Olivia
Online
Burnout
@BurnOneOuts
Buy High and Sell Low
Joined September 2021
1.2K Following
181 Followers
1.4K Posts
Are you still reverse engineering large JS files manually?
Save hours of manual workload. Checkout https://t.co/10muV7baIG
> Scan a domain at Jsmon, go to Reconnaissance
> If the app is using GraphQL, you'll see easy-to-read GraphQL operations
shipping: WinSSHound
maps SSH access in AD as BloodHound paths. because Windows OpenSSH cheerfully ignores your "Deny Logon" GPOs (pre-2025) and on a default sshd_config every Authenticated User in the domain can walk right in. Why? Because Microsoft.
https://t.co/ONXuguz7r3
CoinGecko formulas are now available in Microsoft Excel ✨
Use =CG.PRICE(...) to get live prices for your favorite coins and 37M+ crypto assets, right in your spreadsheets.
See all 5 formulas in action ⬇️
https://t.co/dhwiy5HhNN
Bookmark this and tag your finance friends.
Another day, another async BOF. With KeeLog, you can monitor KeePass instances and capture the master password as soon as its entered. https://t.co/ZSqKP5Ww1F
Been very interested in Async BOFs lately and implemented a few for use with Conquest. The first implements Rubeus monitor as a BOF and notifies when TGTs are collected. The second monitors for clipboard changes and returns them. https://t.co/p7hmjv4kAq https://t.co/Kdo9FG9Fba
Me trying to figure out Agent Identities in Entra ID. I really wonder who decided apps and service principals weren't already difficult enough to understand and went with a design that is even wayyy more complicated 😅.
Interviewer : where do you see yourself in 5 years ?
Me :
NTLMv1 is still out there. And now it’s easier than ever to break.
@skylerknecht walks through how Google’s rainbow tables make NT hash recovery practical, no third-party service required.
Check it out! ⤵️ https://t.co/AoC1NFBNK1
Releasing one of my research tools: EVENmonitor🖥️
Inspired by LDAPmonitor, I implemented a monitoring tool for the Windows Event log in pure python. You can just attach it via the network and then filter for specific event IDs or keywords.
Available at: https://t.co/TpjEnIW7C0
@Dinosn With Microsoft disabling RC4 for Kerberos come summer, will that affect Ntlmv2 or will it stick around for a few more iterations?
PSA: That 'Disable NTLMv1' GPO you set years ago? It’s lying to you. LmCompatibilityLevel set to 5 is not enough. https://t.co/DtaZX0MAkP
KrbRoastParser - a tool for parsing Kerberos packets from pcap files to extract AS-REQ, AS-REP and TGS-REP hashes https://t.co/8iKvMhS8Az
Every Sliver C2 Tutorial Was Outdated. So I Wrote My Own https://t.co/czNggkmiwE
LDAPNomNom
Can quietly and anonymously bruteforce Active Directory usernames at insane speeds from Domain Controllers by abusing LDAP Ping requests (cLDAP). No Windows audit logs generated. High speed ~ up to 50K/sec per server. You can go way beyond that with multiple servers in parallel
https://t.co/6NJ8ivxUiU
ProxyBlob. tool designed to create SOCKS proxy tunnels through Azure Storage services, by @quarkslab
https://t.co/bMv2y4fx4V
ICMP data exfiltration is underestimated.
https://t.co/RoX2B6AN6i
ICMP traffic is often excluded from firewall log ingestion, and on endpoints most EDRs neither alert on this exfiltration method nor expose the ICMP payload content needed to build custom detections.
KslDump - Extraction of credentials from PPL-protected LSASS using only Microsoft-signed components https://t.co/pDHUeRw33I
meet VMkatz, https://t.co/eza4AXRuFT
Big thanks to @_RastaMouse @Octoberfest73 @KlezVirus @codex_tf2 — this took a fraction of the time it should have because of you all.
Most Popular Users
Elon Musk 
@elonmusk
240.2M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
109.1M followers
Narendra Modi
@narendramodi
107M followers
Rihanna
@rihanna
97.3M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.6M followers
KATY PERRY
@katyperry
86.9M followers
Taylor Swift
@taylorswift13
80.7M followers
Lady Gaga
@ladygaga
72.3M followers
Kim Kardashian
@kimkardashian
69.4M followers
Virat Kohli
@imvkohli
68.7M followers
YouTube
@youtube
68.6M followers
Bill Gates
@billgates
63.5M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61.2M followers
X
@x
60.9M followers
Selena Gomez
@selenagomez
60M followers