Steve Breen

@execveat The original Potato vulnerability for local privilege escalation actually worked for quite a while before it got fixed! It was mostly just the implementation of some of @tiraniddo's research that had been marked "WontFix" by MS.

@shortxstack Is that graphic available anywhere? It's really cool.

it's perfect 🤓🤣

@tqbf It's a bit older but this book is worth a read on the subject amazon.ca/Structure-Scie…

Like, I understand some very notable science to have been the product of this kind of contrary impulse, but, as a description of all or even most successful science, my spidey sense is tingling? But I’m not a scientist?

Successful scientists: is this true?

@steventseeley I also noticed "paste-from-file" with some binary files was breaking recently. Had to use curl.

For someone who crafts payloads manually in repeater, this drove me nuts so I also downgraded.

Just uploaded the pdf slides of my talk "whoami /priv" @hackinparis #HIP19 github.com/decoder-it/who…

This paper is *the* resource for abusing tokens on Windows for privilege escalation. I especially appreciate the level of detail @dronesec and @breenmachine go into to explain the token ecosystem, permissions, past attacks, etc. 10/10 would read again. github.com/hatRiot/token-…

Nice!

Hey so we're stoked to welcome @jstnkndy @breenmachine and @brandonprry from @foxglovesec to the AtrediFam. We've been calling it "The Hat Trick".

I'm releasing with @Giutro Juicy Potato, another Local Privilege Escalation tool from a Windows Service Accounts to SYSTEM by abusing the golden privileges (decoder.cloud/2018/08/10/jui…)

#UnpopularOpinion conferences should more heavily vet talks and reject those that are subpar because those speakers often get an inflated sense of skill and spread misinformation.

@Rhynorater np, glad it's still useful!

Thank you so much @breenmachine

This awesome tool just saved my ass on a pentest. breenmachine.blogspot.com/2014/09/transf…

Custom version of C++ Rotten Potato along with some observations ;-) decoder.cloud/2018/01/13/pot…

@ifsecure uploaded the privilege escalation I wrote (with @halvarflake size coding) for the WPAD blog. #c5" target="_blank" rel="nofollow noopener">bugs.chromium.org/p/project-zero… Small footprint and uses RPC libs instead of parsing the RPC traffic like Rotten Potato /cc @breenmachine

#RottenPotatoNG - New version of #RottenPotato as a C++ DLL and standalone C++ binary by @breenmachine github.com/breenmachine/R…

@jensvoid @foxglovesec I believe you maintain the printer hacking wiki? Great resource, was very useful during this project. If you have any questions or would like to add some of this material to the wiki, I'd be interested in assisting.

HP has released the security bulletin which addresses the vulnerability described in our blogpost support.hp.com/nz-en/document…

@cninja321 @foxglovesec @BrotherOffice Ouch, that doesn't sound good.

We think HP should be more concerned with foxes than wolves - "A Sheep in Wolf's Clothing - Finding RCE in HP's Printer Fleet" by @breenmachine - foxglovesecurity.com/2017/11/20/a-s…

Abusing delay load DLLs for remote process injection hatriot.github.io/blog/2017/09/1…

Dropping @breenmachine and @dronesec latest Windows privilege escalation project - For exploit devs and pentesters - foxglovesecurity.com/2017/08/25/abu…