Olivia
Online
Samuel (scam) G.
@scam_work
My curiosity is effortlessly sparked | Pentester
Joined April 2022
397 Following
68 Followers
350 Posts
๐จ ๐ก๐ฒ๐๐น๐ผ๐ด๐ผ๐ป ๐ฅ๐๐ ๐๐ฒ๐๐ฒ๐ฐ๐๐ถ๐ผ๐ป ๐จ
๐๐ฉ๐โ๐ฎ๐ฌ๐ฎ๏ฟฝ๏ฟฝโ๐ฐ๐ญ๐ฌ๐ด๐ต (๐๐ฉ๐ฆ๐ฆ ๐ต.๐ด) โ flagged by ๐๐๐ฅ๐งโ๐๐จ as ๐ข๐ค๐ต๐ช๐ท๐ฆ๐ญ๐บ ๐ฆ๐น๐ฑ๐ญ๐ฐ๐ช๐ต๐ฆ๐ฅ. Unauthenticated attackers can escalate to ๐ฆ๐ฌ๐ฆ๐ง๐๐ ๐ฝ๐ฟ๐ถ๐๐ถ๐น๐ฒ๐ด๐ฒ๐ on domain controllers, with ๐๐ป๐๐ฒ๐ฟ๐ป๐ฒ๐โ๐ฒ๐
๐ฝ๐ผ๐๐ฒ๐ฑ ๐ก๐ฒ๐๐น๐ผ๐ด๐ผ๐ป ๐ฒ๐ป๐ฑ๐ฝ๐ผ๐ถ๐ป๐๐ facing the greatest risk.
To help defenders, Iโm sharing a ๐ต๐ถ๐ด๐ตโ๐ณ๐ถ๐ฑ๐ฒ๐น๐ถ๐๐ ๐๐ฒ๐ณ๐ฒ๐ป๐ฑ๐ฒ๐ฟ๐ซ๐๐ฅ ๐ฑ๐ฒ๐๐ฒ๐ฐ๐๐ถ๐ผ๐ป tailored to CVEโ2026โ41089, focused on monitoring the ๐ต๐ถ๐ด๐ต๐ฒ๐๐โ๐ฟ๐ถ๐๐ธ ๐ฒ๐ป๐ฑ๐ฝ๐ผ๐ถ๐ป๐ ๐ฒ๐
๐ฝ๐ผ๐๐๐ฟ๐ฒ.
CERT-EU Alert
https://t.co/l7qxXpaTUA
KQL Detection:
https://t.co/nu58sxA4Yo
#Cybersecurity #NetLogonRCE #DefenderXDR
Anyone using Relayking? Any good?
Itโs an relay enumeration tool for AD environments. Sounds good for detecting relay possibilities.
Link:
https://t.co/AGBnjoWu3A
DOMPurifyใใคใในใฎๆญดๅฒใใพใจใใใใผใธใHTMLใตใใฟใคใถใผใใคใในใฎใใฆใใฆใใใฃใใ่ฉฐใพใฃใฆใใ
็นใซไปๅนดใซๅ
ฅใฃใฆใใ็บ่ฆใใใ<selectedcontent>ใฎใใคใในใฏ้ฉใใ
https://t.co/PNPSorjJEL
SharePoint Server RCE via webshell upload โ CVE-2026-45454. A user with basic Contribute perms can upload an ASPX webshell to the Master Page Gallery and get code execution as the app pool identity. One HTTP request, no admin needed. Patch now.
https://t.co/8PFiQAHmPA
Releasing DCOMIllusionist as part of our talk on DCOM at @x33fcon with @k3vinTell. It's a remote in memory fileless lateral movement technique based on some research of @tiraniddo
https://t.co/XLljazKmnH
CVE-2026-44815 DHCP Client RCE
call memcpy; memcpy(out, data, len) <-- NO BOUNDS CHECK
rpcrt4!_report_gsfailure+0x129
rpcrt4!Ndr64StubWorker+0x1243
0x41414141`41414141
0x41414141`41414141
0x41414141`41414141
Reaching the trigger requires SCCM managed host?!
๐ฅ Just dropped a NEW PowerShell reverse shell in the PSSW100AVB repository!
