@breakfix profile picture
Matt Johnson @breakfix

Senior Training Architect at @SpecterOps

Joined January 2021
  • Tweets 3
  • Following 16
  • Followers 561
Photos and videos
Matt Johnson@breakfix
11 Dec 2025
Check out our two part blog series with @unsigned_sh0rt following our BlackHat EU talk
SpecterOps@SpecterOps
10 Dec 2025
Wanting more from today's #BHEU talk on SCOM? Check out this two part blog series! 1️⃣ @unsigned_sh0rt maps SCOM’s roles, accounts, & trust boundaries, then shows how attackers can chain insecure defaults into full management group compromise. ghst.ly/3MBPeAW 🧵: 1/2
2
9
2,210
Matt Johnson retweeted
Elad Shamir@elad_shamir
10 Feb 2022
I published a new post about SPN-jacking - an edge case in WriteSPN abuse (pun intended). Check it out: semperis.com/blog/spn-jackin…

SPN-jacking: An Edge Case in WriteSPN Abuse - Semperis

Attackers can manipulate SPN, without obtaining SeEnableDelegation privileges. Read our post on SPN-jacking to learn more.

semperis.com
3
166
351
Matt Johnson@breakfix
13 Apr 2021
Check out my latest blog post detailing the "Airstrike Attack" allowing for FDE bypass and EoP on domain joined Windows workstations (CVE 2021-28316) shenaniganslabs.io/2021/04/1…

Airstrike Attack - FDE bypass and EoP on domain joined Windows workstations (CVE-2021-28316)

By default, domain joined Windows workstations allow access to the network selection UI from the lock screen. An attacker with physical access to a locked device with WiFi capabilities (such as a...

shenaniganslabs.io
11
210
429
Load more