o Gist:https://gist.github.com/api0cradle/cdd2d0d0ec9abb686f0e89306e277b8f …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
A#root proslijedio/la je Tweet
CVE-2020-2696 – Local privilege escalation via CDE dtsession Writeup: https://techblog.mediaservice.net/2020/01/local-privilege-escalation-via-cde-dtsession/ … Advisory: https://github.com/0xdea/advisories/blob/master/2020-02-cde-dtsession.txt … Exploit:https://github.com/0xdea/exploits/blob/master/solaris/raptor_dtsession_ipa.c …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
A#root proslijedio/la je Tweet
[Blog] Avira VPN Local Privilege Escalation https://enigma0x3.net/2020/01/15/avira-vpn-local-privilege-escalation-via-insecure-update-location/ … Uses some fun tricks to circumvent service DACL and integrity checks.
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.