โ
100% AV bypass (June 2026)
โ
Ready for red team operations
๐Act fast โ 2-5 days before this gets flagged too.
https://t.co/7DKdNSvBRv
#Powershell #RedTeam #AVBypass #ReverseShell
Most people learn security research by reading finished writeups. This one shows the actual process.
The messy, organic, step-by-step reality of reversing an unknown Windows mitigation from scratch. WinDbg. IDA. Hex Rays. Guard page violations. Trap flags. Zero prior knowledge of the target.
If you want to learn how to actually approach unknown Windows internals, start here.
https://t.co/Xq8xbSnG75
Author: @yarden_shafir
#ReverseEngineering #WindowsInternals #InfoSec
Very cool. Unwind data means we can stomp PIC over a DLL and get nice call stacks.
https://t.co/66vtthyDoR
One of the most exciting parts about our upcoming EDR Internals & Development course is that it walks the students through the development of a research EDR agent called MaldevEdr.
@GigelV41464 analyzed various EDR products to understand their inner workings and incorporated these techniques directly into the training. The agent developed throughout the course includes all the primary components of a real EDR such as a PPL service, user-mode DLL, ELAM driver and other kernel-mode components.
The diagram illustrates the components of the MaldevEdr.
More information: https://t.co/LeGYIWO09h
It's confirmed, CVE-2020-17103 patch is ineffective and the vulnerability still exists,
A weaponized PoC can be found here -
https://t.co/7hnamkLsS1
Tested against fully patched Windows 11 and Server 2025 machines.
Micropatches released for Windows Netlogon Remote Code Execution Vulnerability (CVE-2026-41089)
https://t.co/lvwQyIaCRc
@CptJesus User Rights Assignment RDP : https://t.co/R3tEK0SUQn
Full execution, methodology, and OPSEC breakdown in my vault : https://t.co/96Uuy67LGC
Stop burning RDP persistence with 4732 alerts. Bypass the "Remote Desktop Users" group entirely.
GUI access only requires:
- SeRemoteInteractiveLogonRight (Inject SID via secedit)
- RDP-Tcp listener permissions (Modify CIM class)
OPSEC: Trades 4732 for 4704. Most SOCs don't tune 4704 with the same aggression.
h/t @Cptjesus for the concept.
A sophisticated ValleyRAT malware campaign uses fake Microsoft Teams installers and DLL sideloading to evade Windows Defender detection.
#ValleyRAT #SilverFoxAPT #MalwareCampaign #Infosec #CyberNews
https://t.co/MMMABax6qY
Full exploit code for CVE-2026-40369 - A Windows kernel arbitrary write vulnerability that allows browser sandbox escape from all browsers render process sandbox https://t.co/5crwyh7EXp
goLoL - a Windows host scanner that finds LOLBAS binaries present on the current machine and lists techniques you can run at your current privilege level with MITRE ATT&CK mappings and example commands https://t.co/0CIRynqovI
Two really good blogposts https://t.co/5YZvkc8odG
https://t.co/EHTQ0q7nAR
Last Seen Users on Sotwe
ู
ูู
ูููุณุฉ ุจุฌูููู
Seen from Germany
ุงูุดูุฎ ุจูุชุฑ ุงูู
ุณูุญู ุงููุงุฌุฑ
Seen from Belgium
Thirdy
Seen from Philippines
gigolo bali suka jilmek
Seen from Singapore
mobil goyang
Seen from Indonesia
Sana Khan
Seen from Netherlands
sakso psf gay
Seen from Saudi Arabia
Pฤฑnar
Seen from Turkey
Gaajimax
Seen from India
pecinta binor
Seen from Singapore
Trends for you
Most Popular Users
Elon Musk 
@elonmusk
240.3M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
109.5M followers
Narendra Modi
@narendramodi
107M followers
Rihanna
@rihanna
97.4M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.7M followers
KATY PERRY
@katyperry
87.1M followers
Taylor Swift
@taylorswift13
80.9M followers
Lady Gaga
@ladygaga
72.5M followers
Kim Kardashian
@kimkardashian
69.5M followers
Virat Kohli
@imvkohli
69M followers
YouTube
@youtube
68.6M followers
Bill Gates
@billgates
63.6M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61.7M followers
X
@x
60.9M followers
Selena Gomez
@selenagomez
60.2M followers