Joined October 2010
- Tweets 92
- Following 358
- Followers 616
- Likes 392
10 Photos and videos
Michael Kruger retweeted
2 Apr 2024
The fact that @AndresFreundTec didn't just write the whole xz thing off as "It's probably DNS" is honestly amazing.
2
8
821
Michael Kruger retweeted
14 Oct 2023
Had a blast climbing Norwegian 🇳🇴mountains with some amazing people, @oleavr and @_cablethief !
1
2
37
3,598
Michael Kruger retweeted
31 Jul 2023
My next book is *The Internet Con: How to Seize the Means of Computation.* It's a recipe to disenshittify the web and bring back the old good internet. The book is from @VersoBoooks, but the #audiobook is from me - because Amazon refuses to sell it:
kickstarter.com/projects/doc…
1/
ALT My forthcoming book 'The Internet Con: How to Seize the Means of Computation' in various editions: Verso hardcover, audiobook displayed on a phone, and ebook displayed on an e-ink reader.
36
706
2,034
1,768,638
Michael Kruger retweeted
18 Aug 2023
Every once in a while I'm reminded that dnsmasq, a lightweight DNS and DHCP server that's bundled into *almost every IOT thing and Linux distro*, is a hobby project maintained by one guy in the UK named Simon.
Nobody pays him and he doesn't get near the thanks he deserves.
45
666
5,540
457,373
Michael Kruger retweeted
12 Aug 2023
A morning @defcon run with @_cablethief and Jaco to The Mill (for those who remember Defcon at the Riv). Even met @elkentaro on the way.
1
3
16
1,843
30 Jun 2023
A quick Docker hostapd-mana RADIUS service for capturing creds using an external device:
github.com/sensepost/berate_…
Bonus: Certificates with Lego and CF DNS are so convenient
go-acme.github.io/lego/usage…
Bonus Bonus: join us at BH for further WiFi shenanigans
blackhat.com/us-23/training/…
1
26
38
7,181
18 May 2023
Excited to teach wireless hacking and try to convince more people that using wpa_sycophant is easier than it seems (most of the time 😝).
The airwaves are constantly abuzz with signals.📶Wondering how to make sense of the 2.4 & 5GHz Wi-Fi frequency ranges?
Come join our esteemed Wi-Fi training at #BlackHatUSA
Visit ow.ly/Xmru50NHg4o for more info on the course & for bookings
🐦 Early bird tickets end 26 May
17
28
3,445
Michael Kruger retweeted
31 Mar 2023
The RID500 Admin account doesn't benefit from Protected User Group restrictions. This is a MS WONTFIX & means you can authenticate as Admin using RC4 KRB or perform any KRB delegation attack if you impersonate the RID500 Admin. The latest find by @Defte_
sensepost.com/blog/2023/prot…
3
87
167
33,276
Michael Kruger retweeted
27 Mar 2023
Another 0xC0FFEE session tonight with two guest speakers:
Jeandre Mitton talking about using Pre/Post Scripts with Postman for CAPTCHA bypass
and
@leonjza talking about the LightNeuron malicious mail transport agent he built for MITRE ATT&CK purple teaming.
1/2
3
7
15
1,952
Michael Kruger retweeted
30 Sep 2022
Struggling to proxy your offensive tools (*cough, Windows, cough*)? See how @_cablethief uses WireGuard and tun2socks to make remote networks available via a network route (from any device or container), over SOCKS! sensepost.com/blog/2022/wire…
4
90
245
Michael Kruger retweeted
12 Aug 2022
Yeah! @defcon wifi fixed this. Plus wpa_supplicant can do leaf cert validation these days too!
7 Aug 2018
5/14 If you just validate on CA, then I can buy a DigiCert signed cert, and your wifi client will happily accept that as valid. Defcon's Linux config is vulnerable to this.
3
4
28 Nov 2021
Finished showing off ppp_sycophant to @athackcon arsenal. Really enjoying the conference and Saudi!
@ToolsWatch
github.com/sensepost/ppp_syc…
2
22
Michael Kruger retweeted
26 Nov 2021
The crew! @athackcon has been amazing. Saudi has been amazing. Training's pretty darn good. Conference has a great line up. Jason is one happy dude. Thanks @sensepost_train @orangecyberdef @sensepost @athackcon @SAFCSP
24 Nov 2021
3
5
33
Michael Kruger retweeted
24 Nov 2021
Good luck to all the trainers at @athackcon in #SaudiArabia!
To the @sensepost crew - may it be a great kickstart to getting back to in person training. Smash it!
#atHackcon #BlackHat #orangecyberdefense
1
6
12
16 Sep 2021
Awesome! My two tools berate_ap and wpa_supplicant have made it into Kali :D!
kali.org/blog/kali-linux-202…
My writeup from 2019 for some context:
sensepost.com/blog/2019/peap…
7
15
49
Michael Kruger retweeted
5 Aug 2021
🎉We're super excited to publicly release assless-chaps, our super fast MSCHAPv2 cracking tool github.com/sensepost/assless…
Our DEF CON @rfhackers Village talk with @_cablethief & me explaining it is out youtube.com/watch?v=lm7Cuktp…
Our new hashcat modes 27000/27100 have been merged too!
8
88
189
Michael Kruger retweeted
5 Aug 2021
.@_cablethief found the perfect shirt on Amazon for our talk. So I bought it for him, sort of. amazon.com/Ask-About-Assless…
5 Aug 2021
🎉We're super excited to publicly release assless-chaps, our super fast MSCHAPv2 cracking tool github.com/sensepost/assless…
Our DEF CON @rfhackers Village talk with @_cablethief & me explaining it is out youtube.com/watch?v=lm7Cuktp…
Our new hashcat modes 27000/27100 have been merged too!
1
3
19
Michael Kruger retweeted
1 Aug 2021
A lot of the time, when I have a writing deadline, I procrastinate with code. With LaTeX I can do both at the same time.
10
43
318
Michael Kruger retweeted
29 Jul 2021
Here are my notes on reverse challenges for the HTB Business CTF 2021. My solution on Ghosty will be soon.
github.com/Titanexx/CTF-Writ…
4
12
Michael Kruger retweeted
25 Jul 2021
Thats a wrap for the @hackthebox_eu Business CTF 21. We played as the @orangecyberdef / @sensepost team and placed 5th! I'm super proud of the team, and all the hard pwntime they put it! Get some zzz's @felmoltor @JCoertze @TH3_GOAT_FARM3R @Titanex8 @_cablethief @gav1no_ @gmilte!
ALT HackTheBox Business CTF 2021 5th place for the Orange Cyberdefense team!
9
11
56