Olivia
Online
Maltemo
@Maltemo
🇫🇷 - Security auditor. In my free time, interested in development, OSINT & Forensic. Eclectic hobbies and interests.
Joined July 2012
187 Following
244 Followers
311 Posts
@Castle_io 's research team just open sourced a disposable email domain list built from real abuse telemetry 🔎
Disposable email providers are a core piece of infrastructure behind fake account creation and signup abuse, similarly to how proxies enable large-scale traffic distribution.
A few things we cared about:
- curated, not aggregated from public lists
- strictly disposable domains
- updated daily
- ranked by observed abuse prevalence
And yes, before someone says it: attackers also use aged Gmail accounts, compromised inboxes, freshly registered domains, etc 😄
Disposable domains are not the whole problem, but they’re still one of the clearest infrastructure-level signals behind large-scale signup abuse.
Repo:
https://t.co/M7nx959KHE
Hoy !
Pas de stream ce soir... MAIS !
Release d'une petite série que j'ai pris plaisir à vivre, tourner, et réaliser sur le travail fait ave d'autres nombreux bénévoles pour @hack_4_values !
On y parle de l'organisation, des enjeux, des ONG évidemment, mais aussi des bugs trouvés, de méthodologie, et de l'aspect HuMaIn ! 💌
Vos partages -très- appréciés, et je vous souhaite une -très- bonne semaine 🌻
https://t.co/NLaqj5auW5
Who to follow
Cyrille HERBY
@cyssboy
Touche à tout : Python, PHP, Java, AD, Firewall, CCNA, ITIL, Kali, Metasploit, Wireshark, IDA, GDB...
mais aussi musicien (accordéon, batterie, percu...)
Maëlle
@maelle_le_bon
Ingé passionné programmation + cybersecu.
https://t.co/HMLqVZinrx
Noiche
@_Noiche
❤️ RE & PWN
📱iOS security researcher and TeamLead @FuzzingLabs
⛳️Playing around w/ @MedusHack
My new research
Escalation of Self-XSS to XSS using modern browser capabilities.
https://t.co/aYKhHAeCcq
🔍 New research on a niche technique to abuse "GPP Local Users and Groups" to elevate privileges locally through sAMAccountName hijacking.
This research comes with a new GPOHound update to detect this misconfiguration.
🔗 Read more: https://t.co/bE3rEEJNfT
Documenté, Sourcé, Miniaturé, Plus qu'à... Siroter ! 🎁
Cc @Maltemo 🤝 @KharaTheOne
https://t.co/dUvD8C124a
I have just released my first tool : GPOHound 🚀
GPOHound is an offensive tool for dumping and analysing GPOs. It leverages BloodHound data and enriches it with insights extracted from the analysis.
🔗Check it out here: https://t.co/bMiOK8jiTE
I think many people are familiar with the topic of blind CSS exfiltration, especially after the post by
@garethheyes
However, an important update has occurred since then, which I wrote below ->
New Active Directory Mindmap v2025.03! 🚀
📖 Readable version: https://t.co/gQd6WsLnzG
🔧 Now fully generated from markdown files—way easier to update and maintain!
💡 Got improvements? PRs welcome! 👉 https://t.co/o52PAmek7b
Hi it's me again, I've been calling for a while now, you need to pay your health insurance Sir...
Or have some replays? 😏
La dernière Techno Watch avec @Drypaints @Maltemo et @pentest_swissky !🌿
FYI: Pas de stream ce mardi 4 Fev ➡️ HTB Meetup Lyon !
Rdv au Elephant and Castle, début à 19h+ et miniconfs à ~20h ! 😘
https://t.co/z9NJNEHdE1
Yop ! 🌿
Reprise des veilles technos ce soir 21h ! 🌖
En compagnie de @Drypaints @Maltemo @pentest_swissky 😎
~ See you there ~
https://t.co/WANxEdEaEK
Just discovered this nice resource about DOM Clobbering attacks :
https://t.co/Vr3Ccx5tCM
Thank you @Soheil__K for this amazing work
EKUwu vulnerability was just patched by Microsoft.
A security update is available : https://t.co/4iCi1KlOpd
https://t.co/UF6eM0RksG
We're proud to announce LIGHTYEAR, a tool that let you dump files, blind, in PHP, based on a new algorithm.
https://t.co/GG4tSNnUCf
Just recieved legal policies’ update by mail.
« **For the moment**, we don’t activate IA training on European countries ».
FOR THE MOMENT
Note that Strava already does that on your medical data and doesn’t even let you opt out.
GrEaT ��
Not suprised, but this will happen with increasing frequency.
Fortunately, Europe, UK and Switzerland were spared.
Nothing is free.
https://t.co/qPohCR4UpJ
🔴 Alert 🔴 LinkedIn is using your data to train its generative AI by default.
No, you didn’t opt in. LinkedIn did it for you! 🙈
Here’s how you can stop LinkedIn from using your data 👉 https://t.co/vCYIgfDYWH
Last Seen Users on Sotwe
Wahyu Saputra
Seen from Indonesia
فحل العراقي عنيف
خليجي ينيك قحبة مصرية مقابل المال
Seen from France
Nguyen Hung
Seen from Vietnam
เย็ดสาวรุ่นใหญ่
Seen from Thailand
oOooo
Seen from United States
หมามอมๆแถวสามย่าน 
꼴릿
Seen from Korea
BralessGirls_Lifetime™
Seen from Germany
yangviral
Seen from Indonesia
Most Popular Users
Elon Musk
@elonmusk
240.4M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.7M followers
Cristiano Ronaldo
@cristiano
110M followers
Narendra Modi
@narendramodi
107M followers
Rihanna
@rihanna
97.5M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.8M followers
KATY PERRY
@katyperry
87.4M followers
Taylor Swift
@taylorswift13
81.2M followers
Lady Gaga
@ladygaga
72.7M followers
Kim Kardashian
@kimkardashian
69.6M followers
Virat Kohli
@imvkohli
69.4M followers
YouTube
@youtube
68.6M followers
Bill Gates
@billgates
63.7M followers
The Ellen Show
@theellenshow
62.5M followers
Neymar Jr
@neymarjr
62.1M followers
CNN
@cnn
61.9M followers
X
@x
60.8M followers
Selena Gomez
@selenagomez
60.5M followers