@hattonsec profile picture
Chris Hatton @hattonsec

Cyber Security Consultant and Researcher. ex @dmuhackers chairman. OSCP, CSTL INF

Joined January 2014
  • Tweets 2,647
  • Following 344
  • Followers 848
365 Photos and videos
Remember the linpeas.sh saga from about a year ago? I’ve finally written it up. The findings include LinPEAS being run as root, during active pentests, on compromised web servers, and even on live production systems. hattonsec.com/a-linpeas-saga…
1
2
387
The post also covers what happened once it became public, how quickly things escalated, and why linpeas.sh didn’t stay up for long after that.
208
Chris Hatton@hattonsec
28 Nov 2024
20
179
3,594
181,831
Chris Hatton@hattonsec
19 Jul 2024
Looking forward to this! #FalCon #Crowdstrike
CrowdStrike
@CrowdStrike
20 Jun 2024
📣 The Fal.Con 2024 session line-up is here. We have 200 sessions this year, including: ⚡ How to Win in the Age of AI-Fueled Adversaries ☁️ Strengthening Cloud Security: Beyond Compliance in the Age of Persistent Threats 👉 Full session list: crwdstr.ke/6015gOKUT
0:10
1
5,799
Chris Hatton@hattonsec
12 Nov 2023
?????
LiveOverflow 🔴
@LiveOverflow
10 Nov 2023
Cleartext passwords in a database is not a security vulnerability
1
8
4,328
Chris Hatton@hattonsec
23 Nov 2022
Passed CSTL INF, happy days! Onwards and upwards 😁
1
9
Chris Hatton@hattonsec
9 Nov 2022
inb4 it was DNS
Rocket Fibre@rocketfibreuk
9 Nov 2022
We are aware of a network issue and working to resolve
2
Chris Hatton@hattonsec
6 Oct 2022
It's been a week now and I can confirm robot vacuum cleaners are 100% worth it. The place has never looked so consistently clean, it's insane. I welcome our cleaning robot overlords.

ALT Vacuumwars Robot Vacuum GIF
12
Chris Hatton@hattonsec
26 Aug 2022
There is a conspiracy around dishwasher salt at the moment, 4 shops and all out of stock for weeks?? #SaltGate #BigSalt
1
Chris Hatton retweeted
Jesse McLaren
@McJesse
13 Aug 2022
WOW. Jaw dropping. FBI says Ned’s School Survival Guide was never formally declassified.
29
3,977
62,608
Chris Hatton@hattonsec
9 Jul 2022
Looks like it's that time again...
3
Chris Hatton@hattonsec
4 Jul 2022
En route to #SOURTourBirmingham 😁
1
3
Chris Hatton retweeted
The Register
@TheRegister
23 Jun 2022
Halfords suffers a puncture in the customer details department reg.cx/44xM?utm_source=twitt…
4
10
I found an IDOR vulnerability in two @Halfords_uk services in January and April that is leaking customer data such as: full name, home address, email, phone number, VRM more. I've tried to responsibly disclose this for over 5 months but have had no real response.
3
7
16
more replies
You can read all the details here: github.com/hattonsec/hattons…

1
3
6
Hopefully we can get this fixed sooner rather than even later.
4
Chris Hatton@hattonsec
19 May 2022
I hate tweets like this but as a last resort... does anyone have a security contact for @Halfords_uk
8
5
Chris Hatton retweeted
Rachael H Funnell@The_RHF
3 Feb 2022
Can't wait to see what everyone spends their £200 rebates on. I'm thinking of using mine to pay off the £200 rebate I have to pay back
465
5,523
38,691
Load more