Olivia
Online
parzel
@parzel2
Hacker based in Berlin | Working at @mod0 | | he/him
Berlin, Deutschland
Joined May 2018
290 Following
947 Followers
318 Posts
Pinned Tweet
I will try to move to bsky permanently from now on. A lot of #itsec people are showing up there recently, and I am positive that finally, it will be possible to leave the toxic site Twitter has become. You can find me at https://t.co/YNwqq8MiP3, happy to connect there!
I did not approve of the timing of this release but here it is. Blog coming soon.
https://t.co/tCqWpaIlnZ
Following up on my earlier tweet (https://t.co/hTBzbcXcxD) regarding Kerberos relay with SMB server, I've uploaded my quick & dirty version. It's far from perfect, so feel free to improve it! https://t.co/Pi0sfpTbc7
Who to follow
Netlas.io 
@Netlas_io
Stay ahead with updates on high-profile vulnerabilities, expert tutorials, essential safety tips, and the latest Netlas developments.
William Bowling
@wcbowling
Head of Assurance at @zellic_io, a.k.a vakzz when doing bug bounties and CTFs with @pb_ctf - https://t.co/9bjECLAwXg
Sayed Abdelhafiz
@dPhoeniixx
During a #redteam at @mod0 we discovered a limited but neat bypass for #printnightmare. I talked to @itm4n about it and he had an indepth look. Read about it here:
https://t.co/2NGYFPbhSh
#itsec
The entire disclosure seems to have been leaked online
https://t.co/N3ms4CkA9J
Here is the report and POC
A big thank you to our Review Committee
@BalthasarMartin @parzel2 @vinulium, Luca Melette and Diana Janetzky. We now have an amazing schedule featuring their favourite talks which you can check out here: https://t.co/ygNVnUlW7e
#BSidesBerlin #appsec #infosec #BSides
#BSidesBerlin is back! Will you be joining us this year at @Festsaal on Saturday 26.10?
Our CFP is open until 16.08 👉https://t.co/3XgzQorwP0
Early Bird Tickets are available until end of July 👉 https://t.co/ygNVnUlW7e
@SecurityBSides @cfp_time
Today at #Troopers24 we released Certiception – the ADCS honeypot we always wanted to have.
Blog: https://t.co/2NCzLTtItc
Source code: https://t.co/WLSMq2Bl8m
Slide deck, including our guide to deception strategy: https://t.co/xEAUPhqaGR
Lovely to see the Email RFCs abused to embed a command injection payload in the local-part of the address! Nice work Michael Imfeld & @parzel2
https://t.co/W62GHIVjd0
@garethheyes That's a big compliment coming from you, thanks! :)
Shells at midnight: Exploiting the flexibility of Email addresses for offensive purposes.
Today we are publishing a new blog post about our disclosure report on #MailCleaner #CVE-2024-3191: https://t.co/XGOqYaGJbo
@[email protected] will also present at @a41con today.
🎟️📢Don't miss your chance to attend or present at BSides Berlin on October 26 in Festsaal Kreuzberg.
Ticket sales and the Call for Papers are NOW OPEN!! https://t.co/kJPlqQJlHa
We identified critical vulnerabilities in MailCleaner. A command injection vulnerability can be exploited by sending an Email. Our report can be found here: https://t.co/UbjGuZEvCW
Kudos to https://t.co/2sZjAckbdt and https://t.co/ap3QfuqatP #MailCleaner #CVE-2024-3191 #Infosec
Struggeling to get those precious certificates with #certipy and AD CS instances that do not support web enrollment and do not expose CertSvc via RPC? @qtc_de has you covered and added functionality to use DCOM instead of good old RPC #redteaming https://t.co/uyeXu8XeBQ
We can relay back to the same machine using Kerberos relay instead of NTLM relay. I discovered this attack vector more than a year ago. I will describe it in detail in upcoming Black Hat Asia 2024 https://t.co/zz9z3n6t0h and introduce more interesting attacks.
🇷🇺 Doppelgänger | Russia-Aligned Influence Operation Targets Germany
We have been tracking the activities of the suspected Russia-aligned influence operation network Doppelgänger since late November 2023. Here is what we found... 🧵
https://t.co/Gg0rLIMdPM
#threatintel
#threatintel
someone just leaked a bunch of internal Chinese government documents on GitHub
https://t.co/BO8N64A7kF
I try an avoid this hellsite, but I did a quick dive into sudo in Windows and here are my initial findings. https://t.co/Q1k1KAUlmB
The main take away is, writing Rust won't save you from logical bugs :)
Last Seen Users on Sotwe
اول مرة
Seen from Netherlands
Gay Deepthroat
Seen from Netherlands
鹏俊展
李力(成都H)
Seen from United States
Ini Juga Ivy
Seen from Indonesia
Noman & Nazia Baloch
Seen from Pakistan
الخيـزرانه
Seen from Saudi Arabia
سلوى المطيري
Seen from Jordan
Diff
Seen from United States
อยากเย็ดหี_ราชบุรี_โพราม_จอมบึง
Seen from Thailand
Trends for you
Most Popular Users
Elon Musk
@elonmusk
240.1M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
108.8M followers
Narendra Modi
@narendramodi
106.9M followers
Rihanna
@rihanna
97.2M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.5M followers
KATY PERRY
@katyperry
86.7M followers
Taylor Swift
@taylorswift13
80.5M followers
Lady Gaga
@ladygaga
72.1M followers
Kim Kardashian
@kimkardashian
69.3M followers
YouTube
@youtube
68.6M followers
Virat Kohli
@imvkohli
68.4M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
60.9M followers
X
@x
60.9M followers
CNN Breaking News
@cnnbrk
59.9M followers