Hacker based in Berlin | Working at @mod0 | parzel.bsky.social | he/him
Joined May 2018
- Tweets 318
- Following 290
- Followers 945
- Likes 707
2 Photos and videos
I will try to move to bsky permanently from now on. A lot of #itsec people are showing up there recently, and I am positive that finally, it will be possible to leave the toxic site Twitter has become. You can find me at parzel.bsky.social, happy to connect there!
1
138
parzel retweeted
8 Oct 2024
During a recent engagement, @Bandrel discovered how an attacker can craft a CSR by using default system certificates. After finding out this method was novel, the team kept digging. Read what they found in our new #blog! hubs.la/Q02SCqpG0
4
126
260
36,222
parzel retweeted
7 Oct 2024
I did not approve of the timing of this release but here it is. Blog coming soon.
github.com/ly4k/Certipy/pull…
3
37
134
24,012
parzel retweeted
7 Oct 2024
Following up on my earlier tweet (x.com/decoder_it/status/1842…) regarding Kerberos relay with SMB server, I've uploaded my quick & dirty version. It's far from perfect, so feel free to improve it! github.com/decoder-it/KrbRel…
4 Oct 2024
Is Kerberos relaying so limited? I'd say no, thanks to @tiraniddo CredMarshalTargetInfo trick. In this case, I'm relaying SMB to HTTP (ADCS) with a modified version of @cube0x0 krbrelay using DFSCoerce and PetitPotam - classic ESC8 attack with Kerberos, no DCOM involved ;)
6
97
243
56,903
During a #redteam at @mod0 we discovered a limited but neat bypass for #printnightmare. I talked to @itm4n about it and he had an indepth look. Read about it here:
itm4n.github.io/printnightma…
#itsec
24
77
9,043
The entire disclosure seems to have been leaked online
gist.github.com/stong/c8847e…
Here is the report and POC
Seems like it's in CUPS. GL;HF
github.com/OpenPrinting/cups…
12
121
947
548,672
parzel retweeted
23 Sep 2024
A big thank you to our Review Committee
@BalthasarMartin @parzel2 @vinulium, Luca Melette and Diana Janetzky. We now have an amazing schedule featuring their favourite talks which you can check out here: bsides.berlin
#BSidesBerlin #appsec #infosec #BSides
5
8
916
parzel retweeted
2 Jul 2024
#BSidesBerlin is back! Will you be joining us this year at @Festsaal on Saturday 26.10?
Our CFP is open until 16.08 👉cfp.bsides.berlin/bsides-ber…
Early Bird Tickets are available until end of July 👉 bsides.berlin
@SecurityBSides @cfp_time
5
8
1,127
parzel retweeted
27 Jun 2024
Today at #Troopers24 we released Certiception – the ADCS honeypot we always wanted to have.
Blog: srlabs.de/blog-post/certicep…
Source code: github.com/srlabs/Certicepti…
Slide deck, including our guide to deception strategy: github.com/srlabs/Certicepti…
2
158
398
32,796
parzel retweeted
20 Jun 2024
Lovely to see the Email RFCs abused to embed a command injection payload in the local-part of the address! Nice work Michael Imfeld & @parzel2
modzero.com/en/blog/beyond_t…
1
41
109
11,278
parzel retweeted
7 Jun 2024
Shells at midnight: Exploiting the flexibility of Email addresses for offensive purposes.
Today we are publishing a new blog post about our disclosure report on #MailCleaner #CVE-2024-3191: modzero.com/en/blog/beyond_t…
@born0monday@chaos.social will also present at @a41con today.
4
10
889
parzel retweeted
15 May 2024
🎟️📢Don't miss your chance to attend or present at BSides Berlin on October 26 in Festsaal Kreuzberg.
Ticket sales and the Call for Papers are NOW OPEN!! bsides.berlin
2
7
12
1,897
parzel retweeted
29 Apr 2024
We identified critical vulnerabilities in MailCleaner. A command injection vulnerability can be exploited by sending an Email. Our report can be found here: modzero.com/en/advisories/mz…
Kudos to chaos.social/@born0monday and chaos.social/@parzel #MailCleaner #CVE-2024-3191 #Infosec
3
8
699
parzel retweeted
1 Mar 2024
Struggeling to get those precious certificates with #certipy and AD CS instances that do not support web enrollment and do not expose CertSvc via RPC? @qtc_de has you covered and added functionality to use DCOM instead of good old RPC #redteaming github.com/ly4k/Certipy/pull…
3
70
150
13,588
We can relay back to the same machine using Kerberos relay instead of NTLM relay. I discovered this attack vector more than a year ago. I will describe it in detail in upcoming Black Hat Asia 2024 blackhat.com/asia-24/briefin… and introduce more interesting attacks.
17
183
585
80,902
parzel retweeted
22 Feb 2024
🇷🇺 Doppelgänger | Russia-Aligned Influence Operation Targets Germany
We have been tracking the activities of the suspected Russia-aligned influence operation network Doppelgänger since late November 2023. Here is what we found... 🧵
sentinelone.com/labs/doppelg…
#threatintel
2
12
32
6,068
parzel retweeted
18 Feb 2024
#threatintel
someone just leaked a bunch of internal Chinese government documents on GitHub
github.com/I-S00N/I-S00N/
218
3,123
13,784
4,448,892
parzel retweeted
9 Feb 2024
I try an avoid this hellsite, but I did a quick dive into sudo in Windows and here are my initial findings. tiraniddo.dev/2024/02/sudo-o…
The main take away is, writing Rust won't save you from logical bugs :)
16
209
478
69,944
Today we release the proof-of-concept exploits for the vulnerabilities we identified in HP #Poly VoIP devices. At the #37C3 we presented how these issues allow an attacker with network access to gain RCE and transform your devices into wiretaps.
github.com/modzero/MZ-23-01-…
2
4
938
A BOF/EXE that changes the ACLs of the current window station and desktop to allow the access to the everyone group #redteam #c2
github.com/parzel/change-des…
2
3
259