Joined March 2015
- Tweets 888
- Following 438
- Followers 160
- Likes 1,882
19 Photos and videos
24 Feb 2021
Hey @DrAzureAD .. Great 'new phishing technique' blog! I wonder, if we change the values to be for O365, will you get tokens that will allow login with a browser (by changing cookies) or is it all bound to device auth via an API - non GUI interactive?
1
2
24 Feb 2021
I am thinking something like this:
$body=@{
"client_id" = "bc59ab01-8403-45c6-8796-ac3ef710b3e3"
"resource" = "outlook.office365.com"
}
1
1
RootAccess retweeted
18 Jun 2019
Have creds to a network? Need help finding sensitive files and passwords?
1) git clone github.com/SpiderLabs/scaven…
2) python3 ./scavenger.py smb -t 10.0.0.10 -u administrator -p Password123 -d test.local
trustwave.com/en-us/resource…
5
194
522
Short blog and POC code for CVE-2019-1040 (patched last Tuesday). Combining this vulnerability with the SpoolService bug and Kerberos delegation means: any AD user to Domain Admin; RCE on unpatched hosts; possible over Forest trusts. dirkjanm.io/exploiting-CVE-2… TL;DR: GO PATCH!
20
553
792
RootAccess retweeted
9 May 2019
API Penetration Testing:-
blog.secureideas.com/2019/03…
blog.cobalt.io/pen-testing-i…
redteamsecure.com/api-enumer…
rarefied.co/api-penetration-…
peerlyst.com/posts/resource-…
youtube.com/watch?v=43G_nSTd…
pentestgeek.com/burp-suite/p…
github.com/mingrammer/api-se…
soapui.org/rest-testing/gett…
templarbit.com/blog/2018/01/…
1
227
527
RootAccess retweeted
25 Feb 2019
Do you want to #exploit misconfigured #Splunk Universal Forwarders (HTTPS/8089)? 💣
I offer you two tools for Remote Code Execution #RCE and Local Privilege Escalation #LPE. Python and C# 😎
📄 clement.notin.org/blog/2019/…
👨💻 github.com/cnotin/SplunkWhis…
5
315
558
RootAccess retweeted
20 Feb 2019
Get a list of IPs connected via #RDP so far
PS C:\> Get-WinEvent -Log 'Microsoft-Windows-TerminalServices-LocalSessionManager/Operational' | select -exp Properties | where {$_.Value -like '*.*.*.*' } | sort Value -u
#sysadmin #PowerShell #audit #blueteam
1
119
347
RootAccess retweeted
13 Nov 2018
Have you checked your PSReadline history lately? Do you know it stores the commands in clear-text and is persistent across reboots? This is on a Domain Controller. #PowerShell #RedTeam
14
282
607
RootAccess retweeted
6 Oct 2018
Slides from my #DerbyCon talk "From Workstation to Domain Admin..." are now on ADSecurity.org.
Slides:
adsecurity.org/?page_id=1352
Talk Video: youtube.com/watch?v=Wdbm2_1t…
4
266
535
7 Oct 2018
Well said :D
4 Oct 2018
If you are a vendor that has a public bug bounty program on BugCrowd or HackerOne, and you require researchers to purchase your products in order to find bugs for you, you suck.
RootAccess retweeted
28 Sep 2018
CVE-2018-17182 - PoC
New Linux Kernel ( 3.16 - 4.18.8.) - Privilege Escalation
#infosec #pentest #vulnerability #exploitDev bugs.chromium.org/p/project-…
3
127
200
RootAccess retweeted
7 Sep 2018
Blogpost about a new #persistence technique I discovered abusing the Appx/UWP debugger. Technique is not shown by #Autoruns and runs commands at logon of the user. A simple registry key is all that is needed.
Enjoy!
#RedTeam #DFIR #Pentest #Blogpost
oddvar.moe/2018/09/06/persis…
8
323
521
RootAccess retweeted
21 Aug 2018
Here is my write up on how I discovered and exploited a privilege escalation bug affecting Windows 10, Server 2016, and Visual Studio (CVE-2018-0952): atredis.com/blog/cve-2018-09…
6
458
827
RootAccess retweeted
6 Feb 2018
This is going to be some great insight into getting a handle on your AD security posture. x.com/_wald0/status/96094858…
6 Feb 2018
This Thursday: @CptJesus and I present, "How To Build Adversary Resilience Into Your Active Directory Environment". Register here: brighttalk.com/webcast/15713…
18
29
RootAccess retweeted
27 Jan 2018
Stack Based Buffer Overflows on x64 (Windows)
#exploitdev #infosec #pentest nytrosecurity.com/2018/01/24…
9
10
RootAccess retweeted
27 Jan 2018
GPO Vs Applocker Restrictions goo.gl/qdB7Z5 presented at @nullDubai Jan’18 Meet. Learnt lot from @Oddvarmoe @ipurple @redcanaryco blogs.
2
15
16
RootAccess retweeted
27 Sep 2017
Good current overview of Sysmon and the SysmonView 3rd-party log analysis/visualization tool x.com/nader_shalabi/status/9…
17 Sep 2017
This article did a better job describing #Sysmon View than I did
fwhibbit.es/sysmon-the-big-b…
1
14
52
RootAccess retweeted
14 Sep 2017
This post on Event forwarding was really useful - blogs.technet.microsoft.com/… - Thanks @jepayneMSFT for sharing - Was not aware of NetworkSvc
45
66
RootAccess retweeted
30 Aug 2017
The updated 1-page Malware Analysis Cheat Sheet is now available, including the latest tools and techniques: zeltser.com/malware-analysis…
2
362
544
RootAccess retweeted
2 Sep 2017
Jumping Network Segregation with RDP
rastamouse.me/2017/08/jumpin…
Shout-out to @gentilkiwi for DPAPI magic
6
395
603