Ofek itach

67 posts

Ofek itach

@ofekitach

Katılım Temmuz 2017

463 Takip Edilen113 Takipçiler

Ofek itach retweetledi

INTENT - The security research summit@IntentSummit·19 Kas

AWS: where the shadow knows your secrets. @YakirKad & @ofekitach show you how attackers find your forgotten resources. #INTENT2024 ☁️🔓

INTENT - The security research summit tweet media

English

617

Ofek itach@ofekitach·11 Ağu

@Rudy4FutureTech @YakirKad @mike_katch Sure!

English

668

Rudy@Rudy4FutureTech·11 Ağu

@YakirKad @ofekitach @mike_katch Great work! How can I DM you or follow up? I have a question.

English

184

Yakir Kadkoda@YakirKad·10 Ağu

In 4 out of 6 cases, attackers only needed the victim's AWS account ID to exploit these vulnerabilities, emphasizing the importance of keeping your account ID secure. 🤫 [5/7]

English

675

Ofek itach retweetledi

Yakir Kadkoda@YakirKad·10 Ağu

🚨 Thread: Six Critical AWS Vulnerabilities Found 🚨 We've uncovered serious vulnerabilities in AWS services, leading to potential remote code execution, data manipulation, and more. Here's what you need to know: 🧵[1/7]

English

4.7K

Ofek itach retweetledi

Aqua Security@AquaSecTeam·5 Tem

🚨 Aqua Nautilus researchers have identified the infrastructure of a potentially massive campaign against #cloud native environments. In the first of a two part series, we unfold the story of how we discovered the campaign, speculate on the threat actor, and share mitigation recommendations.💡 w/@MoragAssaf and @ofekitach blog.aquasec.com/threat-alert-a…

English

579

Ofek itach retweetledi

Ilay Goldman@GoldmanIlay·22 Haz

Check out our new blog about repojacking. We show a massive dataset we used and introduce exploitation scenarios using real repoaitories examples

Aqua Security@AquaSecTeam

Threat Alert! New research by Aqua Nautilus emphasizes the extent of #RepoJacking and exposes potentially millions of vulnerable repositories. Among the repositories found vulnerable to this attack were @Google and @lyft. Check out the blog here to see the full research + recommended mitigations. blog.aquasec.com/github-dataset… #cloudnativesecurity

English

234

Ofek itach retweetledi

UltraLutra@ultra_lutra1·13 Eyl

New blog about rootkit detections! File operations hooking explained :) blog.aquasec.com/detect-drovoru…

English

Ofek itach retweetledi

Yuval Gordon@YuG0rd·1 Mar

The research I have worked on while working at @SemperisTech about a new gMSA attack was just published. Special thanks to @elad_shamir and @GuyTeverovsky for all of their help.

Elad Shamir@elad_shamir

GMSA passwords aren’t what you think. Read all about it in @YuG0rd’s post, where he dives into how gMSA passwords are generated and introduces the Golden GMSA attack. semperis.com/blog/golden-gm…

English

Ofek itach retweetledi

Johnny Xmas@J0hnnyXm4s·17 Mar

lol this site is hot 0dayfans.com

English

115

399

Ofek itach retweetledi

SkelSec@SkelSec·5 Oca

I waited 2 years for this, rewrote impacket for this, asked cryptographers to remake algos in python for this, spent enormous time of my life to make this happen. and it's finally here this finally works and I can't find the words to express my satisfaction.

English

711

2.3K

Ofek itach retweetledi

Itay Cohen 🌱@megabeets_·2 Eki

Excited to publish our research in which @EyalItkin and I were able to fingerprint 2 of the most active exploit developers for Windows. Together, they account for 16 Windows LPE exploits, of which 5 were 0-Days that were sold to APTs and crime groups. research.checkpoint.com/2020/grapholog…

English

145

344

Ofek itach retweetledi

Samir@SBousseaden·19 Tem

new container, will be set to public soon :D

English

330

Ofek itach retweetledi

Marcus Thompson@professorbike·14 Tem

~409 Windows security events mapped to audit policies and monitoring recommendations. cc: @christophetd @Cyb3rWard0g @SBousseaden @olafhartong professor.bike/blog/2020/7/13…

English

135

Ofek itach retweetledi

Michael Maltsev@m417z·13 Tem

Have you ever needed to get an earlier version of the Windows binary you're analyzing? Did you end up downloading Windows ISOs or update packages just for that? Not anymore! Introducing Winbindex: m417z.com/winbindex/ m417z.com/Introducing-Wi…

English

601

1.4K

Ofek itach retweetledi

Grzegorz Tworek@0gtweet·10 Tem

Undocumented (what a surprise!) EVTX file format flag, making all internal checksums ignored. Good to have if you plan to manipulate the log content.🕵️ Simple "try this at home" #PowerShell script: github.com/gtworek/PSBits…

English

123

286

Ofek itach retweetledi

Samir@SBousseaden·28 Şub

sometimes you can see a detection opportunity from a short video :) [URL matches, access to ECP url & OTHERS normally is useful for Exchange Admin ppl only, from process exec flow u can monitor any susp child proc of w3wp.exe with parent_cmdline line "*-ap *MSExchangeECPAppPool*"

English

111

Ofek itach retweetledi

unknown@Unknownuser1806·18 Şub

#vulnScanners Vulns github.com/future-archite… lynis github.com/CISOfy/lynis Scanners-Box github.com/We5ter/Scanner… h4cker github.com/The-Art-of-Hac… trivy github.com/aquasecurity/t… xunfeng github.com/ysrc/xunfeng faraday github.com/infobyte/farad… #bugbountytips,#bugbounty

English

292

Ofek itach retweetledi

Samir@SBousseaden·13 Şub

pivoting on rwdrv.sys (legit signed driver to discover UEFI other HW related settings) leads to Lojax/DoubleAgent UEFI rootkit. sysmon check eventid 6 with Signature: "ChongKim Chan" (cuz there are many version with diff hashes) - proper discovery for this type of TTP is a must

English

162

Ofek itach retweetledi

unknown@Unknownuser1806·17 Şub

Useful for #redteam PENTESTING-BIBLE github.com/blaCCkHatHacEE… Nishang github.com/samratashok/ni… Awesome Red Teaming github.com/yeyintminthuht… LOLBins and LOLScripts github.com/LOLBAS-Project… Collection Document github.com/tom0li/collect… Venom github.com/Dliv3/Venom #bugbounty

English

246

561

Ofek itach retweetledi

DirectoryRanger@DirectoryRanger·20 Oca

“I Hunt Sys Admins” by @harmj0y harmj0y.net/blog/penetesti…

English

131

Ofek itach retweetledi

Samir@SBousseaden·23 Oca

processes that use bits in windows, SCCM client, browsers, outlook, onedrive & some update programs, powershell one was for testing thus it's not that frequent to have it there and if so likely the transfer job name will be known and can be baselined.

English

Keşfet

@YakirKad @Rudy4FutureTech @mike_katch @MoragAssaf @SemperisTech @elad_shamir @GuyTeverovsky @EyalItkin