RT @Synacktiv: Microsoft just released the patch for CVE-2025-33073, a critical vulnerability allowing a standard user to remotely compromi….

RT @x33fcon: Got SCCM? You need to hear this! At #x33fcon, @kalimer0x00 will share insights from his SCCM research, including tradecraft fr….

RT @SkelSec: #pypykatz new version 0.6.11 is out on github and pip. Big thanks to all awesome contributors!!.Besides the fixes, the two imp….

RT @Synacktiv: In our latest article, @croco_byte proposes an implementation of a trick discovered by James Forshaw in his research. Discov….

RT @Synacktiv: A few months ago, Microsoft released a critical patch for CVE-2024-43468, an unauthenticated SQL injection vulnerability in….

RT @Synacktiv: We really love relaying authentication: you can now also perform NTLM relaying on SCCM Management and Distribution points th….

Thrilled to see it merged!.Note: some tools may not integrate well (without tweaks) with ntlmrelayx due to, for instance, concurrent LDAP connections, SMB queries before LDAP communications, or starttls. Check this PR comment for details and workarounds:

RT @_dirkjan: Want to run roadrecon, but a device compliance policy is getting in your way? You can use the Intune Company Portal client ID….

RT @Synacktiv: GitLab recently released a patch for the Ruby-SAML / GitLab Authentication Bypass (CVE-2024-45409). Our ninjas @alexisdaniza….

RT @_xpn_: Thanks to @0hexit's PR, DPoP auth support has now been added to CloudNine for Okta which is used in agent versions >3.18.0 \o/ h….

RT @Synacktiv: We just rewrote the AsOutsider part of #AADInternals in Python to enhance compatibility and ease of use in Linux environment….

RT @zyn3rgy: [Tool & Blog release] - smbtakeover, a technique to unbind/rebind port 445 without loading a driver, loading a module into LSA….

RT @Synacktiv: Want to know how we prevented some CI/CD supply chain attacks against Microsoft, FreeRDP, AutoGPT, Ant-Design, Cypress, Exca….

RT @hugow_vincent: I've converted my @sstic talk on #GitHub action exploitation to a series of blogspots with additional details, here is t….

RT @slowerzs: I wrote a blogpost on injecting code into a PPL process on Windows 11, without abusing any vulnerable driver. .

RT @_r_netsec: AWS CloudQuarry: Digging for Secrets in Public AMIs

RT @Synacktiv: In his latest blogpost, @yaumn_ analyzes MDI's detection of PKINIT authentication, explains how to bypass it and releases In….

RT @GrehackConf: Hey folks,. We're back, with a great new logo that's right up there with the weather ❄️🥶. And save the date: this year #G….

RT @Synacktiv: Bored of managing multiple proxychains configurations? @hugoclout developed bbs, a swiss army knife proxy manager for red te….

RT @Synacktiv: Our ninjas, @myr463 and @b1two_, have uncovered various vulnerabilities in Peplink Balance Two devices, including command in….