Olivia
Online
Antonio Cocomazzi
@splinter_code
offensive security - windows internals | BlueSky: | Mastodon:
Italy
Twitter'a katıldığı tarih August 2016
324 Takip Edilen
9.4K Takipçi
1.8K Gönderi
Sabitlenmiş Tweet
The slides of our joint research talk “10 Years of Windows Privilege Escalation with Potatoes” at #POC2023 are out!
👉 https://t.co/nowgGQHA73
cc @decoder_it
> A new Project Zero blog post by James Forshaw
https://t.co/5cojrQBXQV
Me: Oh hey, I recognize this function! UIAccess + GetProcessHandleFromHwnd / NtUserGetWindowProcessHandle were the core of my CVE-2021-31951 EoP 😋
So some fixes leading to v3 actually date a bit earlier
@decoder_it breaks down reflection attacks and their impact on enterprise security in this new talk at #INSO26. Are you interested in how modern authentication flow works? So this talk is for you!
Save your spot: https://t.co/U52kaanmth
#Infosec #INSO26 #CyberConference
Just dropped a short post on why some classic NTLM relay tricks seems to be dead on Server 2025.
https://t.co/UcYRo5YaWq
Takip edebileceğin hesaplar
x86matthew
@x86matthew
system emulation / reverse-engineering / binary analysis. @the_secret_club
S3cur3Th1sSh1t
@ShitSecure
Pentesting, scripting, pwning!
Andrea P
@decoder_it
Security Consultant @semperistech . Independent Security Researcher. Cyclist & Scubadiver. MSRC MVR 2022. "So di non sapere"
Just published a summary of "modern" Windows authentication reflection attacks. Turns out reflection never really died. 😅https://t.co/2YxXlaRMMC
Blog post about my recent CVE-2025-58726, aka “The Ghost Reflection” is out, read it here:
https://t.co/KnuLXeNLUc
🙃
Remember the CredMarshalInfo trick? If you hadn’t applied the June 2025 patch, CVE-2025-33073 would have been critical. We know that in NTLM local auth, msg 3 is empty:You can drop sign/seal -> from Domain User to DomainAdmin escalation. 😅
my simple poc: https://t.co/yLOUy2GXov
Coercing machine authentication on Windows 11 /2025 using the MS-PRN/PrinterBug DCERPC edition, since named pipes are no longer used.
Kerberos fails in this case due to a bad SPN from the spooler, forcing NTLM fallback.
Better socket handle visibility coming soon to @SystemInformer 🔥
When viewing a process handle table, SI will recognize files under \Device\Afd and retrieve information about their state, protocol, addresses, and more. Also works on Bluetooth and Hyper-V sockets 🤩
Apply here → https://t.co/0bH9DST7Nc
Happy to chat if you want to learn more.
I’m hiring Staff Windows Security Researchers to join my XAT (eXploits and Anti-Tampering) team at @SentinelOne! 🔥
👉 https://t.co/0bH9DST7Nc
More details 👇
The role is opened in multiple locations in Europe (we’re hiring across Italy, Spain, Poland, Czech Republic, Slovakia and France), with optional relocation support to Czechia if you'd prefer to move (must be eligible to work in the EU already at the time of applying).
In my long history of submissions, I think this is the first time one has been marked as critical😅
Another Monday. Another week of… endless emails, annoying meetings, and oh look, a three-headed monkey behind you!
Now that we have your attention, we can unveil the agenda for #RomHack2025 https://t.co/P793dQAZdu
#infosec #securityconference
I just published a blog post where I try to explain and demystify Kerberos relay attacks. I hope it’s a good and comprehensive starting point for anyone looking to learn more about this topic. ➡��https://t.co/OztMeuoU5L
Microsoft has discovered post-compromise exploitation of CVE 2025-29824, a zero-day elevation of privilege vulnerability in Windows Common Log File System (CLFS), against a small number of targets. https://t.co/XdpZSxY3ye
NTLM relay is still a major threat and is now even easier to abuse. We just added new NTLM relay edges to BloodHound to help defenders fix and attackers think in graphs.
Read my detailed post - the most comprehensive guide on NTLM relay & the new edges:
https://t.co/6MnmlzVjNq
We (me + @2igosha) have discovered a new Google Chrome 0-day that is being used in targeted attacks to deliver sophisticated spyware 🔥🔥🔥. It was just fixed as CVE-2025-2783 and we are revealing the first details about it and “Operation ForumTroll” https://t.co/apx0oXZ6be
Check out our new blog post!
Sotwe'de En Son Ziyaret Edilenler
Cenk
Son görüldüğü yer Turkey
小姨——尤物推荐
Son görüldüğü yer United States
mymo
Si Khong
Son görüldüğü yer Vietnam
Game Lover
Son görüldüğü yer Qatar
RT Dominatrice femdom RT 10K
Son görüldüğü yer Canada
คนธรรมดา
Son görüldüğü yer Turkey
Anal sexs porno
Son görüldüğü yer Turkey
Ratsuterra
Son görüldüğü yer United States
Bokep Ai
Son görüldüğü yer Indonesia
Senin İçin Trendler
En Popüler Kullanıcılar
Elon Musk 
@elonmusk
240.1M takipçi
Barack Obama
@barackobama
119.3M takipçi
Donald J. Trump
@realdonaldtrump
111.6M takipçi
Cristiano Ronaldo
@cristiano
108.8M takipçi
Narendra Modi
@narendramodi
106.9M takipçi
Rihanna
@rihanna
97.2M takipçi
NASA
@nasa
92.1M takipçi
Justin Bieber
@justinbieber
90.5M takipçi
KATY PERRY
@katyperry
86.7M takipçi
Taylor Swift
@taylorswift13
80.5M takipçi
Lady Gaga
@ladygaga
72.1M takipçi
Kim Kardashian
@kimkardashian
69.3M takipçi
YouTube
@youtube
68.6M takipçi
Virat Kohli
@imvkohli
68.4M takipçi
Bill Gates
@billgates
63.4M takipçi
The Ellen Show
@theellenshow
62.5M takipçi
CNN
@cnn
61.9M takipçi
Neymar Jr
@neymarjr
60.9M takipçi
X
@x
60.9M takipçi
CNN Breaking News
@cnnbrk
59.9M takipçi