Joined October 2011
Pinned Tweet
⚙️Account Logon Flow / Process (#Windows) v0.1 📕[PDF]:speakerdeck.com/rimpq/accoun… 🔗[DIRECT]:speakerd.s3.amazonaws.com/pr… ...for self understanding logon flow / process in windows system. Special thanks to Andrei Miroshnikov💪 "Find Evil – Know Normal" #SANS #threathunting #blueteam
8
365
704
Ring3API retweeted
Nice blog post of @cube0x0 about elevating privileges in AD with built-in groups. cube0x0.github.io/Pocing-Bey… - I like the example regarding the 'Schema Admins' group a lot.
2
22
63
Show this thread
Nice repository of Custom Covenant C2 Tasks for Red Team. github.com/py7hagoras/Covena… #redteam
2
62
145
Attack Monitor is Python application written to enhance security monitoring capabilites of Windows 7/2008 (and all later versions) workstations/servers and to automate dynamic analysis of malware. github.com/yarox24/attack_mo…
0
84
227
GIF
Ring3API retweeted
backdooring MSBuild runs without new processes and ReadProcessMemory? ... sure thing ;-) same thing works for Visual Studio (same location, same DLL) and a lot of other .NET assemblies ... a12d404.net/ranting/2021/01/…
0
87
192