Olivia
Online
Clément Notin
@cnotin
😈 Security research (#ActiveDirectory #EntraID) & pentest 🎉 #CTF @tipi_hack 👨💼 Works @TenableSecurity, opinions my own 🪂
France 🇫🇷🗼
Joined February 2011
984 Following
5.9K Followers
8.7K Posts
Pinned Tweet
Have you ever wondered how to decrypt “encrypted stub data” 🔐 fields in Wireshark when analyzing Kerberos, RPC, LDAP... traffic?
➡️ Ask no more!
https://t.co/dkjidQt6Fv
1. get Kerberos keys
2. give keys to Wireshark in a keytab file
3. get decrypted RPC!
Works with NTLM too 😉
Here we go for day 1 of @fwdcloudsec 🎉
Be sure to attend my talk with @popov1ron in room 2 at the end of the day
Who to follow
Will Schroeder
@harmj0y
Researcher @SpecterOps. Coding towards chaotic good while living on the decision boundary.
Thomas Seigneuret
@_zblurx
Red Teamer & Security researcher
Maintainer of #NetExec, #DonPAPI, dploot, certsync, and all the stuff on my github repo
bsky: https://t.co/zISpgvDSWc
Pixis
@HackAndDo
Active Directory curious ♥
Autonomous #AI agents raise major security questions. At @fwdcloudsec North America, Tenable researchers @cnotin and @popov1ron will explore how AI agent identities function as a specialized, high-velocity breed of Non-Human Identity (NHI).
🔗: https://t.co/BMpVFxk5vj
@Richie__301 @TenableSecurity @fwdcloudsec @popov1ron Hence the need for a dedicated identity model 👌
@nikhil_mitt Oh wow I feel the pain for you…
@nb4ld Ah vous me rassurez sur la définition !
Je ne connais pas assez ces codebases pour vous aiguiller. Toutefois ça m’étonnerait que OpenSSL n’ait pas déjà de l’ASM d’optimisation à certains endroits. Et aussi pour appeler certaines primitives comme AES-NI.
Bon courage !
@nb4ld Qu’est-ce que tu entends par kernel ? Car j’ai du mal à appliquer la définition que j’ai, aux éléments de la 2ème colonne de ce tableau 🤔
Et pourquoi sur OpenSSL par ex, ne sélectionner que SHA256 ?
@ipcdollar1 Nice points! As a Security Descriptor 🤓 I love to hate this abstraction
@_Euzebius Yes I was thinking about such scenarios, but that's a different category then like "AI engineering". Similar to DARPA's AI CTF
Well that’s confirmed… 😬 the honest podium is
1/ Claude 🏆
2/ tie between ChatGPT / Gemini / etc
@PierreGrivet Je n’ai testé que les modèles d’Anthropic sur ce CTF et c’était déjà très très efficace ! J’aurais bien aimé pouvoir comparer oui 😉
@NicolasZu @romainsimon Attention quand même à quelques simplifications erronées. Par exemple la "contribution salariale" de 10% sur les RSU https://t.co/NzdQ72lGmt qui n’existe pas forcément même pour les plans qualifiants cf. https://t.co/PvPq26S6VY
@sapirxfed Wow I hope they have a very strong anti-prompt injection!
https://t.co/79lsQvoWja
Most organizations are flying blind when it comes to the Non-Human Identities behind their agentic AI🕵️
We'll present at @fwdcloudsec NA 2026 "Who Are the Robots? Uncovering AI Agents Identities." Covering Microsoft’s “Entra Agent ID” and Google’s “GCP Vertex AI Agent identities”
Last Seen Users on Sotwe
Most Popular Users
Elon Musk 
@elonmusk
240.1M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
108.8M followers
Narendra Modi
@narendramodi
106.9M followers
Rihanna
@rihanna
97.2M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.5M followers
KATY PERRY
@katyperry
86.7M followers
Taylor Swift
@taylorswift13
80.5M followers
Lady Gaga
@ladygaga
72.1M followers
Kim Kardashian
@kimkardashian
69.3M followers
YouTube
@youtube
68.6M followers
Virat Kohli
@imvkohli
68.4M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
60.9M followers
X
@x
60.9M followers
CNN Breaking News
@cnnbrk
59.9M followers