Olivia
Online
MrP
@_mrp314
Dune
Joined November 2019
727 Following
158 Followers
90 Posts
I've released Puzzle, a research project on deploying malware in monitored environments by abusing Windows minifilters functionality. It includes several utilities and PoCs to interact with minifilters and explore static and runtime analysis evasion 👐
https://t.co/8zWv1g8n79
Microsoft has addressed a one-click NTLM leak vulnerability affecting Windows Snipping Tool (CVE-2026-33829), discovered by our researcher Marcos Díaz (@Calvaruga).
➡️ Read the write-up: https://t.co/JvMGad5NuI
➡️ Microsoft bulletin: https://t.co/0IbpRxxUY7
Meetings You Didn’t Plan, But We Did
In this post, @ineesdv breaks down how calendar event processing in Outlook and Gmail can be abused to deliver spoofed meeting invites that are automatically added to a user's calendar without interaction
➡️Read more: https://t.co/7RApljHair
AvePoint has fixed a vulnerability in DocAve, Perimeter and Compliance Guardian discovered by our researchers @m1ntko and @Calvaruga.
This vulnerability can be used to achieve Remote Code Execution (RCE) in affected systems.
➡️ Advisory: https://t.co/bD9hLomlG1
Hoy a las 20:00 (hora España) estaré hablando sobre Windows, suplantación de usuarios y movimientos laterales en el canal de @AlbertoJGarci11
YouTube: HablemosCyber
@BHinfoSecurity My site https://t.co/1L9XIBDuiZ and my YouTube channel (ATTL4S). I have multiple presentations about Active Directory, Windows and C2 - among other topics. Thanks for this.
I've just released Eclipse, a PoC of what I call Activation Context Hijack. This technique redirects any application to load an arbitray DLL, allowing to inject code into any trusted process. More info available on Github. https://t.co/SgFHpaRJc1
You can find my slides for "Offensive VBA" talk here https://t.co/QblUB0yhSS
Unwinder 0.1.2 now offers a different call stack spoofing mechanism besides SilentMoonWalk: stack replacement. It is fully functional and ready to use, but keep in mind that it is still under development and some bugs may appear.
LSA Whisperer focuses on interacting with Authentication Packages using their individual message protocols. Read @mcbroom_evan's NEW blog post detailing the journey developing the project to learn more. ⬇️ https://t.co/q93eSvPP0i
Although it's nothing new, @ineesdv and I are pleased to publish our own ROP-based implementation of the code fluctuation technique. We've tried to keep it simple and functional, avoiding to use common features like Timers, HWBP or APCs. https://t.co/sm2O310XNg
Our colleagues @_Kudaes_ & @ineesdv will be at #HackOn2024 presenting an alternative approach to ROP-based sleep obfuscation technique to evade memory scanners.
➡️ Read more: https://t.co/stknNHL5Zd
Our colleague @IagoAbad has weaponized the leaked token handles technique for MSSQL.
Now open token handles in MSSQL's process (sqlservr.exe) can be abused to change security context and escalate privileges both locally and in the domain.
https://t.co/JmXSDrLMfH
Call stack spoofing has reached Rust🙌. I have rewritten Unwinder and it is now a complete and stable weaponization of SilentMoonWalk technique. I have also added support for indirect syscalls and will be adding new features very soon. https://t.co/9gUEanO9p4
The @NavajaNegra_AB conference is just around the corner! @_Kudaes_ will be on-site to talk about malware development and EDR evasion.
➡️ Read more: https://t.co/zFZgCnNb1d
First video of "Understanding a Payload's Life" uploaded. As soon as I have some spare time I'll be recording more. Enjoy!
https://t.co/AJsQvUgFws
Watchguard has fixed 4 vulnerabilities in Watchguard EPDR discovered by our researchers @antuache and @Calvaruga.
These vulnerabilities can be used to turn-off the defensive capabilities of the product and achieve privilege escalation.
➡️ Advisories: https://t.co/uJGhFsI5VR
To difficult using reverse proxies for phishing (Muraena, Evilnginx, etc.) you can use JS + server side validation to modify flow and raise an alert. Although it's 5 years old, I believe still relevant the usage of anti-debugging tricks in JS for this https://t.co/gVpQoPlgXV
Last Seen Users on Sotwe
Trends for you
Most Popular Users
Elon Musk 
@elonmusk
240.1M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
108.8M followers
Narendra Modi
@narendramodi
107M followers
Rihanna
@rihanna
97.3M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.5M followers
KATY PERRY
@katyperry
86.8M followers
Taylor Swift
@taylorswift13
80.6M followers
Lady Gaga
@ladygaga
72.1M followers
Kim Kardashian
@kimkardashian
69.4M followers
YouTube
@youtube
68.6M followers
Virat Kohli
@imvkohli
68.5M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61M followers
X
@x
60.9M followers
CNN Breaking News
@cnnbrk
59.9M followers