EmSec 👾
@EmSec0
Followers
705
Following
3K
Media
18
Statuses
355
RT @0xdf_: Scepter from @hackthebox_eu is all about certificates and exploiting ESC14. I'll do it twice, from different perspectives, with….
0xdf.gitlab.io
Scepter starts with an open NFS share exposing some client authentication certificates. Most have been revoked, but I’m able to crack the password on the other and authenticate with it. That user can...
0
22
0
RT @decoder_it: Regarding #CVE-2025-33073 fixing NTLM/Kerberos reflection attacks via SMB: the patch only covers SMB clients. The "CredMars….
0
20
0
RT @seriotonctf: updated my ADCS cheatsheet.
seriotonctf.github.io
ADCS Attacks with Certipy cheatsheet
0
66
0
RT @rouge_cravate: Exploiting BadSuccessor from A to Z with NT hash of impersonated accounts using bloodyAD v2.1.16..
0
67
0
RT @al3x_n3ff: A new NetExec module just got merged: eventlog_creds🔥. It parses Windows Event ID 4688 logs (from "Audit Process Creation")….
0
81
0
RT @hackthebox_eu: When the world ends, hackers survive ✊.Wanderer, the new lab created by @ippsec, drops you into a post-apocalyptic battl….
0
34
0
RT @decoder_it: I just published a blog post where I try to explain and demystify Kerberos relay attacks. I hope it’s a good and comprehens….
decoder.cloud
While I was reading Elad Shamir recent excellent post about NTLM relay attacks, I decided to contribute a companion piece that dives into the mechanics of Kerberos relays, offering an analysis and …
0
150
0
RT @hackthebox_eu: With the power vested 🪄.There are two new labs coming to the #HackTheBox platforms this week! .🔵 TeamWork, a Sherlock wh….
0
8
0
RT @JamesBerthoty: Here's how the CVE disclosure system works and why MITRE is a big deal in it: .
0
164
0
RT @hackthebox_eu: Training wheels are coming off 🚴.There are two new labs coming to the #HackTheBox platforms this week! .🔴 WhiteRabbit, t….
0
9
0
RT @hackthebox_eu: The #HTB ecosystem just got a lot stronger 💡.We’re thrilled to welcome @vulnlab_eu to our HTB multiverse, further addres….
0
70
0
RT @hackthebox_eu: In a fog? 😶🌫️.There are two new labs coming to the #HackTheBox platforms this week! .🔴 Haze, an #HTB Seasons Machine cr….
0
5
0
RT @al3x_n3ff: The NXCDB of NetExec finally supports the LDAP protocol as well🎉. Long overdue and now finally implemented by @lapinousexy h….
0
41
0
RT @filip_dragovic: This is fun but as long as you have local admin/root on host from where you are RDP-ing you can bypass it by simply cha….
0
35
0
RT @BriPwn: I’m rebranding my YouTube channel a bit. We do purple team weekly, so why not have it in the name. The new channel name is The….
youtube.com
I take cyber security seriously, so I have dedicated this channel to teaching cyber security techniques. I want to teach both the attack and the defense using the purple team approach. The point is...
0
3
0