Sotwe logo Sotwe logo
ExAllocatePool2's profile banner image
ExAllocatePool2's profile image

sora

@ExAllocatePool2

O'Lord! I Have My Doubts
Joined March 2017
707 Following
665 Followers
2.6K Posts
ExAllocatePool2's profile image
sora @ExAllocatePool2
@__9 eu nao sei oq aconteceu mas o copo mudou de cor 😵‍💫
1
1
0
0
126
ExAllocatePool2  retweeted
HakaiOffsec's profile image
Hakai Offsec Verified account @HakaiOffsec
Eh nesse final de semana o Guilherme nos representou na BSidesSP – na Red Team Community, falando sobre LSASS Dump: fugindo do clássico. Abordando uma situação real onde foi preciso burlar o EDR para realizar a leitura da memória de um dos processos mais monitorados do Windows. Foi exibido como um atacante pode explorar métodos alternativos para realizar o ataque de LSASS Dump, explorando APIs menos documentadas e evitando o uso da clássica “MiniDumpWriteDump”. Onde foi ilustrado trechos de códigos utilizados durante o engagement. E o Guilherme Carneiro @neos1an quem é? Ele Pentester - Red Team, na Hakai Security, Apaixonado por cybersecurity desde pequeno, atualmente formado em Defesa Cibernética pela Faculdade de Informática e Administração Paulista (FIAP) e hoje é aluno do @hackingclub.io e exerce a função como Pentester. Ao longo da sua trajetória lapidou suas habilidades em segurança ofensiva nos mais diversos ambientes, desde sistemas bancários, aplicativos mobile, aplicações web, a largas infraestruturas de Active Directory.
HakaiOffsec's tweet photo. Eh nesse final de semana o Guilherme nos representou na BSidesSP – na Red Team Community, falando sobre LSASS Dump: fugindo do clássico. Abordando uma situação real onde foi preciso burlar o EDR para realizar a leitura da memória de um dos processos mais monitorados do Windows. Foi exibido como um atacante pode explorar métodos alternativos para realizar o ataque de LSASS Dump, explorando APIs menos documentadas e evitando o uso da clássica “MiniDumpWriteDump”. Onde foi ilustrado trechos de códigos utilizados durante o engagement. E o Guilherme Carneiro @neos1an quem é? Ele Pentester - Red Team, na Hakai Security, Apaixonado por cybersecurity desde pequeno, atualmente formado em Defesa Cibernética pela Faculdade de Informática e Administração Paulista (FIAP) e hoje é aluno do @hackingclub.io e exerce a função como Pentester. Ao longo da sua trajetória lapidou suas habilidades em segurança ofensiva nos mais diversos ambientes, desde sistemas bancários, aplicativos mobile, aplicações web, a largas infraestruturas de Active Directory.
3
82
3
17
3K
ExAllocatePool2  retweeted
thezdi's profile image
TrendAI Zero Day Initiative Verified account @thezdi
Confirmed! Orange Tsai (@orange_8361) of DEVCORE Research Team (@d3vc0r3) chained 4 logic bugs to achieve a sandbox escape on Microsoft Edge, earning $175,000 and 17.5 Master of Pwn points. Full win! #Pwn2Own #P2OBerlin
thezdi's tweet photo. Confirmed! Orange Tsai (@orange_8361) of DEVCORE Research Team (@d3vc0r3) chained 4 logic bugs to achieve a sandbox escape on Microsoft Edge, earning $175,000 and 17.5 Master of Pwn points. Full win! #Pwn2Own #P2OBerlin https://t.co/vJaIpGG4cD
31
1K
161
147
223K
ExAllocatePool2's profile image
sora @ExAllocatePool2
also published the code of the dumper: https://t.co/DDO1sZlR6D
0
2
1
0
256

