Olivia
Online
Étienne Ducharme
@b13bs_
Offensive security enthusiast | Pentester @ Desjardins
Joined November 2015
323 Following
50 Followers
32 Posts
Didn't see much noise around this, but is IP rotation through AWS API Gateway now being detected and blocked?
I never had an issue with Fireprox before, but I'm definitely hitting some walls now.
This might be why Flareprox and OmniProx were released in the past few months.
The @NorthSec_io CTF always has its fair share of physical challenges!
Here's how we completed the NFC challenge of the vending machine: https://t.co/dzd1q6uoSL
How's your M365 password spraying game in 2024 ?
On my side, it's harder than ever.
For instance, after 6 rounds each 6 hours apart, starting to lock out accounts more and more each round, to the point where impact is noticeable.
Rounds performed using the great #TeamFiltration
Getting back into bug bounty.
Is the HackerOne CTF for private invites still a thing ? I haven't receive anything for days, which seems different from a few years ago
#bugbounty #hackerone
Who to follow
Michael Lahaye
@michaellahaye
Amandine Gagnon-Hebert
@agagnonhebert
Pentester padawan ��. One of a kind. Humans and Machines are my friends, but both give me headaches! Twitter as my bulletin board.
mtlsec
@mtlsec
Montreal flavoured Information Security for over 10 years! Contacts: @hugofortier / @erickdahan / @yvesbd Founder emeritus: @attractr
@ShitSecure Great article, thanks!
I'm currently hosting different versions of my phishing page with different entropy levels and obfuscators, including a custom one as you recommend.
Good results so far, but TrustWave appears to be the most thorough regarding the entropy. @OffenseTeacher
I fail to see how subdomain takeover could still work for https://t.co/QJ9M5AQNbY. Validation through asuid prevents the Custom Domain from being configured, hence it should block the attack. Does it not ?
Almost done with RTO course and I learned a lot, it is very complete and up-to-date.
However, one *key* material is not covered... Which MX switches is @_RastaMouse using ! We hear them in the background during the demo videos, I'm loving the sound.
@Jhaddix @Agarri_FR @NorthSec_io Awesome. I'll be able to thank you in person for EO newsletter. Cheers!
@ldionmarcil Great, seems to suit my needs from my quick tests. Thanks!
Hard to break good old habits, I'm still using the deprecated tool Aquatone for subdomain web flyover.
Any suggestions for a replacement ? I especially liked Aquatone's grouping feature for similar-looking pages.
Almost forgot to #brag for our podium (3rd place) at the CTF, with my colleagues from @OKIOKdata! The CTF was truly challenging and rewarding
Before post-event depression settles in, I'd like to thank @NorthSec_io organization and volunteers! Had an awesome couple of days
@NahamSec Still planning on doing it ? This content got me to sub to your Twitch channel
I hadn't written a writeup in a while, here is mine for the NorthSec 2022 internal network track. Props to @davidlebr1 for creating a great challenge!
https://t.co/c0wpLGiqJV
@mpgn_x64 I just got what you meant. Your uncracked NT hashes are the wordlist for hashcat -m 27100 on your captured NetNTLMv2 hashes.
Althought performance is not optimal, it would still be a good idea to run it without a rulefile and with uncracked NT hashes.
Nice find!
@mpgn_x64 I meant, I am not able to crack 5600 hashes with 27100 even thought it looks like the exact same format.
How would you find hashes that could be cracked with 27100 ?
Last Seen Users on Sotwe
Most Popular Users
Elon Musk 
@elonmusk
240.2M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
109.2M followers
Narendra Modi
@narendramodi
106.9M followers
Rihanna
@rihanna
97.3M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.6M followers
KATY PERRY
@katyperry
87M followers
Taylor Swift
@taylorswift13
80.8M followers
Lady Gaga
@ladygaga
72.3M followers
Kim Kardashian
@kimkardashian
69.5M followers
Virat Kohli
@imvkohli
68.8M followers
YouTube
@youtube
68.6M followers
Bill Gates
@billgates
63.5M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61.4M followers
X
@x
60.9M followers
Selena Gomez
@selenagomez
60.1M followers