Hello everyone !
This weekend I participated at
@_leHACK_
where I did the
#NetExec
workshop animated by
@mpgn_x64
. Here is my writeup for those of you that are interested
Hello everyone ! This weekend I participated to
@_leHACK_
where i could do the CrackMapExec workshop of
@mpgn_x64
. I did a little writeup if you're interested
This weekend I had participate with
@phreaks2600
in the University CTF 2023 from
@hackthebox_eu
and we managed to reach 3rd place out of almost 1,000 teams 🔥 !
I'll be releasing writeups for some challenges on later this week for those interested
I’m pleased to announce that I am Certified Red Team Expert (
#CRTE
) ! 🎉
And as always thanks to
@secnumcloud
for giving me the opportunity to pass this certification.
Next goal : PEN-300: Advanced Evasion Techniques and Breaching Defenses (
#OSEP
) by
@offsectraining
.
Hello everyone, I think that most of you have seen that last week
@mpgn_x64
announced that it was stopping the maintenance of CrackMapExec, this announcement was followed by a lot of discussions and debates about the continuation of the tool.
#NetExec
v1.1 coming soon 👀
And for all those who will be attending cybersecurity conferences in France, don't hesitate to contact me and get some stickers.
New feature in
#NetExec
: S4U2Self and S4U2Proxy support and automation with --delegate and --self
It allows you to abuse KCD with protocol transition and RBCD automatically in NetExec, and use directly all the postex functionalities 🔥
For example with RBCD:
I have just completed the ARTE (AWS Red Team Expert) certification from
@hacktricks_live
🔥
I recommend it to anyone who wants begin AWS pentesting.
For those interested, I plan to post detailed feedback on the
@secnumcloud
blog next week 😁
I’m pleased to announce that I am successfully Certified Azure Red Team Professional (CARTP) !
Thanks to
@AlteredSecurity
&
@nikhil_mitt
for their work on the lab and the course.
Next goal :
#CESP
(Certified Enterprise Security Professional) by
@AlteredSecurity
This is the end of
@defcon
, it was my first and I really enjoyed it!
Thanks again to
@ecole2600
, without them I wouldn't have been able to experience this incredible event 💙!
Kudos to all my french mates I met there 🇫🇷.
I'll be at
@_barbhack_
for those who will be there 🍻.
Hello everyone, I think that most of you have seen that last week
@mpgn_x64
announced that it was stopping the maintenance of CrackMapExec, this announcement was followed by a lot of discussions and debates about the continuation of the tool.
Last week, I took part in the
@offsectraining
's CTF and managed to get 2nd place of the PEN-300 CTF. This gives me the chance to win a 90-day course and a certificate bundle for the PEN-300🔥.
Thanks to Offsec for this very cool CTF, I'm looking forward to the next ones 🥳!
As said in my last tweet here is my writeup for the Umbrella challenge of
@hackthebox_eu
University 2023 CTF. 🟩
This is an Active Directory box covered ADFS, SAML, Grafana, Nextcloud and more ! 😄
Last weekend I gave a talk about ADCS at
#HitchHack2023
.
Thanks to
@hack2g2
team for the organization it was really cool !
Can't wait to come back next year 🔥
Yesterday at the 34th Hack The Box France meetup, I was lucky enough to win a 1 year VIP+ voucher on
@hackthebox_eu
.
And you are lucky because I decided to make you win it.
To participate :
➡️Follow
@rayanlecat
➡️RT + Like the tweet
A big thank to
@_Euzebius
for the initiative!
I’m pleased to announce that I am successfully Certified Enterprise Security Professional (
#CESP
) ! 🎉
A good certification to consolidate my knowledge of
#ADCS
and the research done by
@harmj0y
,
@tifkin_
&
@ly4k_
in their papers / articles.
Next goal :
#CRTE
We're so excited to finally start sending out our brand-new Advanced Threat Emulation: Active Directory coins! Want to earn one? Keep an eye on our events page for our next class!
Being a big fan and user of the tool, I decided to try and organize things a bit to avoid the tool falling into disuse or ending up with lots of forks. If you're interested, I've set up a discord server to exchange ideas and try to get things organized.
Hello !
Je serai présent cette année à la
@defcon
avec
@phreaks2600
.
