Adversary Simulation Consultant @SpecterOps
Joined May 2019
- Tweets 94
- Following 462
- Followers 270
- Likes 91
2 Photos and videos
3 Feb 2025
Did you know that CMPivot allows for auth coercion of SCCM/ConfigMgr client hosts?
medium.com/@dlomellini/furth…
14
34
3,032
Diegolomellini retweeted
12 Feb 2024
1️⃣ month until SO-CON 2024!
Joining our training courses in person in Arlington comes with a few extra benefits, including a FREE pass for our summit happening March 11.
Learn more & register at specterops.io/so-con
3
7
1,517
Diegolomellini retweeted
7 Feb 2024
Have you used a web shell on an offensive assessment recently? Were you able to task and create it through your C2 framework? I'm excited to announce the new Arachne agent for Mythic that allows you to do just that! Check it out posts.specterops.io/spinning…
1
54
142
16,594
Diegolomellini retweeted
30 Jan 2024
Deciding whether to attend SO-CON training in-person or remote?
Check out the benefits of joining us live in Arlington, VA, March 11-15! ⤵️
Learn more: specterops.io/so-con/
9
13
3,819
Diegolomellini retweeted
30 Jan 2024
What's new with BOFHound? 🤷
Check out @Tw1sm's latest blog post which delves into several new BOFs as well as an example attack path visualized using the BOFs, BOFHound, and BHCE. ghst.ly/3udnFVM
19
60
6,648
Diegolomellini retweeted
29 Jan 2024
Upgrade your Red Team engagements with TTPs used by attackers in real-world breaches. Our upcoming VIRTUAL training will teach participants how to infiltrate networks, gather intel & covertly persist in a network like an advanced adversary.
➡️ ghst.ly/SOCON24RTOtw
6
14
4,105
Diegolomellini retweeted
21 Nov 2023
Tomorrow, Tuesday November 21: get the first public look at how #BloodHound surfaces ADCS attack paths.
Register for our webinar here: ghst.ly/40rYRoZ
6
48
199
28,589
Diegolomellini retweeted
15 Nov 2023
After quite some time, I’m publishing Merlin v2. Added peer-to-peer agent communications and a new gRPC client allowing multiple operators to use Merlin at the same time! There are plenty of other new features captured in this post and the change logs. medium.com/@Ne0nd0g/merlins-…
2
75
198
25,217
Diegolomellini retweeted
12 Nov 2023
Wrote a little blog post about how I set up 1Password SSH agent forwarding to VS Code devcontainers. A bit of a niche post. Basically, you dont need to set up SSH keys each time you make a new devcontainer. Also a little goody for setting up commit signing
0xdab0.medium.com/streamlini…
1
10
33
6,413
Diegolomellini retweeted
9 Nov 2023
Our latest blog post from @Tw1sm takes a look at the updates to cookie storage that Slack has made since 2020, and reexamines avenues to achieving Slack access from ceded access on both macOS & Windows hosts. ghst.ly/49rGLr7
1
25
43
7,115
Diegolomellini retweeted
6 Nov 2023
We are kicking the week off right with Part 2️⃣ of @Praga_Prag & @synth_nic0's Domain of Thrones blog series. Check out the latest for post-compromise guidance for the rotation of domain secrets. ghst.ly/3u5vOLK
27
41
11,053
Diegolomellini retweeted
18 Oct 2023
I have always wondered how RPC works and how to find them given a windows API, so I worked on a blogpost documenting how I went and uncovered them!
18 Oct 2023
Curious about the inner workings of Windows Authentication APIs? @mhskai2017's new blog post is your guide to demystifying the magic hidden within these APIs, empowering you to unravel the RPC implementations using IDA and the power of static analysis! ghst.ly/46LIm94
23
69
8,899
Alpha 0.3 of HardHat C2 is out, another giant update with around 16k additions & 6k deletions. Includes a ton of bug fixes and new features. Check out the full changelog here docs.hardhat-c2.net/changelo… and try it out here github.com/DragoQCC/HardHatC…
1
25
71
11,244
Diegolomellini retweeted
7 Oct 2023
Pushed a big update to SCCMHunter for my talk at @BSidesPDX this weekend. Some cool new features that lets you remotely perform recon and post exploitation with the AdminService API.
github.com/garrettfoster13/s…
4
55
128
20,865
Diegolomellini retweeted
7 Oct 2023
If you're at #BSidesAugusta, hurry over to Track 3 to hear from @harmj0y & @0xdab0 on the Nemesis project.
Get Nemesis: github.com/SpecterOps/Nemesi…
1
6
8
5,161
Diegolomellini retweeted
6 Oct 2023
Get an introduction to the HardHat C2 framework. Check out @DragoQcc's #BHUSA booth presentation. ➡️ ghst.ly/3Q3UTy3
Get HardHat today: github.com/DragoQCC/HardHatC…
7
15
3,570
Diegolomellini retweeted
5 Oct 2023
Mark your calendar for #SOCON2024
This event will kick off on March 11, 2024 with a day-long summit followed by four days of training sessions. Register for training now to get 25% off full price.
👉 Learn more: specterops.io/so-con.
18
32
9,516
Diegolomellini retweeted
27 Sep 2023
Today, we announced our Purple Team Assessments Service, which is intended to help customers understand the efficacy of their detection capabilities.
Read more at ghst.ly/3EUVRHB
7
35
12,252
Diegolomellini retweeted
25 Sep 2023
The entire SCCM hierarchy is vulnerable to takeover from any primary site because by design, there is no security boundary between sites in the same hierarchy. Check out my new post to learn more about how this can be abused, mitigated, and detected!
posts.specterops.io/sccm-hie…
3
128
290
29,895