![CyberGhost13337's tweet photo. A new clickfix technique, FileFix, developed by @mrd0x, is being used in the wild—poorly.
Website tersmoles[.]com delivers a "Legitimate Chrome Installer" using FileFix.
The attacker didn’t even change the path and filename—just copy-pasted code directly from demo website https://t.co/URGjyBmcRi](https://pbs.twimg.com/media/GvRyX4pWkAAuP05.jpg)
Olivia
Online
Tobi
@Tobi4530482
OSCP | CRTO | Pen Tester | AWS Cloud Security Dude
Munich
Joined January 2023
182 Following
29 Followers
32 Posts
A new clickfix technique, FileFix, developed by @mrd0x, is being used in the wild—poorly.
Website tersmoles[.]com delivers a "Legitimate Chrome Installer" using FileFix.
The attacker didn’t even change the path and filename—just copy-pasted code directly from demo website
![CyberGhost13337's tweet photo. A new clickfix technique, FileFix, developed by @mrd0x, is being used in the wild—poorly.
Website tersmoles[.]com delivers a "Legitimate Chrome Installer" using FileFix.
The attacker didn’t even change the path and filename—just copy-pasted code directly from demo website https://t.co/URGjyBmcRi](https://pbs.twimg.com/media/GvRzky8WkAAW8hI.png)
@BHinfoSecurity Hi 👋
https://t.co/0TxUN4R3y8
AWS Penetration Testing Framework is now publicly available!
https://t.co/KjiVCZ85WK
Who to follow
pfiatde
@pfiatde
"Every machine is a smoke Machine if you operate it wrong enough"
RedTeamer by day, sleeping at night!
https://t.co/ZcTfWHeGZO
r1cksec
@r1cksec
Data breach revealed,
Malware lurks, silent, stealthy -
OSINT tracks the thread.
URLs I post may contain malware – be careful and check yourself before running
Moritz Abrell
@moritz_abrell
IT Security Enthusiast; Penetration Tester; Security Researcher
https://t.co/Fu85WEfPkq
A step by step EDR learning path https://t.co/l0MbGSCTij
Bypassing MFA on Microsoft Azure Entra ID https://t.co/AIfjsRloPU
Creating Payloads with ScareCrow to Mimic Reputable Sources and Bypass Anti-Virus https://t.co/cWoJl2N7rI
How attackers steal Primary Refresh Tokens and access cloud resources.
#ThreatHunting #DFIR #EntraID #AzureAD
🚀I'm finally releasing GraphSpy to the public!🕵️
A powerful offensive security tool focused on making initial access and post-compromise enumeration in Microsoft Entra and M365 much more convenient during penetration tests and red team assessments!
https://t.co/OfI2TanQ61
AD Privesc
Kerberos TGS and SeTcbPrivilege
If you have SeTcbPrivilege, you can ask TGS on behalf of ALL logged users on your machine WITHOUT Password
...and if there is a Domain Admin logged?
Zero detection by EDR/AV
https://t.co/FpVmxPiDP3
#redteam #SeTcbPrivilege
Did you know, that a simple msi repair with a low privileged user can disable Cortex XDR if the tamper protection is turned off? 👇
Active Directory Advanced Threat Hunting - Using PowerShell to track down the source of account lockouts and bad passwords!
@Microsoft @msftsecurity @Windows #Microsoft #ActiveDirectory #mvpbuzz #coolstuff #Hunting #ADDS #Windows #WindowsServer
👇👇👇👇
https://t.co/QFHIXTJFbA
Another log on the fire why I really can’t recommend on premises exchange environments.
https://t.co/pyjyEg62DV
FullBypass: bypasses AMSI (AntiMalware Scan Interface) and PowerShell CLM (Constrained Language Mode) https://t.co/sK0vKE3bs8
AzSubEnum - Azure Service Subdomain Enumeration https://t.co/hai96UnMgo
PoC Exploit Released for Microsoft Outlook RCE Flaw – CVE-2024-21413 https://t.co/VRVSMp0vLH
Something I still reference a lot. To this day.
The Attackers Guide to Azure AD Conditional Access – Daniel Chronlund Cloud Security Blog https://t.co/BqNKCwukZ4
Just launched the #CloudBreach Blog 🚀: Dive into the essentials of AWS Enumeration! Uncover the tactics for unauthenticated #AWSEnumeration, leveraging OSINT, Google & GitHub Dorks, and more. A must-read for #CloudSecurity readers. https://t.co/N03pdOsqhE
Last Seen Users on Sotwe
WhatsApp ekran ve itiraflar
Seen from Turkey
Ukhti xnx Nakal
Seen from Turkey
Agatha Vega 🏝️ 🫶 
Seen from Egypt
Jancok69
Seen from Indonesia
The Living Toy
Seen from Germany
Gshsjkeidvak
Seen from Singapore
KARİNİ PAYLAŞ
Seen from Turkey
Neslihan Haciömeroğlu
Seen from Turkey
Tajnica Bracni Par
Seen from Turkey
Mamatjpr
Seen from Indonesia
Most Popular Users
Elon Musk
@elonmusk
240.4M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.7M followers
Cristiano Ronaldo
@cristiano
109.9M followers
Narendra Modi
@narendramodi
107M followers
Rihanna
@rihanna
97.5M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.8M followers
KATY PERRY
@katyperry
87.3M followers
Taylor Swift
@taylorswift13
81.1M followers
Lady Gaga
@ladygaga
72.7M followers
Kim Kardashian
@kimkardashian
69.6M followers
Virat Kohli
@imvkohli
69.4M followers
YouTube
@youtube
68.6M followers
Bill Gates
@billgates
63.7M followers
The Ellen Show
@theellenshow
62.5M followers
Neymar Jr
@neymarjr
62.1M followers
CNN
@cnn
61.9M followers
X
@x
60.9M followers
Selena Gomez
@selenagomez
60.4M followers