RT @NetSPI: Introducing PowerHuntShares 2.0 Release! NetSPI VP of Research @_nullbind introduces new insights, charts, graphs, & LLM capa…

@Bell Is this a standard fiber cabling installation? Running the fiber over my neighbor's driveway?

Just got some nice swag from @vulnlab_eu 😄

RT @AndrewOliveau: CcmPwn is equipped with various modules. The “exec” module runs an AppDomainManager Injection payload for every logged-i…

RT @codewhitesec: Struggeling to get those precious certificates with #certipy and AD CS instances that do not support web enrollment and d…

@MarcOverIP @podalirius_ @OutflankNL @msftsecresponse Pretty sure this is using the Windows Search Service. My own implementation here:

RT @_dirkjan: It's been quiet for a while around bloodhound Python, however I'm happy to share that I am now maintaining the project at my…

RT @splinter_code: Do you want to start the RemoteRegistry service without Admin privileges? Just write into the "winreg" named pipe 👇 http…

@splinter_code I think this only works if the service start type is not disabled, otherwise triggers are inactive.

@reversebrain congrats!

Did Bethesda hire the Microsoft UX team to work on Starfield? This is so shit. Really disappointed with the game so far.

Thanks to the generous folks @bcsecurity @hackthebox_eu @SANSOffensive @sektor7net and @nostarch for sponsoring prizes at the DEF CON Red Team Village CTF!

@rootsecdev @infosecdoc For sure that's at least 20$ right there

@lazzslayer I'm landing this friday. I'll be Vegas'ed out for the next decade after BH/Bsides/Defcon.

You can use the Windows Search Protocol to coerce authentication from hosts running the Windows Search Service (Win10/11 only by default) as a regular domain user. Haven't been able to do WebDAV with it though so usefulness is limited. PoC:

RT @AndrewOliveau: 🔥 Excited to share my latest @Mandiant Red Team blog on "Escalating Privileges via Third-Party Windows Installers" http…

RT @ATeamJKR: Built something to hack. Unfortunately it did not fit on a single box with containers so it's now the first full Linux chain…

RT @ldionmarcil: Outlook for Windows can be tricked into displaying a fake domain, but open another one. Add a <base> tag with a fake domai…