Olivia
Online
Tony Gore
@nullg0re
Security Researcher, US Marine Corps Veteran, Microsoft Most Valuable Researcher 2023 & 2024
Illinois
Joined June 2016
1.4K Following
644 Followers
99 Posts
@DrAzureAD Congrats Nestori!
@NinjaStyle82 @SM_Bradshaw Check out @0xZDH ‘s TokenMan toolkit. https://t.co/m1fpfzwMT5
It uses FOCI abuse. More research can be found here: https://t.co/DDsPyouQBI
This was my last research project while working for Secureworks. I’ve taken a new role at CrowdStrike but I am still proud of the work I did with my Secureworks fam. PTAL:
Cloud to on-prem (and multi-cloud) lateral movement: https://t.co/skPpbkAgqE
Who to follow
Olaf Hartong
@olafhartong
@FalconForceTeam | researcher with a camera | Microsoft MVP | Snow man role model
Mark C.
@LargeCardinal
Scouse feral academic. Quantum Hacker, ML miscreant, & mathematician. Views own. Collects useless degrees. @quantum_village (he/him) @[email protected]
Deebbhhhyyy!
@DeborahIbigoni
Medical student · Ideas that refuse to stay in my notes app · God's girl
I placed 30th in the top 100 Most Valuable Researcher leaderboard!! Special thanks to @msftsecresponse for putting on these events year after year!
Permissive Avere Contributor Role Allows for VM Credential Dumping.
Secureworks Threat Analysis:
https://t.co/G3OxOgQ0c8
Nullg0re Blog (More personalized analysis):
https://t.co/wJKoF68yIH
How to combine Responder w/ Evilgnx2 for privilege escalation and lateral movement in Passwordless, MFA and/or Zero Trust Environments:
(Technique discovered by @nevadaromsdahl in 2023))
https://t.co/pmHJxrxn35
@HackingDave I’ll hit up your site for the contact info! Thanks Dave!
Episode 1 w/ @nullg0re, of my new podcast 'whoami' is now live on spotify and youtube! On whoami, I'm talking with great hackers to find out how they got into hacking and dig into their area of expertise. Check it out:
https://t.co/y9EwoZLOww
https://t.co/Gzj5D2E0Jx
Performed some research with my teammate @SantasaloJoosua regarding Multi-Tenant Application Redirect URIs. Turns out, in some cases, they can be taken over and used to steal Azure Authorization Code's (OAuth2.0 Auth Code Flow):
https://t.co/J4daIpI2hp
Spent some time in Azure Machine Learning Studio and identified some areas to keep in mind when using the environment. Nothing groundbreaking, but definitely a reminder of why security needs to be more involved with the explosion of AI infrastructure / needs:
https://t.co/TyfEi9NLw4
Oh! This is cool! I placed in the top 10 of hackers / researchers world wide in the @msftsecresponse Q4 Leaderboard with 325 points! And top 5 in the Azure specific leaderboard!
Special shoutout to my teammates (past and present) @DrAzureAD @SantasaloJoosua for helping me level up over the past year. Thank you guys!
Entra ID Connect Arbitrary Password Overwrite
https://t.co/ZMkFOwvrJm
Vulnerability Hunting with ChatGPT
https://t.co/8tK200x2jg
Earlier this year I made the Top 100 2023 Microsoft Most Valuable Researcher list! Thanks @msftsecresponse for sending out the swag! Just in time for the holidays!
Last Seen Users on Sotwe
Most Popular Users
Elon Musk
@elonmusk
240.2M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
109M followers
Narendra Modi
@narendramodi
107M followers
Rihanna
@rihanna
97.3M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.6M followers
KATY PERRY
@katyperry
86.9M followers
Taylor Swift
@taylorswift13
80.7M followers
Lady Gaga
@ladygaga
72.2M followers
Kim Kardashian
@kimkardashian
69.4M followers
YouTube
@youtube
68.6M followers
Virat Kohli
@imvkohli
68.6M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61.2M followers
X
@x
60.9M followers
Selena Gomez
@selenagomez
59.9M followers