I'v recently updated my Active Directory cheatsheets. I'v added attacks regarding krbjack, GPOditty, SCCM, RODC pivoting, External Trust non-transitivity bypass, DES attacks, and others. If interested :.- AD : - AD Python :

I have just finished an update on WDSFinder, right before my rump at @WineRump : WDSFinder now supports LDAPS with Channel Binding, and LDAP with Session Signing enforced!.The code may also prove useful for those trying to use these protocols in Rust.✌️.

Blazing-fast image creation – using just your voice. Try Grok Imagine.

See you there 🤞.

Thanks @SentinelOne for the gift 😄

RT @C5pider: Introducing Havoc Professional: A Lethal Presence. We’re excited to share a first look at Havoc Professional, a next-generatio….

Additionally, I have coded a little tool to automate the detection of these shares:

Some weeks ago, @TrustedSec has posted a really interesting blog post about the MDT shares, and credentials that can be found inside. But one question remained unanswered: where are they? I have tried to answer this question:.

Currently, if this patch is not deployed in an Active Directory, anyone with a user account is able to takeover any assets, except for DC, by default!.

Things are getting serious!.

RT @_atsika: If you thought phishing was now ineffective, you may have missed something 👀. My latest post highlights the advanced tactics u….

I've just completed the @MalDevAcademy Malware Development Course. The course presents modern techniques for bypassing security solutions, low-level development and evasion. I would totally recommend this course to Red Team operators requiring a high level of discretion!.

RT @_nwodtuhs: Kerberos relay on The Hacker Recipes, brought to you by @BlWasp_ 💪

Just finished to refactor my network #pivoting cheatsheet!.If you are in an internal engagement, and you're stuck on a pivot, perhaps the solution will lie there:.

Following the recent @Synacktiv 's article about abusing WebClient authentications from multicast poisoning, I have made a quick PR on Responder to simplify the setup:

RT @pentest_swissky: Make Bloodhound Cool Again: Migrating Custom Queries from Legacy BloodHound to BloodHound CE.

RT @M4yFly: New Active Directory Mindmap v2025.03! 🚀. 📖 Readable version: 🔧 Now fully generated from markdown file….

RT @al3x_n3ff: This looks off to you? Yeah. In the default configuration, NFS exposes THE ENTIRE FILE SYSTEM and not only the exported d….

RT @Synacktiv: In our latest article, @l4x4 revisits the secretsdump implementation, offering an alternative avoiding reg save and eliminat….

RT @Synacktiv: Following the release of IPSpinner last week, now is the time to unveil CaptainCredz! Perform advanced, fine-grained passwor….

An interesting package just arrived at home! 👀. I'm starting to contribute to the DVID project by writing new trainings, and working on the wiki page. 🚀.If you are interested IoT security, check it out !.

Pretty interesting article to start digging into Intune !.