Max Has

@vxunderground @nikhil_mitt

Giveaway. @nikhil_mitt has sponsored THREE (x3) CRTP (Certified Red Team Professional) vouchers. - 30 day on-demand course - Attack & Defend labs - Lab access Comment below for a chance to win. Winners selected in 24 hours. Pic unrelated

It is about time we changed our logo, it does not spark joy. @bsidesbristol has the Clifton Suspension Bridge, @BsidesYork has some Viking shields what should we have? Any ideas?

OSINT TIP #168 🌞 Shadowmap help visualizing sunlight and shadows anywhere on the Planet. Sun and the Shadows are used for geolocating objects for Image-Based OSINT Investigations! app.shadowmap.org @shadowmap_org 👏 #OSINT #GEOINT #infosec

CA Optics - Azure AD Conditional Access Gap Analyzer - out for testing! Having gotten some excellent feedback and ironed some kinks out (and discovered some new ones) I decided it’s time to extend testing from silent release to public release. #ca-optics---azure-ad-conditional-access-gap-analyzer" target="_blank" rel="nofollow noopener">github.com/jsa2/caOptics#…

Just in case roundabouts (or traffic circles as they call them in the US) are new, or a complete mystery to you, here's a helpful graphic to demonstrate how everyone should indicate and at what point:

Soooo we got a new car for my wife today! 💙

Own Ethanol fuel at home 🙃

From initial access to Global Admin with #BloodHound and BARK. In this thread let's walk, step by step, through an example attack path based on real configurations we've seen in real environments:

More than fuming, neighbours trampoline summersaulted the fence and slammed my car, worst thing is I have them on the cams moving it back slightly before knocking on my door, additional note, cameras with audio are a very good idea.

@ghostie_ Cheers for organising. Was awesome meeting other peeps!

Massive thanks to everyone who came out tonight. It was great to meet you all and have interesting conversations! Here's to next time 😎

Anyone up for an impromptu cyber/hacker meetup tomorrow night in central London? Probably in a bar (no requirement/pressure to drink alcohol) then food?

@MarcOverIP @InfosecCars It's been through too many owners to know what's stock lol

@InfosecCars @hasmcx Love the Mcrae signature on the back. Thats not stock is it?

Some UK bank holiday fun. Driving through London was awesome. Here's some snaps of the day. @hasmcx #infoseccars

Say hello to the new daily, project GT86 begins 😁

@quentynblog That sucks :( I have got in the habit of keeping a tyre repair set and cheap compressor in the cars. amazon.co.uk/dp/B01MU3PTQV Also, even a shoddy independent tyre shop would not have done that! @InfosecCars

I'm a huge fan of Azure Automation. If you're an #AzureAD / #M365 Admin and haven't used it before, then this thread is for you You will need an Azure subscription, but the first 500 minutes/month are free! Here's an example of how to automate Azure AD device cleanup :)

PSA: VMware Tools versions running 9.x or 10.x are vulnerable to a number of attacks; upgrade ASAP! Ensure the VMware Tools version is current on virtual systems, especially Domain Controllers hub.trimarcsecurity.com/post/the-top-5… Check VMWare Tools version: blogs.vmware.com/PowerCLI/2018/…

@sociosploit Just going to leave this here, best cracker solution: github.com/c6fc/npk

No joke. I learned this lesson the hard way— don’t forget to power down your AWS GPU password cracker. The P3.16xLarge runs at $17,625 for the month 😬. #techtwitter #redteam #pentest #hacking #aws

Second drop of tickets opens in 5 minutes, 80 in this block. ti.to/steelcon/steel…

the anxiety bellyache i’m getting sitting here waiting for my motorbike test is unreal

@exploitph @_wald0

@_wald0 Domain Users had DCSync privs

Pentesters/red teamers: what’s the worst, “No admin in their right mind would ever do this” thing you’ve ever seen?

@ShitSecure Is ADFS hosted on-prem or Azure? Could be a method in if they are using Azure and have IP Allowlist in place.

If all Azure services redirect so ADFS, but the ADFS Login page is only reachable from the internal network - any way to bypass this? Besides from other O365 endpoints like EWS? 🧐