Security Research Group Manager @CyberArk Speaker, Lecturer, and Founder of @ArkC0n

Israel
Joined July 2014
In this post, we'll reverse-engineer the actual mRNA code of the @BioNTech_Group/@pfizer SARS-CoV-2 vaccine, character for character. And along the way, this will also explain how the vaccine works. Surprisingly, there are some fun mysteries in there! berthub.eu/articles/posts/re…
435
6,499
14,224
Show this thread
People didn't understand what we were talking about 3 years ago. Remember #Golden #SAML from 2017? @gentilkiwi @TalBeerySec @ShakReiner @CyberArk Here it is: cyberark.com/resources/threa… [Nov, 2017] #Innovation
1
13
41
D±N retweeted
DENI at the 🚨 on @NBATV! #NBARooks x #NBAPreseason
33
105
1,518
92,250
How to be hidden from audit tool which use LDAP queries? Simple, abuse MaxValRange, defined in MS-ADTS 3.1.1.3.4.6 If you need to setup a multi valued property (serviceprincipalname for example), just fill 1500 idiot values. Then at 1501th, put your real value. thanks @cnotin
2
25
72
A vulnerability I found in Instagram (CVE-2020-1895) just got published today! @_CPResearch_
A malicious picture can trigger an Instagram vulnerability potentially resulting in RCE on mobile devices. Read our full technical paper here: research.checkpoint.com/2020…
2
37
182
D±N retweeted
New blog: A different way of abusing Zerologon. No more password reset needed: using the printer bug with Zerologon to relay to DRSUAPI and DCSync directly with ntlmrelayx: dirkjanm.io/a-different-way-… Code: github.com/dirkjanm/CVE-2020…
23
649
1,174
checkra1n 0.11.0 is now available, adding support for iOS 14 on A9(X) devices and below. A10 devices and above NOT SUPPORTED YET, read our statement 👇 checkra.in/news/2020/09/iOS-…
598
1,260
4,218
Want to play with #AzureAd Refreshed Tokens when not AzureAd joined? (only account added) All is stored in the registry (no direct LSASS access 😉), and DPAPI protected with "salt" > github.com/gentilkiwi/mimika… You can play to sign data with new "pop" keys without real access
2
80
199
Show this thread