Why bring your own knife when Defender already left one in the kitchen? Extract credentials from PPL-protected LSASS using only Microsoft-signed components. No exploit is deployed. No driver is loaded. https://t.co/qGRPGtpfOn
New blog post: Dumping LSASS Without Touching Disk
Improved LSASS dumping in SpecterInsight’s dumper module, focusing on stealthy, in-memory techniques.
Read it here:
https://t.co/iyhUNU9fP8
#RedTeam#CyberSecurity#WindowsInternals#ThreatEmulation
🚨 İddiaya göre bir güvenlik araştırmacısı, CrowdStrike, SentinelOne, Cortex XDR ve Sophos'un tespit mekanizmalarını tersine mühendislikle yeniden oluşturdu.
Bu sayede dosyaların VirusTotal'e yüklenmeden, tamamen çevrimdışı ortamda bu EDR çözümlerine yakalanıp yakalanmayacağı test edilebiliyor. Bu gelişme hem güvenlik araştırmacılarının hem de maalesef saldırganlar açısından dikkat çekici.
İddia eğer doğruysa, siber saldırganların, kendi zararlı yazılımlarını EDR'lere yakalanmadan önce test edip, optimize etmesine neden olabilir.
👁️ God's Eye – AI-Powered Attack Surface Discovery
God's Eye is an open-source offensive security and attack surface management tool that combines reconnaissance, technology fingerprinting, vulnerability checks, Nuclei integration, and local AI-powered CVE correlation into a single Go binary. It features an interactive setup wizard, continuous ASM monitoring, offline Ollama support, stealth profiles, and live event streaming—making reconnaissance faster without relying on cloud services.
🔗 https://t.co/Pp5Vzilquc
#CyberSecurity #AttackSurface #BugBounty #OSINT #RedTeam
Onelogon: Taking over Active Directory Accounts via Netlogon🔑
We analyzed Netlogon, bypassed the Zerologon patch, resulting in a full auth bypass. An attacker can leverage this to compromise computer accounts, or even the entire AD. Non-standard config must be present tho 🧵
🚨 𝗡𝗲𝘁𝗹𝗼𝗴𝗼𝗻 𝗥𝗖𝗘 𝗗𝗲𝘁𝗲𝗰𝘁𝗶𝗼𝗻 🚨
𝗖𝗩𝗘‑𝟮𝟬𝟮𝟲‑𝟰𝟭𝟬𝟴𝟵 (𝗖𝗩𝗦𝗦 𝟵.𝟴) — flagged by 𝗖𝗘𝗥𝗧‑𝗘𝗨 as 𝘢𝘤𝘵𝘪𝘷𝘦𝘭𝘺 𝘦𝘹𝘱𝘭𝘰𝘪𝘵𝘦𝘥. Unauthenticated attackers can escalate to 𝗦𝗬𝗦𝗧𝗘𝗠 𝗽𝗿𝗶𝘃𝗶𝗹𝗲𝗴𝗲𝘀 on domain controllers, with 𝗜𝗻𝘁𝗲𝗿𝗻𝗲𝘁‑𝗲𝘅𝗽𝗼𝘀𝗲𝗱 𝗡𝗲𝘁𝗹𝗼𝗴𝗼𝗻 𝗲𝗻𝗱𝗽𝗼𝗶𝗻𝘁𝘀 facing the greatest risk.
To help defenders, I’m sharing a 𝗵𝗶𝗴𝗵‑𝗳𝗶𝗱𝗲𝗹𝗶𝘁𝘆 𝗗𝗲𝗳𝗲𝗻𝗱𝗲𝗿𝗫𝗗𝗥 𝗱𝗲𝘁𝗲𝗰𝘁𝗶𝗼𝗻 tailored to CVE‑2026‑41089, focused on monitoring the 𝗵𝗶𝗴𝗵���𝘀𝘁‑𝗿𝗶𝘀𝗸 𝗲𝗻𝗱𝗽𝗼𝗶𝗻𝘁 𝗲𝘅𝗽𝗼𝘀𝘂𝗿𝗲.
CERT-EU Alert
https://t.co/l7qxXpaTUA
KQL Detection:
https://t.co/nu58sxA4Yo
#Cybersecurity #NetLogonRCE #DefenderXDR
Always happens when I take time off I end up writing things, here's the latest post https://t.co/05wGdpb8AB all about learning the baselines of Windows, it doesn't cover everything and anything because it'd end up being a book but I've spun up a lab with observability and tried to write some detections for UBA and baselining. Enjoy!
Did an engagement sometime back where Certipy and Certify both failed to discover the ESC8 vuln due to the web enrollment endpoint being configured on a standalone/separate Web server.
I wrote about this edge case on my blog here: https://t.co/3RjopWLA18
Did you know you can Claude Max using Bountylens MCP
https://t.co/KlKF9BDc4T to hunt on target with the least dupe and highest payout automatically
Run it last week and it came with 2 crits and 2 highs
@BountyLens@Hacker0x01