Olivia
Online
Quentin Roland
@croco_byte
Pentester @Synacktiv 🤖
Joined June 2022
37 Following
343 Followers
72 Posts
Attacking heavy applications through named pipes: an attack surface often overlooked due to its complexity.
In this article, @TurboThonSec explains how we designed a tool abusing legitimate processes to attack higly privileged components of heavy clients.
Article⬇️
https://t.co/Y9tAU0xGAi
Hidden GPO-based attack paths are now in BloodHound.
@croco_byte breaks down new OU & AD Site abuse paths that can lead to privilege escalation or full domain compromise, and how to find, map, and weaponize them. #SOCON2026
https://t.co/rrK8yn7IFm: Exploiting SCCM Policies Distribution for Credentials Harvesting, Initial Access and Lateral Movement, by @croco_byte
https://t.co/KBnJFNSY1O
HID recently disclosed HID-PSA-2025-002, a critical flaw in the #ActivID Authentication Appliance 8.7.
In our new blog post, @us3r777 and @__pierreg break down exactly how they uncovered it, from methodology to exploitation 💡
Read it here ⬇️
https://t.co/wmXamNEqra
[Blogpost] @croco_byte presents how to exploit attack paths related to Active Directory sites' ACLs.
As the latter often constitute a blind spot for AD enumeration tools, the article also describes a pull request aiming to integrate them into the BloodHound project: https://t.co/s1qTnPvD2y
Afterwards, the great @croco_byte took the stage, also at #OrangeCon, to present the authentication relay techniques he discovered earlier this year.
As always, he illustrated his talk with a demo, showing that these techniques can be applied to real-world AD environments. 🔥
How safe is your browser?
Our ninja, Riadh Bouchahoua, uncovers how attackers can exploit Chromium extension loading to steal data, maintain persistent access, and breach confidentiality on Chromium-based browsers.
Read more here ⬇️ https://t.co/Q9c4CnL8qr
🧑🎓 Boost your offensive Active Directory skills with our Entry & Advanced trainings. Hands-on labs with dozens of machines + latest research from DEFCON, x33fcon & more! Seats are limited, don’t miss out!
🔗 Entry: https://t.co/7get5clXOg
🔗 Advanced: https://t.co/KEVNM9zdjF
🛠️ GroupPolicyBackdoor - a python utility for Group Policy Objects (GPOs) manipulation and exploitation.
✅ GPO attack vectors can very often lead to impactful privilege escalation scenarios in Active Directory environments. https://t.co/2bh2HsPORv
The GroupPolicyBackdoor tool, presented at #DEFCON 2025, is now available on Synacktiv's GitHub: https://t.co/CWLknch5RZ
This python utility offers a stable, modular and stealthy exploitation framework targeting Group Policy Objects in Active Directory!
My personal #defcon33 highlights:
Better tools for GPO exploitation: https://t.co/ZR1DT7LWOo
Critical vulns in Zscaler and Netskope: https://t.co/FaHFNdyPLL
Phishing on official Microsoft login: https://t.co/P0kwW8GFkD
SSH vulnerabilities: https://t.co/g3YOZfNKuo
@mjc91295814 @wil_fri3d Hi! The tool will be published during next week on Synacktiv's Github, we'Il announce the release with a tweet 😀
🔥 A few hours ago our experts took the stage at #DEFCON33, sharing cutting-edge research on SCCM exploitation and modern GPO attacks in Active Directory. Proud of the team! 🙌 cc @kalimer0x00 @quent0x1 @wil_fri3d
Don't miss @kalimer0x00 at #DEFCON33!
His talk, "SCCM: The Tree That Always Bears Bad Fruits", covers modern attack paths and abuse techniques in Microsoft SCCM, with a focus on internals, post-exploitation, and persistence! https://t.co/Vs9MAtax0I
#DEFCON #SCCM
Catch us at #DEFCON33!
@quent0x1 and @wil_fri3d will show how to turn your Active Directory into the attacker’s C2. They'll dive deep into how Group Policy Objects can be leveraged for stealthy enumeration and privilege escalation! https://t.co/CTT9EVdc50
#DEFCON #ActiveDirectory
Microsoft just released the patch for CVE-2025-33073, a critical vulnerability allowing a standard user to remotely compromise any machine with SMB signing not enforced! Checkout the details in the blogpost by @yaumn_ and @wil_fri3d.
https://t.co/EY5Z53w1ZT
Check out how I discover CVE-2025-33073 : RCE with NTLM reflectiv attack allowing authenticated user to compromise any machine without SMB signing enforced !
@stratosberry @Synacktiv The recording of the presentation should be available here shortly: https://t.co/FvoinppvXv
Taking the Relaying Capabilities of Multicast Poisoning to the Next Level: Tricking Windows SMB Clients into Falling Back to WEBDAV, by @synacktiv
https://t.co/DcCzTOmXFQ
Last Seen Users on Sotwe
Most Popular Users
Elon Musk 
@elonmusk
240.2M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
108.9M followers
Narendra Modi
@narendramodi
107M followers
Rihanna
@rihanna
97.3M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.6M followers
KATY PERRY
@katyperry
86.8M followers
Taylor Swift
@taylorswift13
80.6M followers
Lady Gaga
@ladygaga
72.2M followers
Kim Kardashian
@kimkardashian
69.4M followers
YouTube
@youtube
68.6M followers
Virat Kohli
@imvkohli
68.6M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61.1M followers
X
@x
60.9M followers
Selena Gomez
@selenagomez
59.9M followers