Sometimes pentester, sometimes sysadmin. Developer of bad things. eCPPT eCPTX

Italia
Joined November 2011
CVE-2020-16898, as @b4rtik pointed out, anyone wondering how could be possible to know in advance that RouteInformation was required as a second RA option, well, the patch says enough :) #BadNeighbor
2
1
9
Show this thread
b4rtik retweeted
CVE-2020-16898 | Windows TCP/IP Remote Code Execution Vulnerability 😱 portal.msrc.microsoft.com/en…
5
225
432
Phishing page that target @TIM_Official customers First redir step https[:]//tim-infoo.blogspot.com/ Phishing page hosted in a newly created domain http[:]//tim-in.com @malwrhunterteam @JAMESWT_MHT @D3LabIT
1
0
1
One of my favorites
@tifkin_ and myself are happy to announce Seatbelt 1.1.0 ! Various fixes and 10 new modules means we've passed the 100 module mark. Full changelog at github.com/GhostPack/Seatbel…
0
0
1
During some research we’ve uncovered some interesting behavior. We’re now allowed to publish about it. My colleague @0xffhh wrote a blog about it. medium.com/falconforce/the-c…
2
85
156
GadgetToJScript v2; * Updated the main Deserialization gadget to support .NET Framework 3.5 up to 4.x ENVs. * Dynamic WSH scripts generation (Dll/Exe, c#) * New templates for .NET 3.5 support. * Bug fixes + Improvements. github.com/med0x2e/GadgetToJ…
2
90
147
b4rtik retweeted
New blog: A different way of abusing Zerologon. No more password reset needed: using the printer bug with Zerologon to relay to DRSUAPI and DCSync directly with ntlmrelayx: dirkjanm.io/a-different-way-… Code: github.com/dirkjanm/CVE-2020…
23
649
1,174