Hdys0un @david67847724 - Twitter Profile

about 10 hours ago

Why bring your own knife when Defender already left one in the kitchen? Extract credentials from PPL-protected LSASS using only Microsoft-signed components. No exploit is deployed. No driver is loaded. https://t.co/qGRPGtpfOn

0

58

11

32

4K

David67847724 retweeted

Geek

@geekbb

about 17 hours ago

用 Multi-Agent 自动跑完整个 CVE 挖掘流程，从挑项目、审代码、验证漏洞到生成可直接提交的漏洞报告。 https://t.co/NldjLQBLFv

4

123

26

165

12K

David67847724 retweeted

PracSec @prac_sec

1 day ago

New blog post: Dumping LSASS Without Touching Disk Improved LSASS dumping in SpecterInsight’s dumper module, focusing on stealthy, in-memory techniques. Read it here: https://t.co/iyhUNU9fP8 #RedTeam #CyberSecurity #WindowsInternals #ThreatEmulation

0

126

29

100

6K

David67847724 retweeted

Rıdvan Yağlı

@ridvanyagli

2 days ago

🚨 İddiaya göre bir güvenlik araştırmacısı, CrowdStrike, SentinelOne, Cortex XDR ve Sophos'un tespit mekanizmalarını tersine mühendislikle yeniden oluşturdu. Bu sayede dosyaların VirusTotal'e yüklenmeden, tamamen çevrimdışı ortamda bu EDR çözümlerine yakalanıp yakalanmayacağı test edilebiliyor. Bu gelişme hem güvenlik araştırmacılarının hem de maalesef saldırganlar açısından dikkat çekici. İddia eğer doğruysa, siber saldırganların, kendi zararlı yazılımlarını EDR'lere yakalanmadan önce test edip, optimize etmesine neden olabilir.

ridvanyagli's tweet photo. 🚨 İddiaya göre bir güvenlik araştırmacısı, CrowdStrike, SentinelOne, Cortex XDR ve Sophos'un tespit mekanizmalarını tersine mühendislikle yeniden oluşturdu.

Bu sayede dosyaların VirusTotal'e yüklenmeden, tamamen çevrimdışı ortamda bu EDR çözümlerine yakalanıp yakalanmayacağı test edilebiliyor. Bu gelişme hem güvenlik araştırmacılarının hem de maalesef saldırganlar açısından dikkat çekici.

İddia eğer doğruysa, siber saldırganların, kendi zararlı yazılımlarını EDR'lere yakalanmadan önce test edip, optimize etmesine neden olabilir.

4

259

45

262

27K

Who to follow

技术狂热者/XSS爱好者/理智且敏锐/上班族/INTP

David67847724 retweeted

YogSotho

@YogSoth0

4 days ago

#CVE-2026-38526 #Exploit Kit — #Krayin #CRM #RCE Kit Contents + https://t.co/59dIRFLFLC # Krayin CRM instance discovery and vulnerability scanner + https://t.co/UjlZCSsX54 # Webshell upload exploit with RCE, reverse shells, file transfer + requirements.txt #Python dependencies + README.md # Detailed analysis #0days #security #hacking #antisec

YogSoth0's tweet photo. #CVE-2026-38526 #Exploit Kit — #Krayin #CRM #RCE
Kit Contents
+ https://t.co/59dIRFLFLC # Krayin CRM instance discovery and vulnerability scanner
+ https://t.co/UjlZCSsX54 # Webshell upload exploit with RCE, reverse shells, file transfer
+ requirements.txt #Python dependencies
+ README.md # Detailed analysis
#0days #security #hacking #antisec

0

26

9

11

1K

David67847724 retweeted

Vivek | Cybersecurity

@VivekIntel

5 days ago

👁️ God's Eye – AI-Powered Attack Surface Discovery God's Eye is an open-source offensive security and attack surface management tool that combines reconnaissance, technology fingerprinting, vulnerability checks, Nuclei integration, and local AI-powered CVE correlation into a single Go binary. It features an interactive setup wizard, continuous ASM monitoring, offline Ollama support, stealth profiles, and live event streaming—making reconnaissance faster without relying on cloud services. 🔗 https://t.co/Pp5Vzilquc #CyberSecurity #AttackSurface #BugBounty #OSINT #RedTeam

