Olivia
Online
Randori Attack Team
@RandoriAttack
Trusted Adversary @RandoriSecurity | Exploit Development | Offensive Operations | #InfoSec tweets only | Managed by @syndrowm @pwnpnw @aaronportnoy
Joined May 2019
60 Following
2.8K Followers
96 Posts
Pinned Tweet
We've been able to trigger CVE-2023-21554 AKA #QueueJumper, a recently patched RCE in Microsoft’s Message Queueing Service reported by @_CPResearch_. We can confirm it appears exploitable. IOCs and more: https://t.co/NxMiZIAb9P
In collaboration with @FabiusArtrel and @aaronportnoy we conducted a post mortem of the QueueJumper MSMQ RCE patch. We do an in depth RCA, identify variants, create exploit primitives, evaluate exploitability, and make some interesting new discoveries!
https://t.co/2BLq5W1d06
OpenSSL released details for CVE-2022-3602 & CVE-2022-3786. Due to the mitigating factors outlined in our post we do not believe these will be exploited for remote code execution in real-world scenarios: https://t.co/NMoD0D3sFW
We have validated Rapid7’s analysis on CVE-2022-26134, an RCE in Atlassian Confluence. Randori recommends assuming compromise and investigating accordingly. Vendor guidance is available here: https://t.co/FpLOpRTUxh
Our technical analysis and curl based PoC for Confluence CVE-2022-26134 can be found here: https://t.co/LUc4286Cj4
Who to follow
Will Schroeder
@harmj0y
Researcher @SpecterOps. Coding towards chaotic good while living on the decision boundary.
RedTeamVillage 
@RedTeamVillage_
Red Team Village | Join us on https://t.co/ILZhRFw4Y7 . Check our next events at: https://t.co/fJwIUSTI16
Black Hills Information Security
@BHinfoSecurity
Specializing in pen testing, red teaming, and Active SOC. We share our knowledge through blogs, webcasts, open-source tools, and Backdoors & Breaches game.
CVE-2022-22965 has been assigned to the #SpringShell vulnerability. Spring framework 5.3.18 and 5.2.20 have been released to address the issue: https://t.co/bKIGDfFdp4
@springframework Clarification on the above: a 400 code is not the *only* positive indicator of susceptibility--just a definitive one.
The following non-malicious request can be used to test susceptibility to the @springframework 0day RCE. An HTTP 400 return code indicates vulnerability.
$ curl host:port/path?class.module.classLoader.URLs%5B0%5D=0
#SpringShell #Spring4Shell #infosec
New high severity DoS in OpenSSL just released: https://t.co/3ZoLlRIlQB CVE-2022-0778 was reported by @taviso and appears to affect systems that parse user-supplied certificates.
Not able to attend our webinar on #Log4j with @GreyNoiseIO? Click to watch the recording and get expert insights into researching and remediating Log4Shell, with @HexadeciMoose @aaronportnoy @Andrew___Morris, and Remi.
https://t.co/xzQb9EymX9
10 #Log4Shell Facts vs Fiction: a 🧵
1. 1.x is NOT vuln to this RCE. While it doesn't have another RCE, it requires access to send serialized data to a listener ON the log server. This is much MUCH harder to exploit and kind of rare for a Log4j server to be running.
Heads up, expect to see a growing diversity of payloads as this evolves. Patching & Default-Deny still your best strategies.
#log4J info stealing method:
Just saw an info stealer payload that uses System.getenv(); to grab ALL variables and then send them back to the attacker.
That's all it does.
This means attackers do not have to know what env variables to guess in order to steal them.
FYI: Join @Andrew___Morris @aaronportnoy @HexadeciMoose and @_mattata at 3pm EST for a live #log4j discussion hosted by @RandoriSecurity and @GreynoiseIO https://t.co/tsS2Cd2Jtf
@GlennPegden We gained remote code execution on the Jamf Pro system, not just a callback.
The Randori Attack Team can confirm the exploitability of unpatched Jamf Pro on-prem via "Log4Shell". Due to the severity of impact, we recommend organizations patch immediately. See: https://t.co/GXE717yPFr
If impacted: 1. assume compromise and review logs for signs of malicious activity. 2. Configure firewalls to prevent outbound connections. 3. Look for updates from VMware on release of patches. 4. Read updated Log4Shell blog and follow @RandoriAttack for updates. 3/3
The Randori Attack Team can confirm exploitability of VMWare products in live environments (VMSA-2021-0028) via Log4j (CVE-2021-44228) aka "Log4Shell". This is a critical vulnerability. Follow @RandoriAttack for updates: https://t.co/3V12TcuK27 1/3
We have validated exploitability with a working exploit, and anticipate widespread exploitation by threat actors imminently. Randori has been in contact with the VMWare team to assist their development of mitigations. 2/3
We have been monitoring activity and neither Palo Alto Networks nor Randori’s threat intelligence sources have identified attempted exploitation. We hope to give defenders extra time through the end of the year to apply mitigations.
We have been collaborating with Palo Alto on CVE-2021-3064 and have jointly decided to delay release of technical details as many customers have yet to apply protections due to the COVID-19 pandemic.
Last Seen Users on Sotwe
Khang
Seen from Vietnam
taboo gooning 🌚📀
Seen from Canada
Yerli Amatorsex
Seen from Turkey
Yok123
Seen from Turkey
Mia Khalifa Fans
Seen from Indonesia
Hazal Kılınç
Seen from Turkey
🎂
Seen from South Africa
BATANG LANANG
Seen from Indonesia
chapín502xxx
Seen from United States
Akisange
Seen from United States
Most Popular Users
Elon Musk
@elonmusk
240.3M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
109.5M followers
Narendra Modi
@narendramodi
107M followers
Rihanna
@rihanna
97.4M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.7M followers
KATY PERRY
@katyperry
87.1M followers
Taylor Swift
@taylorswift13
80.9M followers
Lady Gaga
@ladygaga
72.5M followers
Kim Kardashian
@kimkardashian
69.5M followers
Virat Kohli
@imvkohli
69M followers
YouTube
@youtube
68.6M followers
Bill Gates
@billgates
63.6M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61.7M followers
X
@x
60.9M followers
Selena Gomez
@selenagomez
60.2M followers