Olivia
Online
Keanu Nys
@RedByte1337
Offensive Security Lead @ Spotit.
Creator of GraphSpy
Belgium
Joined August 2014
80 Following
1.2K Followers
115 Posts
Pinned Tweet
🚀I'm finally releasing GraphSpy to the public!🕵️
A powerful offensive security tool focused on making initial access and post-compromise enumeration in Microsoft Entra and M365 much more convenient during penetration tests and red team assessments!
https://t.co/OfI2TanQ61
This is exactly why I did not share my research with MSRC before my talk last @defcon, to make a statement against their classic "does not meet the bar for servicing (unless you publish it)" response.
Next DEF CON will be interesting...
Chat, I don't want to be that guy, but I think Microsoft has really pissed off security researchers and we're approaching the tipping point.
This Eclipse guy has really rocked the boat for Microsoft.
@defcon I even dedicated the first three minutes of my talk to calling them out for these practices.
They came to me afterward and told me I would have gotten at least a $10k bounty if I had reported it. Sure...
https://t.co/MoPQiKgesd
Just shipped GraphSpy v1.7.0 ✨
Mostly under-the-hood work this time with major refactoring to speed up future development ⚙️
Huge shoutout to n3rada for leading the effort!
More exciting features coming soon 🚀
https://t.co/OfI2TanQ61
@fabian_bader Interesting research Fabian!
Early Bird Offer for Q2 Bootcamps 2026 is ending soon.
Save 15% on our upcoming Red Team live bootcamps across Azure and Active Directory.
Use code EARLYBIRD15. Offer valid till April 10, 2026.
June 5 - CARTP® Bootcamp
June 6 - CRTP® Bootcamp
June 27 - CARTE® Bootcamp
Secure your seat:
https://t.co/i8fC4WqJuI
#CyberSecurity #RedTeaming #CloudSecurity #InfoSec
Join @RedByte1337 and me for the June 2026 bootcamps as we take you through the on-prem and Azure Red team. Very practical and hands-on labs with fantastic learning aids. Bonus - dad jokes and insight (read rant) on state of identity security.
It was an honour to share what I've been working on on the stream! It was a blast! 🪝🐟
The demo gods were thankfully kind to me. 🙏
P.S. To anyone copying the session cookies character-by-character from the video feed - all the sessions have been invalidated. 🥲
I recently sat down with @_JohnHammond to record a video about GraphSpy! 😁
We went over the most powerful features GraphSpy has to offer, and even showcased some of the new features that were added lately.
This video is now live on his YouTube channel, so go check it out! 😉
GraphSpy: A Hacker's Tooling Deep Dive, video demos with the creator @RedByte1337! 🤩 Keanu shows me the wild things you can do for post-exploitation in Entra ID -- even adding a physical security key for persistence and a ton of other tricks 🤯 Video: https://t.co/0Dxacrscgr
Maximum 16-character password "for security reasons". 🤔
And what I find more surprising is the fact that the "<" character is not permitted either...
Is this some poor attempt at preventing XSS? That would mean the password is displayed in cleartext somewhere on a web page...🤨
I will be teaching the advanced version of the Attacking & Defending Azure Cloud bootcamp once again in February with @AlteredSecurity!
Live, hands-on Azure red team training with realistic labs to sharpen both your Offensive and Defensive skills! 🔥
🔗 https://t.co/zN2SX3Bl5j
@mrgretzky Haha, thanks Kuba. Small stuff compared to what you achieved with Evilginx ofc 😜
GraphSpy just hit 1000 ⭐ on GitHub!
What started as a personal side project is now used by pentesters around the world. Never imagined this as my first project, especially not in under 2 years. 🤯
I silently pushed v1.6 right before the holidays with powerful new features 😉
@mrd0x Thank you! 🙂
@ZephrFish Thanks Andy! 😁
Check out the new features under the Release Notes section:
🔗https://t.co/OfI2TanQ61
Wow, this almost passed by without me noticing👀
This is not how I envisioned GraphSpy to be covered in a @_JohnHammond video, but then again, it was only a matter of time before malicious actors used it.
You just hope it is used for more good than bad when creating these tools.
Uncovered screen recordings from threat actors! 👀 Real footage of cybercriminals using anti-detect browsers and infostealer malware logs for session hijacking, and another using GraphSpy to read their Entra ID victim's emails in Outlook! 💀 Video: https://t.co/p94bhFgGgY
@_dirkjan @Thomasbyrne__ For now 😉
I hope for a bit longer, but we'll see. In theory, the October deadline has lapsed, so I guess you did indeed win from that perspective 😅
Last Seen Users on Sotwe
Trends for you
Most Popular Users
Elon Musk 
@elonmusk
240.1M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
108.7M followers
Narendra Modi
@narendramodi
106.9M followers
Rihanna
@rihanna
97.2M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.5M followers
KATY PERRY
@katyperry
86.7M followers
Taylor Swift
@taylorswift13
80.5M followers
Lady Gaga
@ladygaga
72.1M followers
Kim Kardashian
@kimkardashian
69.3M followers
YouTube
@youtube
68.6M followers
Virat Kohli
@imvkohli
68.4M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
60.9M followers
X
@x
60.9M followers
CNN Breaking News
@cnnbrk
59.9M followers