Olivia
Online
nodauf
@nodauf
Offensive security enthusiast | Interested in malware dev, AD, Windows, ...
France
Joined April 2012
583 Following
536 Followers
1.6K Posts
https://t.co/ZOn72Ziefd
First blog post in a mini series where I look at "disposable tooling". This post shares what I have found to be useful when 1-shot'ing LLM generated Stage-0 agents for Mythic. https://t.co/LX0JVGmHBf
By-design AV bypass with "dev drive" 😅
I really like this feature!
Update your detection rules if you want to spot this...
Onelogon: Taking over Active Directory Accounts via Netlogon🔑
We analyzed Netlogon, bypassed the Zerologon patch, resulting in a full auth bypass. An attacker can leverage this to compromise computer accounts, or even the entire AD. Non-standard config must be present tho 🧵
Who to follow
Thomas Seigneuret
@_zblurx
Red Teamer & Security researcher
Maintainer of #NetExec, #DonPAPI, dploot, certsync, and all the stuff on my github repo
bsky: https://t.co/zISpgvDSWc
Octoberfest7
@Octoberfest73
Red Team | Offensive Tool Dev | 2x Course Author @ Zero-Point Security
Ido Veltzman
@Idov31
I'm a security researcher who uses this platform to share my projects and research. Opinions are my own.
https://t.co/UiWgKq40sV
I just wrote a new blog on bypassing CA policies in Entra ID that have a resource exclusion, and why you probably want to enable baseline enforcement if you have such policies. Enjoy!
https://t.co/a1rGl3wss8
I was presenting this morning at @reconmtl my RE journey of the ClickOnce technology.. that led to discover a new abuse on it!
If you've missed it, or are interested to learn about this little known feature, the research is also available on @CrowdStrike's blogspot below ☀️
The first version of BloodHound MCP proved an LLM could talk to BloodHound. The next version taught a more important lesson: MCP design is context design.
@turbo_sec breaks down what changed, what didn't, and why smaller tools beat larger API surfaces. https://t.co/NOjP72WMJL
Kernel LPEs dropping before patches are widely available? It's been a wild month for Linux defenders.
Our CIO @r3n1k breaks down how tried-and-true hardening measures can raise the bar and buy your Blue Team time against N-days.
https://t.co/5WgbXMj0Fo
UnCanny - Another new coercion primitive with LPE 0day - machine-account NTLM coercion from a non-admin user via Windows Store InstallService plugin resolution experiments https://t.co/Vw2LEhoZXZ
OAuth Bypass Testbed
https://t.co/8WHf78YqCz
Test your skills against a LOGIN (randomly vulnerable) and/or 17 AUTHENTICATION SERVER endpoints.
Like with JWT, a fully automated OAuth tool with complete FFF (Find, Forge, Fire) PoCs is on the way, exclusively for Brute One.
https://t.co/laDOE5LChz
"When an organisation uses Exchange Online (or on-premises exchange in hybrid mode) with a third-party mail server or spam filter as its MX record, it is possible to send mail from any sender to that organisation. Outlook delivers it without warning"
‼️ Nightmare Eclipse is back on GitHub under a new alias and has released a new Windows Defender vulnerability zero-day called RoguePlanet.
PoC: https://t.co/n0xF6uGt4u
New GitHub Account: https://t.co/qwU93VedpH
New #redteam tool for blocking EDRs: EDRChoker
Instead of fully blocking the EDR agents' connections to their server, we can throttle their bandwidth so they consistently time out when sending data, which is effectively the same as blocking but avoids triggering "block" or "drop" packet events
#pentest #cybersecurity
Github: TwoSevenOneT/EDRChoker
This morning I have made public an internal repo on relaying available to everyone. I call it the relay bible. I still have a few more additional tweaks and techniques to add in here but for the most part. It's ready. Hope everyone enjoys my reference.
https://t.co/if08LR2Nwv
Azure violated their own ToS ⁉️
https://t.co/JHepNbl4tu
Bookmarking @HackingDave AI model regression site. This is useful. For now Opus 4.8 is my daily driver followed by a few frontier models. It’s an exciting time for AI to assist me in research.
https://t.co/hMLE1R4T7k
‼️ The alienation continues: more security researchers are sticking up the middle finger after feeling squeezed by Microsoft and GitHub. MSRC emailed Black Hat USA 2026 presenters asking which MSRC cases, VULN-IDs, or CVEs their talks would cover. GitHub told a researcher to delete his public PoC repos and flagged his accounts under ToS.
🚨 One more week to submit your workshop ideas!
📝✨ Still have an innovative idea or an exciting topic to share?
We’re extending the deadline to give everyone a chance to contribute.
👉 Submit your proposals by the end of the week: https://t.co/EO900ZoxS2
#CyberSecurity #CFP
Bring Your Own Trusted Binary (BYOTB).
Tools, tunnels and trusts, a post by David Kennedy (@JUMPSEC)
Source: https://t.co/DsCEO7HQbW
#redteam #blueteam #maldev #malwaredevelopment
🎉 Our Call for Talks is officially open.
Submit your proposal from June 1st to August 23rd and be part of this incredible event.
Scheduled from February 4th to 5th, the conference is your platform to share your insights.
👉 Apply now: https://t.co/HCGeleq8vs
#CyberSecurity
Last Seen Users on Sotwe
gul ve emrah
Seen from Turkey
Adelaide Peeparties2 
Seen from Spain
khusus bokep jepang +18
Seen from Indonesia
Ercan & Ebru
Seen from Turkey
مهند العراقي
🌈OnlygayfrenchXXX🇫🇷 (18+)🏳️🌈
Seen from United States
Sasha
Seen from Egypt
cuckold submissve slave
Seen from United Kingdom
Passjktm
damla hatun
Seen from Greece
Most Popular Users
Elon Musk
@elonmusk
240.6M followers
Barack Obama
@barackobama
119.2M followers
Donald J. Trump
@realdonaldtrump
111.7M followers
Cristiano Ronaldo
@cristiano
110.4M followers
Narendra Modi
@narendramodi
107M followers
Rihanna
@rihanna
97.6M followers
NASA
@nasa
92.2M followers
Justin Bieber
@justinbieber
90.9M followers
KATY PERRY
@katyperry
87.6M followers
Taylor Swift
@taylorswift13
81.4M followers
Lady Gaga
@ladygaga
72.9M followers
Virat Kohli
@imvkohli
69.8M followers
Kim Kardashian
@kimkardashian
69.8M followers
YouTube
@youtube
68.7M followers
Bill Gates
@billgates
63.8M followers
Neymar Jr
@neymarjr
62.5M followers
The Ellen Show
@theellenshow
62.4M followers
CNN
@cnn
61.9M followers
X
@x
60.8M followers
Selena Gomez
@selenagomez
60.7M followers