Matt Nelson
@enigma0x3
Followers
33K
Following
3K
Media
121
Statuses
5K
@specterops | Enjoys abusing features | https://t.co/aN1kcQxRJt
Indianapolis, IN
Joined January 2011
[Blog] CVE-2023–4632: Local Privilege Escalation in Lenovo System Updater
posts.specterops.io
Version: Lenovo Updater Version <= 5.08.01.0009 Operating System Tested On: Windows 10 22H2 (x64) Vulnerability: Lenovo System Updater…
0
63
165
RT @_wald0: In this blog post I explain the fundamental building blocks, vocabulary, and principles of attack graph design for BloodHound:….
specterops.io
TL;DR OpenGraph makes it easy to add new nodes and edges into BloodHound, but doesn’t design your data model for you. This blog post has everything you need to get started with proper attack graph...
0
34
0
RT @SpecterOps: Red teamers know the drill: endless file churning, hunting for passwords & tokens. 🔍. Meet DeepPass2, our new secret scanni….
specterops.io
Discover DeepPass2 - a secret scanning tool combining BERT-based model and LLMs to detect free-form passwords, and other structured tokens and secrets with high accuracy.
0
44
0
RT @SpecterOps: Entra Connect sync accounts can be exploited to hijack device userCertificate properties, enabling device impersonation and….
specterops.io
How Entra Connect and Intune can be abused via userCertificate hijacking to bypass conditional access and compromise hybrid domains
0
59
0
RT @JustinKohler10: Hmmm, is that an attack path from #Azure to code commit access in #GitHub? Join us Thursday to hear about the future o….
0
5
0
RT @jaredcatkinson: 🚨 Challenge Time! 🚨. Be the first to publish a BloodHound OpenGraph extension and get a FREE seat at an upcoming Specte….
0
6
0
RT @_Mayyhem: I'm SO hyped to finally make MSSQLHound public! It's a new BloodHound collector that adds 37 new edges and 7 new nodes for MS….
0
202
0
RT @jasonjfrank: BloodHound 8.0 is here. A big leap forward in identity security prevention. Now we’re able to model attack paths across….
0
8
0
RT @JustinKohler10: Is that attack paths in #1Password via #BloodHound? . Learn more about the future Attack Path Management and BloodHound….
0
19
0
RT @SpecterOps: Identity Security is the next great challenge in #infosec. Our State of Attack Path Management report covers:. ➡️ The role….
0
3
0
RT @SpecterOps: BloodHound v8.0 is here! 🎉. This update introduces BloodHound OpenGraph, revolutionizing Identity Attack Path Management by….
0
59
0
RT @SpecterOps: Big updates are coming to BloodHound! . Join our webinar July 31 to hear from @JustinKohler10, @StephenHinck, @_wald0 & @ja….
0
6
0
RT @jaredcatkinson: Looks like BloodHound has picked up the scent of something new :) . Join us Thursday to see where the trail leads. http….
0
29
0
RT @_logangoins: My first @SpecterOps blog!. Ever wanted to collect Active Directory information from LDAP for a Red Team?. Using LDAP's mo….
specterops.io
Learn how to perform stealthy recon of Active Directory environments over ADWS for Red Team Assessments
0
100
0
RT @KlezVirus: Had some time and decided to take a shot at Fabian’s RAITrigger project. After a look into the RPC internals, I put together….
github.com
Local SYSTEM auth trigger for relaying - X. Contribute to klezVirus/RAIWhateverTrigger development by creating an account on GitHub.
0
71
0
RT @SpecterOps: Social engineering has entered the AI era. Join @FKasler, Kieran Croucher, Rebecca Allor & Max Andreacchi at their #BHUSA….
0
2
0
RT @SpecterOps: 🔴 Red and blue teams, this one's for you. 🔵. LudusHound bridges BloodHound Attack Paths with lab automation by creating a f….
0
79
0
RT @SpecterOps: What can you expect next from BloodHound? 👀. Join @JustinKohler10 & @StephenHinck as they chat with @_wald0 & @jaredcatkins….
0
4
0
RT @SpecterOps: Introducing the BloodHound Query Library! 📚. @martinsohndk & @joeydreijer explore the new collection of Cypher queries desi….
specterops.io
The BloodHound Query Library is a community-driven collection of BloodHound Cypher available at https://queries.specterops.io
0
113
0
RT @harmj0y: Thank you so much to @x33fcon and its organizers for an awesome experience! @tifkin_ and I had a blast talking about the new N….
github.com
An offensive data enrichment pipeline. Contribute to SpecterOps/Nemesis development by creating an account on GitHub.
0
68
0
RT @_logangoins: I'm super happy to announce an operationally weaponized version of @YuG0rd's BadSuccessor in .NET format! With a minimum o….
github.com
SharpSuccessor is a .NET Proof of Concept (POC) for fully weaponizing Yuval Gordon’s (@YuG0rd) BadSuccessor attack from Akamai. - logangoins/SharpSuccessor
0
169
0