N'hésitez pas à me contacter si vous y êtes .
Nous organisons un meetup francophone 🇫🇷 le vendredi 11 août à 23h au Las Vegas Strip, vous pouvez nous rejoindre en vous inscrivant ici :
A few months ago I was lucky enough to take part in the
@NorthSec_io
🇨🇦 with
@phreaks2600
. With a little delay, here's a writeup of the Windows track. It was a really good challenge with some pretty fun steps :
🏆 Week-end incroyable à
#InsomniHack
en Suisse!
Fiers d'avoir représenté l'
@ecole2600
et d'avoir terminé 4ème équipe étudiante et 19ème globale. Merci aux organisateurs et aux créateurs de challenges pour cette expérience inoubliable!
#CTF
#Cybersecurity
#Deloitte
The
@NorthSec_io
is over for this year 🇨🇦!
The badges were insane, the workshops were interesting, the CTF was super cool and I got to meet some amazing people ! This was definitely the best cybersecurity conference I've ever attended.
Thanks to
@ecole2600
for the opportunity❤️.
Nous invitons
@rayanlecat
pour une introduction aux attaques sur Kerberos dans un environnement Active Directory.
Ce workshop aura lieu lundi 11 décembre en amphi B001 à l'ENSIBS (Vannes)
Toutes les infos sont en réponses ⤵️
That's a wrap! Thanks for everyone who participated in the community
#CTF
feast of the year! Thanks to all the authors and well played to all participants.
Congratulations to
@DragonSectorCTF
,
@0rganizers
and
@FlatNetworkOrg
for their great performances!
See you next time!
Merci à
@_Euzebius
pour l'accueil. 💚
C'est toujours un plaisir de venir partager et échanger autour de sujets qu'on adore avec la super ambiance des meetups
@hackthebox_eu
France 🇫🇷.
J'espère avoir l'opportunité de revenir présenter auprès de cette super communauté.
Hier 40ème meetup
@hackthebox_eu
🇫🇷.
Présentations des boxes 2 milions et Certifried, suivies d'un retour d'expérience sur les certifications PNPT, OSCP et CPTS.
Une super soirée qui a duré plus longtemps que d'habitude, un bon moment de partage :)
#HTB
#meetup
#CTF
#certifs
Today I took part in the second edition of the
#OteriaCyberCup
with
@phreaks2600
🇫🇷
We finished with a great 2nd place !
Thanks to
@OteriaCS
and all the organizers for the welcome, the event and challenges were very cool.
See you next year 🚀
To all students who contacted us to win a conference/training ticket, check your DMs! 📩
Thank again to
@Synacktiv
and to our trainers for this opportunity 🙏
See you in Paris for the lucky ones!
In
#BHASIA
Briefing "Bypassing Entra ID Conditional Access Like Apt: A Deep Dive Into Device Authentication Mechanisms for Building Your Own Prt Cookie" you will dive into the internal workings of identifying device when authenticating to Entra ID >>
Save The Date ! 😊
Quoi/v1 : DrinkLoveShare 🍻
Quoi/v2 : Fêter les 1 an de stream entre passionnés 🖥️
Quand : Mardi 9 Janvier 📅
Où : Le Carlie - 177 Rue Saint-Martin, 75003 Paris 🗺️
Détail : Chaque rumper recoit une bière 🌱
⚠️ Framadate (need svp !)⚠️
I'v recently updated my Active Directory cheatsheets.
I'v added attacks regarding krbjack, GPOditty, SCCM, RODC pivoting, External Trust non-transitivity bypass, DES attacks, and others. If interested :
- AD :
- AD Python :
Ouverture de la billeterie
#HitchHack2023
Voici le planning de la journée pour la HitchHack 2023 !
Les conférences se dérouleront dans l'amphithéâtre B001 de l'ENSIBS Vannes samedi 16 septembre !
Les inscriptions pour l'événement se font sur le HelloAsso en réponse ⬇️
🔥Hop, première vidéo sur Active Directory, aujourd'hui, on voit (revoit) les bases;
💊Armez vous d'un peu de doliprane pour l'explication de Kerberos (et c'est pas encore la vidéo sur la délégation héhé)
Hf !
👉