0

111

25

116

4K

David67847724 retweeted

Dark Web Informer @DarkWebInformer

6 days ago

🚨 CVE-2026-45504: Microsoft Exchange File Read CVSS: 8.8 PoC Published: June 24th, 2026 PoC: https://t.co/0K672sZL3y Writeup: https://t.co/8oWBkdGVq7

DarkWebInformer's tweet photo. 🚨 CVE-2026-45504: Microsoft Exchange File Read

CVSS: 8.8

PoC Published: June 24th, 2026
PoC: https://t.co/0K672sZL3y

Writeup: https://t.co/8oWBkdGVq7 https://t.co/yfU90q10u3

2

104

24

41

16K

David67847724 retweeted

Rahul Maini @iamnoooob

5 days ago

New blog: We show how a resurrected H2 INIT allows RCE into Metabase Cloud and taking over any tenant! Read the full write-up: https://t.co/APxB2zazc2

iamnoooob's tweet photo. New blog: We show how a resurrected H2 INIT allows RCE into Metabase Cloud and taking over any tenant!

Read the full write-up: https://t.co/APxB2zazc2 https://t.co/iYNzBcU9Lf

1

90

22

57

16K

David67847724 retweeted

Alex Neff @al3x_n3ff

7 days ago

Onelogon: Taking over Active Directory Accounts via Netlogon🔑 We analyzed Netlogon, bypassed the Zerologon patch, resulting in a full auth bypass. An attacker can leverage this to compromise computer accounts, or even the entire AD. Non-standard config must be present tho 🧵

al3x_n3ff's tweet photo. Onelogon: Taking over Active Directory Accounts via Netlogon🔑

We analyzed Netlogon, bypassed the Zerologon patch, resulting in a full auth bypass. An attacker can leverage this to compromise computer accounts, or even the entire AD. Non-standard config must be present tho 🧵 https://t.co/VJ2wO3fCHU

9

688

195

431

77K

David67847724 retweeted

Steven Lim

@0x534c

17 days ago

🚨 𝗡𝗲𝘁𝗹𝗼𝗴𝗼𝗻 𝗥𝗖𝗘 𝗗𝗲𝘁𝗲𝗰𝘁𝗶𝗼𝗻 🚨 𝗖𝗩𝗘‑𝟮𝟬𝟮𝟲‑𝟰𝟭𝟬𝟴𝟵 (𝗖𝗩𝗦𝗦 𝟵.𝟴) — flagged by 𝗖𝗘𝗥𝗧‑𝗘𝗨 as 𝘢𝘤𝘵𝘪𝘷𝘦𝘭𝘺 𝘦𝘹𝘱𝘭𝘰𝘪𝘵𝘦𝘥. Unauthenticated attackers can escalate to 𝗦𝗬𝗦𝗧𝗘𝗠 𝗽𝗿𝗶𝘃𝗶𝗹𝗲𝗴𝗲𝘀 on domain controllers, with 𝗜𝗻𝘁𝗲𝗿𝗻𝗲𝘁‑𝗲𝘅𝗽𝗼𝘀𝗲𝗱 𝗡𝗲𝘁𝗹𝗼𝗴𝗼𝗻 𝗲𝗻𝗱𝗽𝗼𝗶𝗻𝘁𝘀 facing the greatest risk. To help defenders, I’m sharing a 𝗵𝗶𝗴𝗵‑𝗳𝗶𝗱𝗲𝗹𝗶𝘁𝘆 𝗗𝗲𝗳𝗲𝗻𝗱𝗲𝗿𝗫𝗗𝗥 𝗱𝗲𝘁𝗲𝗰𝘁𝗶𝗼𝗻 tailored to CVE‑2026‑41089, focused on monitoring the 𝗵𝗶𝗴𝗵��𝘀𝘁‑𝗿𝗶𝘀𝗸 𝗲𝗻𝗱𝗽𝗼𝗶𝗻𝘁 𝗲𝘅𝗽𝗼𝘀𝘂𝗿𝗲. CERT-EU Alert https://t.co/l7qxXpaTUA KQL Detection: https://t.co/nu58sxA4Yo #Cybersecurity #NetLogonRCE #DefenderXDR

