Olivia
Online
HTTP418
@HTTP418InfoSec
Breaking stuff and writing about it
Joined April 2021
284 Following
295 Followers
97 Posts
For the last few weeks I’ve been trying to build a usable AI Vishing model as cheaply as possible, hopefully my post may help others who are considering doing something similar!
https://t.co/0oGPNq1DNV
Some thoughts on how to test against Scattered Spider TTPs and a quick summary on the current available TI. https://t.co/QiEFkh6N8W
I wrote a script to identify every TAKEOVER and ELEVATE attack in Misconfiguration Manager that can be run with Read-only Analyst privileges or higher in SCCM. Please share with your IT admins, defenders, clients, assessors, and friends in infosec!
https://t.co/lHoC8Q8eH9
Who to follow
Thomas Seigneuret
@_zblurx
Red Teamer & Security researcher
Maintainer of #NetExec, #DonPAPI, dploot, certsync, and all the stuff on my github repo
bsky: https://t.co/zISpgvDSWc
Octoberfest7
@Octoberfest73
Red Team | Offensive Tool Dev | 2x Course Author @ Zero-Point Security
an0n
@an0n_r0
CRT(E|O|L) | OSCP | @RingZer0_CTF 1st (for 2yrs) | HackTheBox Top10 | RPISEC MBE | Flare-On completer | GoogleCTF writeup winner | SSD research | Math MSc |🇭🇺
Today the Cyber Safety Review Board released its independent review of the Summer 2023 Microsoft Exchange Online intrusion laying out what led to the intrusion & what industry & gov't can do to ensure an intrusion at this magnitude does not happen again. https://t.co/pf5Vx2kuuo
Amazon is the new source for OST 🔥🔥
The GoPhish API can be used for some fun and games, my latest post shows how single use phishing links can be made using GoPhish + AWS SES! https://t.co/dajTw2cT66
MachineAccountQuota = 0, preventing you from grabbing NAA creds remotely?
DPAPI to the rescue!
Ported over NAA Extraction via DPAPI to sccmhunter.
h/t: @agsolino & @clavoillotte for https://t.co/uLXWJvJm3E
Confused on the basics of C++? Hopefully this little post will help out with some of the confusion! https://t.co/iPx9NVUR41
@theluemmel Thanks, very kind of you!
I have just written a post (https://t.co/73DNT9a356) summarising the various published SCCM attacks, from PXE enumeration through to Site Takeovers 1/2
We would like to express our condolences to Blue Teamers.
Microsoft has announced Microsoft Excel will now support Python.
More information: https://t.co/LutCzlYc0x
Didn't have time to talk about the newly released TLDs last week, but here we go.
File Archiver In The Browser: Emulating file archive software in the browser with a .zip domain for phishing
https://t.co/yvT6lT0UnU
Additionally, I have done another post on the basics of BloodHound for those who are new to the tool! (2/2) https://t.co/FhywYIXhR4
I've just published a post on how Cypher language can be used to assess & audit an AD environment with some of its more complex features (1/2) https://t.co/6rZlTXaD5e
Two years ago the SolarWinds hack made history as the boldest, most sophisticated supply chain hack ever pulled off. I dug into the detailed story about the ingenious way the hackers pulled it off - and then got caught - in this tale for WIRED magazine https://t.co/mxgJBIP26L
@CyberWarship Thanks!
Trends for you
Most Popular Users
Elon Musk 
@elonmusk
240.2M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
109M followers
Narendra Modi
@narendramodi
107M followers
Rihanna
@rihanna
97.3M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.6M followers
KATY PERRY
@katyperry
86.8M followers
Taylor Swift
@taylorswift13
80.6M followers
Lady Gaga
@ladygaga
72.2M followers
Kim Kardashian
@kimkardashian
69.4M followers
YouTube
@youtube
68.6M followers
Virat Kohli
@imvkohli
68.6M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61.1M followers
X
@x
60.9M followers
Selena Gomez
@selenagomez
59.9M followers