Thomas Hutchison
@wanderinghacker
Followers
306
Following
2K
Media
169
Statuses
966
Security Engineer โค+๐=๐ Will travel the world for the beautiful game๐๐Opinions are my own.
127.0.0.1
Joined May 2015
Come play in one of two Kubernetes Capture the Flag events we're facilitating at #DEFCON 33! Fri โ Sun: Learning CTF Saturday: Competitive CTF First Place Prize (for a team on-site at DEF CON) is a Bambu Labs A1 Mini 3D printer! https://t.co/TPLudXsKCt
@defcon
#DEFCON33
1
9
14
W00t the release begins ๐. For the last 6 months @mega_spl0it and myself have been looking into DACL-based attacks and detections. Please join us on this journey with our first part (1A)!
Our new #blog post by @mega_spl0it and @4ndr3W6S takes a deep dive into how Active Directory (AD) attribute-based detections can be built and how to identify where an adversary may be hiding. Read the first of this 3-part series now!
5
18
54
If you want to check out my talk from yesterday on exploiting M365 vulns you can watch it here: https://t.co/5OtJOaKG1L This is the "prequel" to what @424f424f and I are releasing at @WWHackinFest in a couple weeks, and includes a few easter eggs.๐ง
7
100
287
Five decades later, you continue to shape our identity. โ๏ธ
13
112
526
Public WiFi: Quick demo for 2 devices on the same network 1. SSLstrip + DNS change leads to user input interception for HTTPS with HSTS bypass 2. DNS spoofing redirects user to attacker controlled website More in upcoming "NetHunter Hacker XIII: Overall guide to MITM framework"
Public WIFI is safe enough to use, without a VPN, for almost all users. And yes, even for online banking.
50
714
3K
justice.gov
0
36
91
Microsoft providing the finest quality C2 channels and supporting signed binaries.
MS Devtunnels is crazy good. Just tested running devtunnel from Azure Cloud Shell, and let me say, this opens up a lot of interesting scenarios ๐๐ https://t.co/WZXO6hn2EB
9
64
306
There are only TEN days left to get your LIMITED EDITION BloodHound CE launch shirt! ALL profits go DIRECTLY to @StJudeResearch Get your shirt here:
1
8
24
New Github repo Arsenal-containers! Moving Arsenal containers into their own repo for automation purposes ๐ฆ https://t.co/f2hfxXVUjP
github.com
Red Team tools containerized. Contribute to sneakerhax/Containers development by creating an account on GitHub.
0
1
6
Kali Linux 2023.3 released with 9 new tools, internal changes - @LawrenceAbrams
https://t.co/gf5zRSHuuA
bleepingcomputer.com
Kali Linux 2023.3, the third version of 2023, is now available for download, with nine new tools and internal optimizations.
2
243
835
Azure Security Resources and Notes https://t.co/yNIsJe18Wl
github.com
Azure Security Resources and Notes. Contribute to rootsecdev/Azure-Red-Team development by creating an account on GitHub.
0
82
197
1
5
21
AzureHunter. A Cloud Forensics PowerShell module to run threat hunting playbooks on data from Azure and O365, by @DarkQuassar
https://t.co/MzVjcWkhih
github.com
A Cloud Forensics Powershell module to run threat hunting playbooks on data from Azure and O365 - darkquasar/AzureHunter
2
109
309
Learning Linux with pictures. I think we need an entire series of these for folks just starting with Linux
3
18
80
Here's how to use our free Community Edition to get an instant list of all TXT records associated with a domain. Filter, order and copy results and pivot through metadata or hash values using a one-click reverse lookup. Sign up for free ๐ https://t.co/IdYNjT5tOe
0
1
1
My next book is finally in early-access at @nostarch, with the goal for release at the end of 2023. More details are available at https://t.co/lDUMjK0IzB
19
202
903
Come be a contestant in my all new multiple choice game show, Hacker Charlatan! Premiering at @BlueTeamCon this weekend. You don't want to miss it! #NoCharlatans
5
16
65