0x534c's tweet photo. 🚨 𝗡𝗲𝘁𝗹𝗼𝗴𝗼𝗻 𝗥𝗖𝗘 𝗗𝗲𝘁𝗲𝗰𝘁𝗶𝗼𝗻 🚨

𝗖𝗩𝗘‑𝟮𝟬𝟮𝟲‑𝟰𝟭𝟬𝟴𝟵 (𝗖𝗩𝗦𝗦 𝟵.𝟴) — flagged by 𝗖𝗘𝗥𝗧‑𝗘𝗨 as 𝘢𝘤𝘵𝘪𝘷𝘦𝘭𝘺 𝘦𝘹𝘱𝘭𝘰𝘪𝘵𝘦𝘥. Unauthenticated attackers can escalate to 𝗦𝗬𝗦𝗧𝗘𝗠 𝗽𝗿𝗶𝘃𝗶𝗹𝗲𝗴𝗲𝘀 on domain controllers, with 𝗜𝗻𝘁𝗲𝗿𝗻𝗲𝘁‑𝗲𝘅𝗽𝗼𝘀𝗲𝗱 𝗡𝗲𝘁𝗹𝗼𝗴𝗼𝗻 𝗲𝗻𝗱𝗽𝗼𝗶𝗻𝘁𝘀 facing the greatest risk.

To help defenders, I’m sharing a 𝗵𝗶𝗴𝗵‑𝗳𝗶𝗱𝗲𝗹𝗶𝘁𝘆 𝗗𝗲𝗳𝗲𝗻𝗱𝗲𝗿𝗫𝗗𝗥 𝗱𝗲𝘁𝗲𝗰𝘁𝗶𝗼𝗻 tailored to CVE‑2026‑41089, focused on monitoring the 𝗵𝗶𝗴𝗵��𝘀𝘁‑𝗿𝗶𝘀𝗸 𝗲𝗻𝗱𝗽𝗼𝗶𝗻𝘁 𝗲𝘅𝗽𝗼𝘀𝘂𝗿𝗲.

CERT-EU Alert
https://t.co/l7qxXpaTUA

KQL Detection:
https://t.co/nu58sxA4Yo

#Cybersecurity #NetLogonRCE #DefenderXDR

5

345

78

228

27K

David67847724 retweeted

pyn3rd

@pyn3rd

18 days ago

#CVE-2026-48907 Unauthenticated RCE in #Joomla Content Editor Extension

3

391

60

183

23K

David67847724 retweeted

Fady Moheb

@N1NJ10_

27 days ago

https://t.co/4n2TwYFJY9

1

63

14

88

4K

David67847724 retweeted

Andy Gill

@ZephrFish

about 1 month ago

Always happens when I take time off I end up writing things, here's the latest post https://t.co/05wGdpb8AB all about learning the baselines of Windows, it doesn't cover everything and anything because it'd end up being a book but I've spun up a lab with observability and tried to write some detections for UBA and baselining. Enjoy!

0

38

11

36

6K

David67847724 retweeted

Samir

@SBousseaden

29 days ago

new detection content for Kubernetes covering a variety of techniques using k8 audit logs: https://t.co/VTBCknTQaP

0

167

50

124

13K

David67847724 retweeted

Vivek | Cybersecurity

@VivekIntel

30 days ago

Claude-Red — Turn Claude Into a Specialized Red Team Operator 💀💥 A massive library of offensive security skills for Claude. • 50+ specialized security skills • Auto-loaded based on conversation context • Web, AD, Cloud, Mobile, Wireless & Exploit Dev • Structured SKILL .md methodology system • Zero context waste — only relevant skills load Categories: → Web Application Security → Active Directory → Cloud Security → Wireless Attacks → Mobile Pentesting → OSINT & Recon → Exploit Development → AI Security → Red Team Operations Highlights: • SQLi, XSS, SSRF, SSTI, XXE, IDOR • Kerberoasting, ADCS, NTLM Relay • AWS, Azure & GCP attack paths • WPA2/WPA3, BLE, Zigbee, LoRaWAN • EDR Evasion & Shellcode Development • Fuzzing & Vulnerability Research Built for: • Red Teamers • Bug Bounty Hunters • Pentesters • Security Researchers • CTF Players 🔗 https://t.co/QraHdkdU0A #ArtificialIntelligence #RedTeam #Pentesting #CyberSecurity #bugbounty #OSINT #CloudSecurity #InfoSec

VivekIntel's tweet photo. Claude-Red — Turn Claude Into a Specialized Red Team Operator 💀💥

A massive library of offensive security skills for Claude.

