SkelSec

6.8K posts

SkelSec banner
SkelSec

SkelSec

@SkelSec

CEO and Co-Founder of Octopwn

Katılım Haziran 2014
448 Takip Edilen11.9K Takipçiler
SkelSec retweetledi
klez
klez@KlezVirus·
[TALK] My latest Black Hat Europe talk is now publicly available. If you can look past the painfully obvious anxiety and a speaker who occasionally sounds like his brain has stopped cooperating, you might find something useful. Who knows? youtube.com/watch?v=tOVcSc…
YouTube video
YouTube
English
5
37
144
12K
🕳
🕳@sekurlsa_pw·
@vysecurity Yeah I was thinking about that, but I don't really encounter that in the wild.
English
3
0
1
602
🕳
🕳@sekurlsa_pw·
If you are using TimeRoast in real environments, do you ever crack one of the generated hashes? Because the password hashes of computer accounts are normally randomly generated, so you need one with a manually set password if you want to crack it. Does that occur?
🕳 tweet media
English
4
6
60
8K
Rasta Mouse
Rasta Mouse@_RastaMouse·
It really makes me lul when ppl email asking for a refund because they bought a course 'on accident'. How can you navigate the website, click Buy, enter your payment info, and confirm the order 'on accident'...
English
18
2
85
11.4K
5pider
5pider@C5pider·
hello?
English
83
16
526
27.9K
SkelSec retweetledi
S3cur3Th1sSh1t
S3cur3Th1sSh1t@ShitSecure·
In september @MCTTP_Con - we will reveal our latest research about USB Co-Installer and Driver vulnerability exploitation for Privilege Escalation. 🔥🔥Super happy to work together with @KlezVirus on that research! 🫡
S3cur3Th1sSh1t tweet media
English
2
6
27
3.7K
Alex Neff
Alex Neff@al3x_n3ff·
Onelogon: Taking over Active Directory Accounts via Netlogon🔑 We analyzed Netlogon, bypassed the Zerologon patch, resulting in a full auth bypass. An attacker can leverage this to compromise computer accounts, or even the entire AD. Non-standard config must be present tho 🧵
Alex Neff tweet mediaAlex Neff tweet media
English
9
193
690
78.6K
SkelSec retweetledi
Dirk-jan
Dirk-jan@_dirkjan·
I just wrote a new blog on bypassing CA policies in Entra ID that have a resource exclusion, and why you probably want to enable baseline enforcement if you have such policies. Enjoy! dirkjanm.io/bypassing-cond…
English
7
159
419
35.5K
SkelSec
SkelSec@SkelSec·
new version of aardwolf (my async python rdp client library) is out on pip and github. thank you for the PRs fixing some connection issues and support for python3.14 Also I added clipboard file download as an extra. (upload was already there but I was lazy) enjoy
English
2
6
25
2.9K
SkelSec retweetledi
S3cur3Th1sSh1t
S3cur3Th1sSh1t@ShitSecure·
After “The Art of Evasion” @x33fcon I’m publishing NimSyscallPacker to the public. This is the most advanced public Packer/Loader I’m aware of: github.com/S3cur3Th1sSh1t…
English
6
116
380
32.9K