Init1Security
@init1security
Followers
7
Following
558
Media
1
Statuses
110
Elevating security with expert offensive strategies
Long Beach
Joined October 2024
RT @dmcxblue: Back from PTO and back on my Azure vulnerable lab project Function Apps, Runbooks, VMs, DBs, SPNs & more. Built to learn Azur….
github.com
An HTA Application which builds Azure (Entra) Scenarios for Red Team Simulations - dmcxblue/AzureStrike
0
38
0
RT @mbrg0: we hijacked microsoft's copilot studio agents and got them to spill out their private knowledge, reveal their tools and let us u….
0
907
0
RT @dmcxblue: New? Initial Access maybe, yep we all heard of WSL and it's great integration with Windows you can build "WSL" file extension….
0
27
0
RT @SEKTOR7net: Bypassing AMSI with your own custom COM interfaces inside CLR process - an excellent piece by Joshua Magri (@passthehashbrw….
0
70
0
RT @OtterHacker: Okta chained with Azure with auto MFA subscription for Okta and frame-buster bypass to perform Bitb !. Evilginx is really….
0
53
0
RT @dmcxblue: OK now I can reply to Email's, but the Font doesn't change more print() statements to see what's going on!!.#redteam
https://….
0
1
0
RT @OtterHacker: Here is the article explaining the different steps to create the Evilginx phishlet ! .
riskinsight-wavestone.com
How to use a custom phishlet for Okta and Azure to capture sessions, credentials, and register a new MFA device in a single operation, all while bypassing IdP protections and MFA mechanisms.
0
53
0
RT @C5pider: Introducing Havoc Professional: A Lethal Presence. We’re excited to share a first look at Havoc Professional, a next-generatio….
infinitycurve.org
An introduction to Havoc Professional and Kaine-kit, exploring the advanced features and capabilities that make them lucrative for modern security professionals.
0
184
0
RT @dmcxblue: Building tools for Azure just made me realize:.1.- Azure is filled with undocumented endpoints and huge amount of resources.2….
0
5
0
RT @domchell: @vxunderground is one of the best community projects going, that's why we're (@MDSecLabs) are happy to sponsor them again for….
donorbox.org
Hello and thank you for visiting our donation page.vx-underground, acting as the successor to the legendary vxHeavens, is dependent on donors to continue to survive as well as pay individuals who...
0
3
0
RT @mrd0x: Finally had some time to publish these blogs. Enjoy!. Spying On Screen Activity Using Chromium Browsers..
0
185
0
RT @akamai_research: Today we unveil BadSuccessor - a new no-fix Active Directory privilege escalation technique. We will explore the rece….
0
182
0
RT @0xabc0: I’ve developed a Binary Ninja plugin to load encrypted riscy-business bytecode. It locates the encryption key, decrypts the byt….
0
43
0
RT @al3x_n3ff: A new NetExec module just got merged: eventlog_creds🔥. It parses Windows Event ID 4688 logs (from "Audit Process Creation")….
0
82
0
RT @dmcxblue: Ashley now builds winget files and VSIX files for Initial Access making it for 25 files in total and 5 file types for captu….
0
2
0
RT @dmcxblue: Finally jumped on this Ai Red Team train and I am blown away by the results used and MCP Server to communicate to a simple C….
0
56
0