Olivia
Online
ret2src
@ret2src
Breaker of Stuff | Injector of 0x41 | Discoverer of Dumb Things | Creator of Glitches. Dropping shells since 0x7DC.
Joined July 2021
1K Following
354 Followers
778 Posts
Introducing RelayKing.
https://t.co/D55uuCv6mX
Blog: https://t.co/usrPECsVno
Automatically identify relay attack paths. No longer will you be left to manually detect a comprehensive inventory of all the relaying vectors on your engagements.
It will detect signing/EPA settings on all protocols you specify, NTLM reflection CVEs, and WebDav WebClient presence. Then, produce a comprehensive report of the relaying vectors on the network in your preferred output format. This ensures that you report ALL vulnerable instances easily, without the need for manual patching together of results from various tools.
Ideal usage is with a set of low-privilege AD credentials, but it also supports unauthenticated scanning (with far less coverage). See GitHub and the blog post for more details.
Please note that there ARE bugs. The LDAP(S) detection has been annoying but SHOULD be mostly solid. If you get suspicious results from it, please report an issue on GitHub with the config RelayKing reported, versus the actual one.
Enjoy!
Self shadow cred is back again 🔥🔥🔥🔥🔥🔥🔥🔥🥳
@Defte_ Update:
Thanks to @RedTeamPT, I created a pull request for ntlmrelayx to reflect the new requirements:
https://t.co/g42CHDxQdB
Now Shadow Creds are working again 😀
@ShitSecure Another way is to look for snapshots of a target VM and get the memory .vmem file. After converting the memory dump it should open in WinDbg and extract some secrets with Mimikatz extension.
Welcome to the EU, where the lunatics in Brussels take everything from us. While it was narrowly prevented this time, the next act of pure fascism disguised as safety will come. 1984 in all its glory.
EU's Chat Control proposal is to effectively ban end to end encryption since it demands that governments can read all msgs.
I find this to be not only insane, but feasibly impossible. Breaking the whole internet. Yet it got voted on last week, and just narrowly stopped. Whew!
@VNchocoTaco When have the insides of Apple products become so ugly? Looks like a cheap Android phone, some parts don’t even seem to be straight. Is this the company so obsessed about details and perfection?
My colleague Mathias and I just finished our talk about "Relaying Unprivileged Users to RCE" at @MCTTP_Con. You can find our slides at https://t.co/gzc76uLjsI
Active Directory Pentest Mindmap v2025.03
Full view and updated map : https://t.co/nR3pp4ssfa
@nickvangilder @eliedelkind Funny, all of them are basically saying the same thing…what a coincidence
I've been researching the Microsoft cloud for almost 7 years now. A few months ago that research resulted in the most impactful vulnerability I will probably ever find: a token validation flaw allowing me to get Global Admin in any Entra ID tenant. Blog: https://t.co/jD6EaGtsn3
Better watch out for the TCP, I’ve seen it being abused by those pesky hackers over and over again!
Hackers reportedly used something called "TruffleHog" during their attack. They also used "child_process", and something called HTTP, something called TLS, and something called TCP.
Please be on the lookout for any of these hacking tools being used in your environment.
no matter how hard you cyber, there will ~ALWAYS~ be another registry persistence you've never heard of.
@techspence @Abdulmalik_TTG Will you still be reporting ESC1, even without a PoC? In our reports, we use a special tag called “inconclusive” for such cases.
Here's an initial release of a LDAP browser written in python with a nice GUI and some integrations with #BloodHound
https://t.co/5GwpLXz0x3
So embarrassing
the jump scare of the morning award goes to @J0R1AN (it even adapts to different native calculators using UA-based OS detection :))
@vysecurity LinkedIn is a huge cesspool of ass kissers. Can’t stand more than three of the BS posts on there before I feel a strong urge to close the app again.
The memes are on point today
Last Seen Users on Sotwe
Pakistan Boys
Seen from Turkey
Semra Hanım
Seen from Turkey
Elaina St James
Seen from Italy
فطوءة 👅 
Seen from United Arab Emirates
unamanonellapatata
Seen from Indonesia
alinaputri
Seen from Singapore
Öznur
Seen from Turkey
damla hatun
Seen from Turkey
࣪
Seen from Indonesia
Türk İfşa | Ameteur Iporn
Seen from Turkey
Trends for you
Most Popular Users
Elon Musk
@elonmusk
240.1M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
108.8M followers
Narendra Modi
@narendramodi
107M followers
Rihanna
@rihanna
97.3M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.6M followers
KATY PERRY
@katyperry
86.8M followers
Taylor Swift
@taylorswift13
80.6M followers
Lady Gaga
@ladygaga
72.1M followers
Kim Kardashian
@kimkardashian
69.4M followers
YouTube
@youtube
68.6M followers
Virat Kohli
@imvkohli
68.5M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61M followers
X
@x
60.9M followers
CNN Breaking News
@cnnbrk
59.9M followers