Who to follow

p4im0n's profile image
disorderly#00000000
@p4im0n
30nightsofviolence
rovierrr's profile image
ro vier
@rovierrr
telecommunications
0xdsm's profile image
Daniel
@0xdsm
unintentional software vulnerability stumbler
ExAllocatePool2's profile image
sora @ExAllocatePool2
was learning the Rust bitflags crate and built a small dumper for Hyper-V synthetic CPUID leaves. ended up noticing undocumented bits in leaf 0x40000006 EAX (0x09F20000) and a non-zero EBX where the TLFS says reserved, tested on windows 11 25H2. https://t.co/GAFy1xLbNN
1
7
0
3
888
ExAllocatePool2's profile image
sora @ExAllocatePool2
@MatheuzSecurity
ExAllocatePool2's tweet photo. @MatheuzSecurity https://t.co/F0mulkevNP
0
5
1
0
862
ExAllocatePool2's profile image
sora @ExAllocatePool2
wrote about some RE work I did on SK, more specifically on IumInvokeSecureService. i observed a possible attack vector but couldn't proceed with my tests. if you've done something similar, let's discuss it https://t.co/UYvjIqhEpz
2
11
2
4
742
ExAllocatePool2's profile image
sora @ExAllocatePool2
@imdj @vzj @diabodosinferno @__9 @waut @bailarina @vyw @g1e @pinabolinha @isaburralixo @325325325i batendo o ponto mais um ano, tmj irmao 🫶
0
2
0
0
370
ExAllocatePool2's profile image
sora @ExAllocatePool2
Following the method demonstrated by @yarden_shafir in "Your Mitigations Are My Opportunities", this implementation automates adding a driver to the HvciDisallowedImages registry entry, ensuring it will be blocked from loading after the next reboot. https://t.co/rNfJLHWITk
ExAllocatePool2's tweet photo. Following the method demonstrated by @yarden_shafir in "Your Mitigations Are My Opportunities", this implementation automates adding a driver to the HvciDisallowedImages registry entry, ensuring it will be blocked from loading after the next reboot. https://t.co/rNfJLHWITk https://t.co/qF6N07fBmE
1
54
16
26
7K
ExAllocatePool2's profile image
sora @ExAllocatePool2
@imdj @g1e @vyw @bailarina @waut @__9 @diabodosinferno @vzj @mainIeona FELIZ NATAL IRMAO EU TE AMO
0
2
0
0
530
ExAllocatePool2's profile image
sora @ExAllocatePool2
@RubysNephew broke boy, aint broke i got a lotta fucking bread now ive seen the globe
0
10
0
0
691
ExAllocatePool2's profile image
sora @ExAllocatePool2
@enzocarvs https://t.co/AbbWNkMEJ8
1
1
0
1
265
ExAllocatePool2's profile image
sora @ExAllocatePool2
Some days better than others, yeah, I agree Other days i forget I'm lucky i can breathe
2
14
1
1
3K
ExAllocatePool2  retweeted
XXL's profile image
XXL Magazine Verified account @XXL
Young Thug is coming home.
XXL's tweet photo. Young Thug is coming home. https://t.co/8vbUaR4sg8
570
61K
11K
1K
4M
ExAllocatePool2's profile image
sora @ExAllocatePool2
@eligex86 O defender nao flaga nada que ta dentro desse diretorio, basicamente uma whitelist
1
0
0
0
183
ExAllocatePool2's profile image
sora @ExAllocatePool2
cool technique I learned with ippsec; you can discover defender's exclusions paths even with a low priv user, reading event 5007 from the event log
ExAllocatePool2's tweet photo. cool technique I learned with ippsec; you can discover defender's exclusions paths even with a low priv user, reading event 5007 from the event log https://t.co/X4xO2h3cjp
2
19
0
9
2K
ExAllocatePool2  retweeted
thegrugq's profile image
thaddeus e. grugq Verified account @thegrugq
Only hack the planet. Hack only the planet. Hack the only planet. Hack the planet only.
8
66
13
2
9K
ExAllocatePool2's profile image
sora @ExAllocatePool2
@_hypomaniac @diparisx86 @ballondor @azaelx64 @nel00d Kkkkkkkkkkkk se passa demais slc
0
1
0
0
244
ExAllocatePool2's profile image
sora @ExAllocatePool2
@eligex86 Então, nesse caso, é só para dar leak nos exclusions path do defender. Sobre falso positivo, não sei te afirmar, pq testei só em dois ambientes e não tive em nenhum, mas em algum caso pode ser diferente
1
1
0
0
197

Last Seen Users on Sotwe

kuykuy9889's profile image
ควยชายแท้
Seen from Thailand
nisaaltinayy's profile image
nisanur 🦀
Seen from Turkey
_OrospuSeda_'s profile image
orospu seda
Seen from Turkey
Nany2002003's profile image
ɴᴀɴʏ•ɴᴀɴʏ Verified account
Seen from Thailand
muu_zann's profile image
Kaixer
Seen from Brazil
Noou2531's profile image
โอริโอ้หนูบินได้🐭🐭
Seen from Thailand
Madurosdesp's profile image
Central dos maduros
Seen from United States
MaNri82840's profile image
นวดเเปดริ้วฉะเชิงเทรา
Seen from Thailand
albadani2005's profile image
خالد البعداني
Seen from Denmark
nourPeter180747's profile image
nour Peter
Seen from Indonesia

Trends for you

1
#loveislandusa
Under 10K tweets
2
Gabriel
Under 10K tweets
3
Zach
Under 10K tweets
4
Karmelo
Under 10K tweets
5
Braden Montgomery
Under 10K tweets
6
#SummerHouse
Under 10K tweets
7
Jordan Staal
Under 10K tweets
8
#WWENXT
Under 10K tweets
9
Ireland
Under 10K tweets
10
Belfast
Under 10K tweets

Most Popular Users

elonmusk's profile image
1
Elon Musk Verified account
@elonmusk
240.1M followers
barackobama's profile image
2
Barack Obama Verified account
@barackobama
119.3M followers
realdonaldtrump's profile image
3
Donald J. Trump Verified account
@realdonaldtrump
111.6M followers
cristiano's profile image
4
Cristiano Ronaldo Verified account
@cristiano
109.1M followers
narendramodi's profile image
5
Narendra Modi Verified account
@narendramodi
106.9M followers
rihanna's profile image
6
Rihanna Verified account
@rihanna
97.3M followers
nasa's profile image
7
NASA Verified account
@nasa
92.1M followers
justinbieber's profile image
8
Justin Bieber Verified account
@justinbieber
90.6M followers
katyperry's profile image
9
KATY PERRY Verified account
@katyperry
86.9M followers
taylorswift13's profile image
10
Taylor Swift Verified account
@taylorswift13
80.7M followers
ladygaga's profile image
11
Lady Gaga Verified account
@ladygaga
72.3M followers
kimkardashian's profile image
12
Kim Kardashian Verified account
@kimkardashian
69.4M followers
imvkohli's profile image
13
Virat Kohli Verified account
@imvkohli
68.7M followers
youtube's profile image
14
YouTube Verified account
@youtube
68.6M followers
billgates's profile image
15
Bill Gates Verified account
@billgates
63.4M followers
theellenshow's profile image
16
The Ellen Show
@theellenshow
62.5M followers
cnn's profile image
17
CNN Verified account
@cnn
61.9M followers
neymarjr's profile image
18
Neymar Jr Verified account
@neymarjr
61.3M followers
x's profile image
19
X Verified account
@x
60.9M followers
selenagomez's profile image
20
Selena Gomez Verified account
@selenagomez
60M followers