moovs
@binarymoovs
Followers
27
Following
2K
Media
14
Statuses
3K
Tech - Science - Future - Freedom - CyberSecurity
Joined June 2023
Today we unveil BadSuccessor - a new no-fix Active Directory privilege escalation technique. We will explore the recently introduced dMSA feature, and show how it enables turning a very common, seemingly benign permission, into a full domain take over. https://t.co/k4roTZE36T
3
185
503
If you need to pinpoint which DC made the change to an AD object/attribute you can use: repadmin /showobjmeta dcname objectDN It's a handy place to start; then go inspect the event logs for that DC to get more detail on whatever you're trying to find out.
0
45
215
Show immediate child OUs too (New-Object System.DirectoryServices.DirectorySearcher "(&(objectClass=organizationalUnit)(ou=*para*))").FindAll() | % { $_.Path ; ([ADSI]$_.path).Children|Where SchemaClassName -eq "organizationalUnit" | Select
PowerShell 1 liner to find OUs that match a given pattern - AD PS module not required (New-Object System.DirectoryServices.DirectorySearcher "(&(objectClass=organizationalUnit)(ou=*Citrix*))").FindAll()
0
8
34
The NXCDB of NetExec finally supports the LDAP protocol as well🎉 Long overdue and now finally implemented by @lapinousexy
3
42
218
New Windows zero-day leaks NTLM hashes, gets unofficial patch - @serghei
https://t.co/NIIqEQqaep
https://t.co/NIIqEQqaep
bleepingcomputer.com
Free unofficial patches are available for a new Windows zero-day vulnerability that can let remote attackers steal NTLM credentials by tricking targets into viewing malicious files in Windows...
6
77
213
Broadcom warns of authentication bypass in VMware Windows Tools
bleepingcomputer.com
Broadcom released security updates today to fix a high-severity authentication bypass vulnerability in VMware Tools for Windows.
1
15
42
Cloudflare R2 service outage caused by password rotation error
bleepingcomputer.com
Cloudflare has announced that its R2 object storage and dependent services experienced an outage lasting 1 hour and 7 minutes, causing 100% write and 35% read failures globally.
0
3
10
CrushFTP warns users to patch unauthenticated access flaw immediately
bleepingcomputer.com
CrushFTP warned customers of an authentication bypass security vulnerability and urged them to patch their servers immediately.
0
2
3
Fighting AI Crawlers: Cloudflare Unleashes the AI Labyrinth
securityonline.info
Explore how AI Labyrinth effectively mitigates AI crawler threats by redirecting suspicious bots into a resource-depleting maze.
0
3
11
Been working on this tool for a while now. This tool will be valuable to every hacker in the field.🌟 Can't wait to demo this tool to my students😈
1
8
29
CVE-2025-24071> Windows Explorer automatically initiates an SMB authentication request when a .library-ms file is extracted from a .rar archive, leading to NTLM hash disclosure. The user does not need to open or execute the file... https://t.co/d1myefHndw
github.com
CVE-2025-24071: NTLM Hash Leak via RAR/ZIP Extraction and .library-ms File - 0x6rss/CVE-2025-24071_PoC
4
151
491
📩 Exchange Exploitation - Part 1 (Without Credentials) Explore Exchange exploitation in Game of Active Directory and learn about attacks without valid credentials. https://t.co/pxXdmD9Pvq
mayfly277.github.io
On GOAD v3 Update: A New Addition appear : EXCHANGE! Huge thanks to aleemladha for his pull request and invaluable help in integrating Exchange into the GOAD lab! I’ve been wanting to write an...
2
56
170
Don't rely on GPO alone to block cmd.exe since it's trivial as a non-admin to edit 1 byte in cmd.exe to make it policy proof, or download already hacked - a technique that has worked for 20+ years so use something else to secure it like @GoIvanti Application Control (trusted
5
20
97
Red Teaming and Offensive Security
github.com
一个攻防知识库。A knowledge base for red teaming and offensive security. - Threekiii/Awesome-Redteam
1
59
211