Giuseppe`Ohpe`Trotta @Giutro - Twitter Profile

Pinned Tweet

Giuseppe`Ohpe`Trotta @Giutro

almost 8 years ago

I'm releasing with @decoder_it: Juicy Potato, another Local Privilege Escalation tool from a Windows Service Accounts to SYSTEM by abusing the golden privileges (https://t.co/whGg5G3FBp)

2

152

96

8

0

Giutro retweeted

Nemesis Breach and Attack Simulation @Persistent_Psi

about 3 years ago

During @offensive_con our @marver presented his research on security aspects of embedded SIM cards. We are releasing SMShell, an SMS based implant proof of concept for Red Teaming that can evade out of band. Blogpost: https://t.co/3i4SieWUEm GitHub: https://t.co/71QbSKwxYZ

0

54

26

17

16K

Giuseppe`Ohpe`Trotta @Giutro

over 4 years ago

@aemkei I read LOSt

0

1

0

Giutro retweeted

Luca Carettoni @lucacarettoni

about 5 years ago

What’s it like to work at @Doyensec? Read below 👇 We’re hiring again appsec engineers

0

7

6

0

Who to follow

Gareth Heyes \u2028

@garethheyes

JavaScript for hackers: Learn to think like a hacker. https://t.co/e0aNEbEDk5

Panos Gkatziroulis 🦄

@ipurple

Red/Purple Teamer | Blogger | Ex-Director @pentestlabltd | Mod @ https://t.co/1nzjl9KpSH | https://t.co/mIM1GA1mN4

Soroush Dalili

@irsdl

Hacker (ethical), web appsec specialist, trainer, tools builder & apps breaker 🕸️https://t.co/YipuTcYnWc🥷 🍏A dad-joke maker🍐

Giutro retweeted

James Forshaw @tiraniddo

about 5 years ago

As I couldn't find anyone else who'd documented it, thought I'd look at SeTrustedCredmanAccessPrivilege. https://t.co/9d4x4BT8bn

2

255

122

31

0

Giutro retweeted

thaddeus e. grugq

@thegrugq

about 5 years ago

This is some spectacular counterintelligence work and exploitation. Research to discover a vulnerability, and then careful exploitation of that vulnerability so it never gets burned. Tennis 0day

13

1K

292

49

0

Giutro retweeted

Antonio Cocomazzi @splinter_code

about 5 years ago

RemotePotato0 Update: We can confirm that cross session activation works in the relay scenario too so you can get rid of session 0 limitation! Now the real fun will ensue 😈 cc @decoder_it

3

119

46

10

0

Giutro retweeted

Andrea P @decoder_it

about 5 years ago

When (NTLM) relaying potatoes lead you to domain admin... A "permanent" 0day Privilege Escalation Vulnerability in Windows RPC Protocol ;-) cc @splinter_code Our writeup here: https://t.co/oIE5MFtpeb

7

693

361

131

0

Giuseppe`Ohpe`Trotta @Giutro

about 5 years ago

@buffermet @evilsocket @antisnatchor Maybe in that case you need something like muraena and then pass the session to necro for the post exploitation

0

1

0

Giutro retweeted

bettercap @bettercap

about 5 years ago

v2.31.0 is out! The number of fixes and new features is just too long to fit in a single screenshot :D https://t.co/c75fq1yeqZ

2

54

10

5

0

Giuseppe`Ohpe`Trotta @Giutro

about 5 years ago

@smaury92 The key is there just to troll, it’s not the right one

0

2

0

Giutro retweeted

Simone Margaritelli

@evilsocket

about 5 years ago

a tenacious kernel panic, happening in macOS network stack when bettercap tries to inject packets in the interface in monitor mode (read only works) ... happening on M1 as well ... can somebody at Apple fix this please? https://t.co/kMtnr69Wo1

evilsocket's tweet photo. a tenacious kernel panic, happening in macOS network stack when bettercap tries to inject packets in the interface in monitor mode (read only works) ... happening on M1 as well ... can somebody at Apple fix this please? https://t.co/kMtnr69Wo1 https://t.co/GlG9OI81SN

2

45

19

3

0

Giutro retweeted

Andrea P @decoder_it

over 5 years ago

Following my "old" blog post https://t.co/hSHriiQhAI , I have published the very quick & dirty "juicy_2" code https://t.co/ycYI1s9eSp , maybe useful when you have impersonation privs on newer versions of Windows 10 & Server 2019 cc @splinter_code @Giutro

1

66

33

13

0

Giuseppe`Ohpe`Trotta @Giutro

over 5 years ago

@evilsocket What about using a custom PAM module to log all the attempts and eventually improve your dictionary

1

3

0

Giutro retweeted

antisnatchor @antisnatchor

over 5 years ago

MuraenaTeam strikes again. Together with @Giutro we released the new Muraena and NecroBrowser. Lots of new code+features. Phishing and post-phishing automation at scale for all your needs. Office365 and GitHub examples added. More coming soon 🎣🪝😎 https://t.co/125mrRrYcy

0

44

16

4

0

Giutro retweeted

Andrea P @decoder_it

over 5 years ago

Hands off my service account! https://t.co/OSuMW3FCwC

0

99

37

16

0

Giuseppe`Ohpe`Trotta @Giutro

over 5 years ago

@evilsocket @qwertyoruiopz I also like this idea but preparing a decent training takes time, this approach seems quicker

0

Giutro retweeted

@[email protected] @qwertyoruiopz

over 5 years ago

love offensive mobile security and are looking for a job? my new company is hiring! shoot us an email at [email protected]

29

533

103

22

0

Giuseppe`Ohpe`Trotta @Giutro

over 5 years ago

@evilsocket Wondering how Cb maj looks like :)

1

0

Giutro retweeted

Dirk-jan @_dirkjan

over 5 years ago

It has a few more prerequisites, but I finally managed to get a #Zerologon exploit working that doesn't rely on resetting passwords to exploit. Use the printerbug to make DC1 connect to you, then with lots of magic relay that to DC2 directly to DRSUAPI to DCSync 😁

_dirkjan's tweet photo. It has a few more prerequisites, but I finally managed to get a #Zerologon exploit working that doesn't rely on resetting passwords to exploit. Use the printerbug to make DC1 connect to you, then with lots of magic relay that to DC2 directly to DRSUAPI to DCSync 😁 https://t.co/GfwckuLoKE

27

1K

548

99

0

Giutro retweeted

Dirk-jan @_dirkjan

over 5 years ago

There seems to be quite some questions and confusion about the impact of exploiting Zerologon (CVE-2020-1472) on the environment. So here's a thread 👇

5

996

516

178

0

Giuseppe`Ohpe`Trotta

@Giutro

Who to follow

Last Seen Users on Sotwe

Trends for you

Most Popular Users