Olivia
Online
Adrian Furtuna
@AdrianFurtuna
Founder of Ethical hacker.
Joined October 2012
70 Following
103 Followers
150 Posts
OWASP has released their Autonomous Penetration Testing Standard.
I have not read it yet. Anyone else look at this?
https://t.co/MewKPc1syG
0-click RCE in FuelCMS. Kudos to
@pentesttoolscom Offensive Security Reseach Team!
https://t.co/Ih0zBdq6Uf
🆕Recent additions to https://t.co/c2bs1AaVPZ:
• iscsicpl.exe for DLL exec+UAC bypass
• eudcedit.exe for UAC bypass
• reset.exe/change.exe/query.exe for proxy exec
• pixtool.exe/applauncher.exe/mpiexec.exe for dev tool proxy exec
⭐Nearly 8,000 GitHub stars - thank you all!
Turns out my #PHRACK article is live! 🔥
> The Art of PHP — My CTF Journey and Untold Stories!
Kinda a love letter to those CTF players & PHP nerds! Hope all the credit goes to the right ppl. Also huge thanks to @0xdea for not forgetting me, @guitmz for the edits, and the @Phrack crew for keeping it real! 🎉
https://t.co/BMCLlHti7q
Who to follow
ECSC_TeamRomania
@ECSC_Romania
We are the official account of European Cyber Security Championship - Romania. You can call us Team Romania.
Lucian Nitescu 🇷🇴
@LucianNitescu
Red Team Tech Lead / Senior Penetration Tester at Bit Sentinel, CTF Organizer at @DefCampRO, Bug Bounty Hunter at @Bugcrowd and @Hacker0x01
DefCamp
@DefCampRO
Building valuable, hands-on learning experiences for 2000+ #cybersecurity specialists from all over the world.
Join us to educate, secure & change the world!
We’re excited to share how we do attribution within @Unit42_Intel and I’m extremely proud of the team for putting in the work behind the scenes to make this happen.
https://t.co/THLNcUnazI
Microsoft’s Digital Crimes Unit (DCU) shares the insider story of the successful global takedown of Lumma Stealer—a stealthy, customizable malware that quietly infected nearly 400,000 Windows devices worldwide, stealing passwords and sensitive data. https://t.co/OvmXwgpLTG
In the past, you had to:
phish a user, drop malware, escalate privileges, pivot to servers, evade EDR, dump creds, move laterally, exfiltrate quietly, clean up, leave a backdoor.
Today, you just:
phish a user, steal an OAuth token, access everything from anywhere.
Cloud breaches aren’t hacks. They’re logins.
Introducing MSFTrecon -
MSFTRecon is a reconnaissance tool designed for red teamers and security professionals to map Microsoft 365 and Azure tenant infrastructure. It performs enumeration without requiring authentication, helping identify potential security misconfigurations and attack vectors.
https://t.co/LYXjnOGIoF
The results are in! We're proud to announce the Top ten web hacking techniques of 2024! https://t.co/XHPEeqPQLR
Exposed DeepSeek database leaking sensitive information, including chat history : https://t.co/RxOpwTOP9G credits @galnagli
🧵 My Key Takeaways from counter-ransomware activities in 2024 🔍
Read the blog for more details:
https://t.co/Fl9sQ3Rzu2
#cybercrime #ransomware #lockbit
👀 DefCamp 2024 felt like scanning a whole range of IPs - each moment unique, some wide open, others hidden, all worth exploring.
▶️ Hit play and dive into the moods we scanned at DefCamp - every bit as rich and powerful as the tools we create.
#ethicalhacking
The slides @alisaesage created for this past Saturday's @offby1security stream on fuzzing are now available. The link is in the video description here: https://t.co/tl77pinbdd
Lots of people are talking about the new tool "Lemma" by @defparam, but fewer are discussing why.
➡️ https://t.co/UPrk3J07RT
Lemma lets you "proxy" tools through Lambda, allowing you to distribute tool workloads. This enables you to:
1⃣ Bypass CDN WAFs via the Lambda IP ranges
2⃣ Distribute tool runs to make them faster by dividing wordlists and executing them in parallel
It's a ShadowClone substitute and also has a browser interface 🙀 Great for all offsec peeps; red team, bounty, pentest.
What's up with #RegreSSHion?
David, one of our security researchers, rounded up all the key details:
https://t.co/abU2XWVcj6
Plus, we've added detection for CVE-2024-6387 to our Network Scanner (see a sample finding in the next tweet):
Top 5 Trending CVEs:
1 - CVE-2024-5806
2 - CVE-2024-34102
3 - CVE-2024-23958
4 - CVE-2024-37032
5 - CVE-2024-21338
#cve #cvetrends #cveshield #cybersecurity
https://t.co/4Fua3CAN6W
Looking for a *highly accurate* web app scanner?
We're lifting the hood on our Website Scanner to show you:
💪why it's a powerful DAST tool
✅its 3 running options
🕷️available Spidering approaches
🎯how to scan behind login pages & lots more:
https://t.co/oeapCssAAc
#OffensiveCon24 videos are now up! https://t.co/y6Gh83WwNI
XSS in PDF.js! I think this is going to cause some chaos both client-side and server-side... really nice finding by @CodeanIO
https://t.co/OytEvLGzVr
⚡️0-Day Insights: Google Chrome "actively exploited" bug chain on Viz & v8-wasm (May 2024) https://t.co/2Tsf1zBgXK (by @alisaesage)
Last Seen Users on Sotwe
مقاطع خليجي🇸🇦🔞
Seen from Saudi Arabia
Pemuas nafsu binor
Seen from Indonesia
tek mi
Seen from Netherlands
hijab 5
Seen from Turkey
TIGER TOP
Seen from France
مـحـ͜͡تـوٰوٓوٰىٔٓ ٱلُــ‘͜͡ـعـِـِِــِــ͜رب 🔥
Seen from Algeria
YoSS Big ASS
Seen from Chile
夫妻的春天
Seen from Japan
Alien4646
Seen from Malaysia
Achiimm
Seen from Indonesia
Trends for you
Most Popular Users
Elon Musk 
@elonmusk
240.3M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
109.7M followers
Narendra Modi
@narendramodi
106.9M followers
Rihanna
@rihanna
97.4M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.7M followers
KATY PERRY
@katyperry
87.2M followers
Taylor Swift
@taylorswift13
81M followers
Lady Gaga
@ladygaga
72.6M followers
Kim Kardashian
@kimkardashian
69.6M followers
Virat Kohli
@imvkohli
69.1M followers
YouTube
@youtube
68.6M followers
Bill Gates
@billgates
63.6M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61.8M followers
X
@x
60.9M followers
Selena Gomez
@selenagomez
60.3M followers