• 50+ specialized security skills • Auto-loaded based on conversation context • Web, AD, Cloud, Mobile, Wireless & Exploit Dev • Structured SKILL .md methodology system • Zero context waste — only relevant skills load

Categories: → Web Application Security → Active Directory → Cloud Security → Wireless Attacks → Mobile Pentesting → OSINT & Recon → Exploit Development → AI Security → Red Team Operations

Highlights: • SQLi, XSS, SSRF, SSTI, XXE, IDOR • Kerberoasting, ADCS, NTLM Relay • AWS, Azure & GCP attack paths • WPA2/WPA3, BLE, Zigbee, LoRaWAN • EDR Evasion & Shellcode Development • Fuzzing & Vulnerability Research

Built for: • Red Teamers • Bug Bounty Hunters • Pentesters • Security Researchers • CTF Players

🔗 https://t.co/QraHdkdU0A

#ArtificialIntelligence #RedTeam #Pentesting #CyberSecurity #bugbounty #OSINT #CloudSecurity #InfoSec

0

149

33

136

6K

David67847724 retweeted

Vivek | Cybersecurity

@VivekIntel

about 1 month ago

AdStrike — AI Powered Active Directory Attack Framework 💀🔥 A modular red-team framework built for advanced AD operations, Kerberos workflows, ADCS abuse, credential access, lateral movement & attack-path analysis. ⚡ 🔥 58 interactive modules 🛡️ Kerberos-aware workflows 🤖 AI-assisted operator agent 📊 HTML / JSON / Markdown reporting ⚔️ BloodHound, Impacket, Certipy, NetExec integration Built for professional red team operations & authorized security testing. 📌 Credit: @tmrswrr 🔗 https://t.co/eRNFDgJBQd #ActiveDirectory #RedTeam #CyberSecurity #Pentesting #ADSecurity #OffensiveSecurity

VivekIntel's tweet photo. AdStrike — AI Powered Active Directory Attack Framework 💀🔥

A modular red-team framework built for advanced AD operations, Kerberos workflows, ADCS abuse, credential access, lateral movement & attack-path analysis. ⚡

🔥 58 interactive modules
🛡️ Kerberos-aware workflows
🤖 AI-assisted operator agent
📊 HTML / JSON / Markdown reporting
⚔️ BloodHound, Impacket, Certipy, NetExec integration

Built for professional red team operations & authorized security testing.

📌 Credit: @tmrswrr
🔗 https://t.co/eRNFDgJBQd

#ActiveDirectory #RedTeam #CyberSecurity #Pentesting #ADSecurity #OffensiveSecurity

4

497

120

450

20K

David67847724 retweeted

Abdul Mhanni

@abdo_mhanni

about 1 month ago

Did an engagement sometime back where Certipy and Certify both failed to discover the ESC8 vuln due to the web enrollment endpoint being configured on a standalone/separate Web server. I wrote about this edge case on my blog here: https://t.co/3RjopWLA18

1

107

21

67

11K

David67847724 retweeted

SickSec 🇲🇦 🇵🇸

@OriginalSicksec

about 2 months ago

Did you know you can Claude Max using Bountylens MCP https://t.co/KlKF9BDc4T to hunt on target with the least dupe and highest payout automatically Run it last week and it came with 2 crits and 2 highs @BountyLens @Hacker0x01

OriginalSicksec's tweet photo. Did you know you can Claude Max using Bountylens MCP
https://t.co/KlKF9BDc4T to hunt on target with the least dupe and highest payout automatically

Run it last week and it came with 2 crits and 2 highs
@BountyLens @Hacker0x01 https://t.co/mOSomvinNw

5

400

51

442

21K

David67847724 retweeted

Daily CyberSecurity @the_yellow_fall

about 2 months ago

OpenMRS v2.8.6 fixes a critical 9.1 CVSS SSTI flaw and Zip Slip RCE. Protect global patient health records and upgrade your EMR infrastructure immediately! #OpenMRS #HealthIT #CyberSecurity #InfoSec #EMR #DataBreach #RCE #SSTI #MedicalSecurity https://t.co/hKW28RzQwB