![Enno_Insinuator's tweet photo. Manipulating RPKI (and more) with marquees in TLS certificates (and more) #RIPE92
https://t.co/TtkGhDvghk [PDF] https://t.co/mtD7Povbji](https://pbs.twimg.com/media/HJRafSsWUAAj0fj.jpg)
Olivia
Online
DirectoryRanger
@DirectoryRanger
This account assembles and disseminates information related to Active Directory and Windows security.
Joined December 2017
102 Following
36.7K Followers
16.8K Posts
Pinned Tweet
24/7 Active Directory Incident Response Contact:
Tel. +49 (0) 6221 7569637
E-mail: [email protected]
Investigating suspicious AI workflows in Microsoft Entra Agent ID: Autonomous agents, by @mattifestation
Part 1: https://t.co/X7JO1HvrZB
Part 2: https://t.co/E7FQmztOJm
Releasing SILVERPICK, a Windows shellcode development framework using C/C++.
https://t.co/Jk94d3OvMX
Who to follow
Will Schroeder
@harmj0y
Researcher @SpecterOps. Coding towards chaotic good while living on the decision boundary.
SpecterOps
@SpecterOps
Creators of BloodHound | Experts in Adversary Tradecraft | Leaders in Identity Attack Path Management
/r/netsec
@_r_netsec
Follow for new posts submitted to the netsec subreddit. Unofficial.
MS AD Kerberos update active since April:
If there is no explicit msds-SupportedEncryptionTypes Active Directory attribute defined the DefaultDomainSupportedEncTypes will be AES-SHA1 (0x18).
This is significantly slower to crack as RC4.
Getting Started with NetExec: Streamlining Network Discovery and Access
https://t.co/Ckh5ayaIzn
Manipulating RPKI (and more) with marquees in TLS certificates (and more) #RIPE92
https://t.co/TtkGhDvghk [PDF]
![Enno_Insinuator's tweet photo. Manipulating RPKI (and more) with marquees in TLS certificates (and more) #RIPE92
https://t.co/TtkGhDvghk [PDF] https://t.co/mtD7Povbji](https://pbs.twimg.com/media/HJRafSsXYAArH7X.jpg)
@FlorianHeigl1 @Enno_Insinuator Yes that is my understanding. The blocklist should take effect if they used a sig date. Unless we’re missing something obvious here. I feel gaslit half the time I’m trying to make sense of how signing rules are applied or rather misapplied haha.
My latest blog post: Using BYOVD to loot LSASS bypassing HVCI and all other security protections built in to Windows 11 25h2:
https://t.co/xuKSBQSwYr
I decided to publish my internal Azure Entra ID tool. There are a lot of these already available, but I've added some interesting features that have made a difference for me over the years. You can capture token through the browser using playwright
https://t.co/xiZaz0PKsC
#Azure
Outlook 365 for the PWN
https://t.co/hI6AnYXlmD
The Interesting Case of WSL for Payload Staging
https://t.co/d9vvc7PaJj
Site Unseen: Enumerating and Attacking Active Directory Sites, by @Synacktiv
https://t.co/TQJ9NRfTbj
If you had FOMO during #SOCON2026 or you want to run back your favorite talk, the talk playlist is now available!
👀 Watch all currently available sessions: https://t.co/MrcmfXAmsZ
📊: Access the presentation slides: https://t.co/qSjOXlELgF
24/7 Active Directory Incident Response Contact:
Tel. +49 (0) 6221 7569637
E-mail: [email protected]
SMB share enumeration via ACLs with NetExec🔥
NetExec now detects share permissions via ACL enumeration, instead of trying to write a file. In addition, we can now detect if a user has indirect access to the share, e.g. by having ACL write permissions!
Made by @PytelJack🚀
Windows Internals Part78: Terminating Process
https://t.co/mwq6xVefPa
#infosec #windows #linux #cybersecurity
Round two!
Yesterday was one report, here’s another: an unpatched NTLM coercion via the Windows Search (search-ms://) URI handler.
Same questions about how it got handled. It’s all in the writeup, timeline included.
https://t.co/eMbyEGbx8b
Exposed RDP: The Misconfiguration that Keeps Paying Off
https://t.co/QSqvCILMQX
@FlorianHeigl1 @Enno_Insinuator it's complicated, lol. Essentially yes, Microsoft-signed components get more implicit trust baked into the OS. But even signed third-party drivers (like the AMD PDFWKRNL.sys I used) can slip through if that specific version/hash isn't on Microsoft's blocklist yet.
Last Seen Users on Sotwe
小猫丸🍡
Seen from United States
Naughty Baby 😈
Seen from Turkey
سكس فون مقاطع نيكً زغب مسعبل ديوٌث ميقا زب كبير
Seen from France
الست انتصار 🥵♥️
BlackG
Seen from Turkey
Turkish Cuckold
Seen from Turkey
Musfhk
Seen from Netherlands
deniz
Seen from Turkey
👑 ℙ𝕣𝕚𝕟𝕔𝕖𝕤𝕤 𝔻𝕒ℕ𝕒 👑 
Seen from Algeria
Türk ifşa(liselianaL)
Seen from Turkey
Most Popular Users
Elon Musk
@elonmusk
240.2M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
109M followers
Narendra Modi
@narendramodi
107M followers
Rihanna
@rihanna
97.3M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.6M followers
KATY PERRY
@katyperry
86.9M followers
Taylor Swift
@taylorswift13
80.7M followers
Lady Gaga
@ladygaga
72.2M followers
Kim Kardashian
@kimkardashian
69.4M followers
YouTube
@youtube
68.6M followers
Virat Kohli
@imvkohli
68.6M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61.2M followers
X
@x
60.9M followers
Selena Gomez
@selenagomez
60M followers