RT @Synacktiv: In our latest article, @croco_byte proposes an implementation of a trick discovered by James Forshaw in his research. Discov…

RT @Synacktiv: A few months ago, Microsoft released a critical patch for CVE-2024-43468, an unauthenticated SQL injection vulnerability in…

RT @Synacktiv: We really love relaying authentication: you can now also perform NTLM relaying on SCCM Management and Distribution points th…

Thrilled to see it merged! Note: some tools may not integrate well (without tweaks) with ntlmrelayx due to, for instance, concurrent LDAP connections, SMB queries before LDAP communications, or starttls. Check this PR comment for details and workarounds:

RT @_dirkjan: Want to run roadrecon, but a device compliance policy is getting in your way? You can use the Intune Company Portal client ID…

RT @Synacktiv: GitLab recently released a patch for the Ruby-SAML / GitLab Authentication Bypass (CVE-2024-45409). Our ninjas @alexisdaniza…

RT @_xpn_: Thanks to @0hexit's PR, DPoP auth support has now been added to CloudNine for Okta which is used in agent versions >3.18.0 \o/ h…

RT @Synacktiv: We just rewrote the AsOutsider part of #AADInternals in Python to enhance compatibility and ease of use in Linux environment…

RT @zyn3rgy: [Tool & Blog release] - smbtakeover, a technique to unbind/rebind port 445 without loading a driver, loading a module into LSA…

RT @Synacktiv: Want to know how we prevented some CI/CD supply chain attacks against Microsoft, FreeRDP, AutoGPT, Ant-Design, Cypress, Exca…

RT @hugow_vincent: I've converted my @sstic talk on #GitHub action exploitation to a series of blogspots with additional details, here is t…

RT @slowerzs: I wrote a blogpost on injecting code into a PPL process on Windows 11, without abusing any vulnerable driver.

RT @_r_netsec: AWS CloudQuarry: Digging for Secrets in Public AMIs

RT @Synacktiv: In his latest blogpost, @yaumn_ analyzes MDI's detection of PKINIT authentication, explains how to bypass it and releases In…

RT @GrehackConf: Hey folks, We're back, with a great new logo that's right up there with the weather ❄️🥶 And save the date: this year #G…

RT @Synacktiv: Bored of managing multiple proxychains configurations? @hugoclout developed bbs, a swiss army knife proxy manager for red te…

RT @Synacktiv: Our ninjas, @myr463 and @b1two_, have uncovered various vulnerabilities in Peplink Balance Two devices, including command in…

RT @_dirkjan: It's been quiet for a while around bloodhound Python, however I'm happy to share that I am now maintaining the project at my…

RT @mariuszbit: ☢️ClickOnce + AppDomain Manager Injection (aka signed EXE + DLL sideloading) is the new Initial Access Hotness❤️ Check out…

RT @hexacon_fr: Last sponsor we want to introduce is a special one: it's @Synacktiv, the company organizing #HEXACON2023. Leader in offen…