Olivia
Online
Mor Davidovich
@dec0ne
Security Researcher | Red Teamer | Malware Developer
Joined July 2020
399 Following
1.7K Followers
130 Posts
Check out my new blog post, "Weaponizing Background Images for Information Disclosure and LPE" where I walk through the AnyDesk vuln I found a few months ago (CVE-2024-12754/ZDI-24-1711):
https://t.co/Tv5y645wAn
Elastic Security Labs has discovered a new method for initial access and evasion in the wild, termed #GrimResource, which involves arbitrary execution in mmc.exe through a crafted MSC file.
https://t.co/q4u4gTPE6O
https://t.co/usWJvhygIC
@alisaesage I've wanted to get into fuzzers since I started in this field. Good resources are hard to find, so I always put that off. This could really help jump-start my learning process and expand my team's capabilities.
Happy Solstice! Time to celebrate Truth and Justice. I appreciate your support; and I want to let you try one of my value-packed & expensive commercial masterclasses:
☀️ Masterclass: Hacking Fuzzers for Smarter Bughunting (on-demand video) https://t.co/yEgUXbGPXF
This class will give you a core level grasp of modern evolutionary coverage-guided fuzzing as pro hackers use it. It goes fast from fuzzing essentials to advanced customization & examining how code coverage works on CPU assembly level, 4 hours hands-on video. Free access from 21st to 23rd June (access conditions below)
Who to follow
Octoberfest7
@Octoberfest73
Red Team | Offensive Tool Dev | 2x Course Author @ Zero-Point Security
x86matthew
@x86matthew
system emulation / reverse-engineering / binary analysis. @the_secret_club
an0n
@an0n_r0
CRT(E|O|L) | OSCP | @RingZer0_CTF 1st (for 2yrs) | HackTheBox Top10 | RPISEC MBE | Flare-On completer | GoogleCTF writeup winner | SSD research | Math MSc |🇭🇺
@theluemmel Congrats buddy, best of luck, I hope you crush it!
One Box To Rule Them All
Little write up of my way to tackle remote pentesting situations with a dropbox.
This is about non covert systems that will allow you to carry out full fledged pentests when implanted into the customers network.
https://t.co/qFhIwXHb1l
I usually tend to avoid politics but nowadays it is impossible.
To all the Hamas supporters that reading this post, all the people that shout "free Palestine!" take a moment to answer those questions:
Who ruled Palestine and in which year was is conquered? (hint: no answer)
Cashing in on browser behaviour to silently download executable files. A blog post by @defte_: https://t.co/R8nWxjgewj
The entire SCCM hierarchy is vulnerable to takeover from any primary site because by design, there is no security boundary between sites in the same hierarchy. Check out my new post to learn more about how this can be abused, mitigated, and detected!
https://t.co/ZJPCiIVtYL
Our EXE loader is now available to everyone on GitHub:
https://t.co/jMwluAqnw3
We'll be uploading more repositories on our GitHub in the future.
Love to see our work inspires stuff like that.
Check out @sam_phisher new blog post on Automating MalRDP deployment with Terraform and Ansible.
Great Work!
I saw this the other day, and took a look at @ShorSecLtd's article. Brilliant work that I wanted to try to automate somewhat.
My blog post about deploying MalRDP to Azure with Terraform and Ansible: https://t.co/PLI6UUoICl
My Okta for Red Teamers post is up! We look at how Kerberos SSO works, how to intercept credentials via a fake AD Agent, decrypting AD Agent tokens, adding skeleton key's, and even how to deploy a janky SAML IdP server to auth as any user for good measure. https://t.co/Hs0wN5397s
@d_xedex Myabe try it with the --forest or --legacy flags, those flags should be used according to the zone type you saw during the --print-zones command. It would help to see the command you ran.
New blog post of mine and my first in our "The Path to DA" series where I share a cool attack path I exploited in a recent engagement to gain Domain Admin privileges.
Hope you like it :)
https://t.co/Bje5kXgzcz
🔥New Blog Post Alert!
The next chapter in our "The Path to DA" series is now live: "(Relaying) To The Internet And Back".
This entry, by @dec0ne, explores yet another route to DA, focusing on the intricacies of ADIDNS Abuse, LDAP relay, RBCD, and more.
https://t.co/ChV2ZFRKO9
@d_xedex 😆 lol
Achievement Unlocked!
Just kidding. Hopefully, it was worth it
@Idov31 Do you ever rest?!
Always love reading your posts
Amazing work bro🔥🔥🔥
Part 5 of Lord Of The Ring0 is out!
https://t.co/ydGqmCrYSL
On this part, I explained how APC and thread injection made from the kernel to a user mode process, IRP & SSDT hook, why they don't work anymore (and their alternatives)
#infosec #CyberSecurity
Last Seen Users on Sotwe
Most Popular Users
Elon Musk 
@elonmusk
240.2M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
108.9M followers
Narendra Modi
@narendramodi
107M followers
Rihanna
@rihanna
97.3M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.6M followers
KATY PERRY
@katyperry
86.8M followers
Taylor Swift
@taylorswift13
80.6M followers
Lady Gaga
@ladygaga
72.2M followers
Kim Kardashian
@kimkardashian
69.4M followers
YouTube
@youtube
68.6M followers
Virat Kohli
@imvkohli
68.6M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61.1M followers
X
@x
60.9M followers
Selena Gomez
@selenagomez
59.9M followers