Olivia
Online
Ash
@_bin_Ash
Computer enjoyer // бегство от действительности))
(@Mandiant+@GoogleCloud)
Joined November 2020
235 Following
941 Followers
833 Posts
@rad9800 lemonmaxxers assemble
@nikseeth I obviously do not cheer for the breach of any company, but I imagine that people in the SOC 2 world who have been shouting from the hilltops for years about the disingenuousness of automated SOC 2 platforms, feel very vindicated rn
@IceSolst @Atredis @DistrictCon "If that is what you want."
"This is hard work."
"I will do what I must."
"This hammer is heavy."
"Can I have some shoes?"
I don't think they could release a game like this nowadays lmao
PSA technique is not completely dead
The implied attack path of the post is coerce auth from system -> relay to LDAP -> computer account writes its own attribute
Post patch, there are still use cases for shadow creds. (GenericAll, GenericWrite, or AddKeyCredentialLink, etc).
Anyone know if Microsoft silently patch the Shadow Creds attack recently ? Looks like a computer object cannot write its own attribute anymore :D
Who to follow
Octoberfest7
@Octoberfest73
Red Team | Offensive Tool Dev | 2x Course Author @ Zero-Point Security
Ido Veltzman
@Idov31
I'm a security researcher who uses this platform to share my projects and research. Opinions are my own.
https://t.co/UiWgKq40sV
Rémi GASCOU (Podalirius) 
@podalirius_
Senior Security Researcher @SpecterOps | 3xMicrosoft Security MVP | Creator of opensource security tools 🎬 https://t.co/QaAENc4NcY | Views are my own
@ConsciousHacker lots of people who used to post cool stuff on Twitter, got consulting jobs, and now are 🤐🤐🤐
Excited to disclose my research allowing RCE in Kubernetes
It allows running arbitrary commands in EVERY pod in a cluster using a commonly granted "read only" RBAC permission. This is not logged and and allows for trivial Pod breakout.
Unfortunately, this will NOT be patched.
@tcstacks_ If you’re really good at infosec you can be wrong and still get paid
I thought infosec twitter was toxic until I discovered meteorology twitter
@GrahamHelton3 If I had followed this I would have become a lifelong SAP admin
@jamieantisocial People who say this have obviously never heard of spongemaxxing
Always try to be around smart people. Ask them for advice. Find people building or doing cool things and ask them about it
I’m lucky to feel dumb on a daily basis at work when I talk to colleagues
Why does my Washer machine need AI
@tcstacks_ Ok but what about pentesting 2?
@vysecurity Also somewhat related but there are SO many super super talented red teamers that are _not_ on Twitter/x at all. Take what u read on here with a grain of salt
@vysecurity Some of the most talented people I've had the pleasure of working with are great because of this. ofc technically they are gifted, but I learned to most from people who thing strategically about how to break in, what to do next, what levers to pull to get someone to do xyz, etc
Most Popular Users
Elon Musk
@elonmusk
240.3M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
109.9M followers
Narendra Modi
@narendramodi
106.9M followers
Rihanna
@rihanna
97.5M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.7M followers
KATY PERRY
@katyperry
87.3M followers
Taylor Swift
@taylorswift13
81.1M followers
Lady Gaga
@ladygaga
72.7M followers
Kim Kardashian
@kimkardashian
69.6M followers
Virat Kohli
@imvkohli
69.3M followers
YouTube
@youtube
68.6M followers
Bill Gates
@billgates
63.7M followers
The Ellen Show
@theellenshow
62.5M followers
Neymar Jr
@neymarjr
62M followers
CNN
@cnn
61.9M followers
X
@x
60.9M followers
Selena Gomez
@selenagomez
60.4M followers