Lerner Oleg
33 posts
@IstaPee Interesting resource but "However, once the first step of dumping the backup key has been accomplished, you cannot fully remediate the situation, as the backup key is immutable."
English
Official confirmation from Microsoft that there is no supported way to rotate nor change DPAPI backup keys!
Compromised keys? ➡️ Burn the domain and rebuild a new one 💥
English
Think you know everything about DPAPI? Think again. Delve into the shadowed world of full remediation after a DPAPI domain backup key attack. This insightful paper explores the fascinating process of recovering from the cryptography persistency of attackers.
Sygnia@sygnia_labs
Read our latest article where Sygnia’s Adversarial Research Team (ART), demonstrates for the first time how defenders can replace their DPAPI backup key, to fully remediate their organization in an Active Directory compromise incident. Author: Gil Biton blog.sygnia.co/the-downfall-o…
English
Unlock the full potential of #DROPS with our new community-driven repository!
Contribute and add your favorite tools to the cheat sheet. Check it out now at github.com/SygniaLabs/DRO… #cheatsheet #communitydriven #RedTeam
English
@Nickieyey One thing that for me was missing in cheat sheets is a dynamic option for changing params.
Give this dynamic cheat sheet a try:
sygnialabs.github.io/DROPS/
English
✨ Here is a hub of Offensive Security Cheatsheet!
Huge collection of useful methodologies, #bugbountytips and resources for #Pentesting, #bugbounty, and #redteam
Check it out:
🔗 cheatsheet.haax.fr/web-pentest/
#infosec #cybersecurity #CyberSec #Ethicalhacking #100DaysOfCode #DFIR
English
Lerner Oleg retweetledi
We started to maintain a fork of the Pwndrop tool github.com/SygniaLabs/pwn… @sygnia_labs #redteam #infrastructure
English
Lerner Oleg retweetledi
Sygnia's Qemuno framework was launched to help execute #RedTeam operations and evade detection by #endpointsecurity solutions without the need for administrative permission. @Github: bit.ly/3RMY6kE
English
Lerner Oleg retweetledi
It was a full house at #DefCon 2022 Adversary Village, where our very own @OlegLerner spoke about the architecture and capabilities of Qemuno, the offensive operations suite.
@defcon
English
Are you still using your notes as #cheatsheets?
I have news for you, we created a dynamic #cheatsheet #DROPS. Hopefully It will help you to save some time :)
give it a try - hubs.la/Q01lpqnG0
Another creation by #ART
Sygnia@sygnia_labs
We are proud to introduce our newest tool #DROPS, a Dynamic Cheat Sheet, where you can generate commands and save time on crafting them. It also correlates the relevant #Git and #MITRE information for the tasks you will execute. Give it a try - hubs.ly/Q01lpmVM0
English
Was pure pleasure speaking at @AdversaryVillag #DEFCON30 about our new #redteam framework, that helps to avoid EDR detection.
Thanks to everyone who joined, hope to see you next year.
Stay tuned for the repo release!
Adversary Village@AdversaryVillag
#AdversaryTool @OlegLerner demonstrating his tool! "Qemuno – An uninvited guest Adversary Tool" #AdversaryVillage at @DEFCON 30 #Tooldemo
English
Lerner Oleg retweetledi
Sygnia's Red Team developed an advanced solution by leveraging CI/CD pipelines to automate the many manual tasks performed to bypass #securitycontrols in target environments, saving a lot of time and effort. hubs.la/Q01j6FT40?
English
I’m very excited to share the work led by a member of Sygnia’s Adversarial Research Team (ART) @B1t0n_ to create an offensive CI/CD framework.
An impressive piece of ART!
@sygnia_labs #CyberSec #RedTeam #BlueTeam #ScallOps #CICD
Sygnia@sygnia_labs
Red Teamer Alert! What if you could use CI/CD to weaponize Red Team tools? The Sygnia #RedTeam leveraged CI/CD pipelines to automate the many manual tasks performed to bypass #SecurityControls in target environments, saving a lot of time and effort. blog.sygnia.co/offensive-ci/c…
English
Lerner Oleg retweetledi
Join us Feb 17th at 19:00 for beer & insights from the trenches with Israel’s smartest #RedTeamers & #CyberDefenders. You’ll hear from @abinbev’s Roei Sherman & @ohad_mz, and Sygnia’s Ilia Rabinovitch, @OlegLerner & Nir Saias. Register here: hubs.la/Q0142yKf0
English
Lerner Oleg retweetledi
As a lot of information is being piled up about the #log4j vulnerability #Log4Shell, @sygnia_labs #incidentresponse team has put together an end-to-end #threathunting strategy to assist organizations identify whether you have been compromised. blog.sygnia.co/end-to-end-hun…
English
Lerner Oleg retweetledi
Join us tomorrow @HITBSecConf where @B1t0n_ will be discussing the essentials for making #redteam operations more efficient and scalable and demonstrate an offensive pipeline framework
hubs.ly/H0VXTQq0
#HITB2021SIN #ethicalhacking #infosec
English
Lerner Oleg retweetledi
Following our talk at @defcon @AdversaryVillag, we published the ScallOps framework, where you can develop, collaborate and utilize "Recipes" in order to perform #RedTeam tasks with greater efficiency.
#defcon29
hubs.ly/H0V15zS0
English
Lerner Oleg retweetledi
If you missed our virtual talk at @defcon @AdversaryVillag, you can now catch up via @YouTube
DEF CON 29 Adversary Village - Gil Biton - Scaling Up Offensive Pipelines youtu.be/bUsA5doxIBo
YouTube
English
Lerner Oleg retweetledi