Lucas Pereira

@vxunderground @nikhil_mitt @struppigel CARTP

Big giveaway. - (x3) Certified Red Team Expert (CRTE) - (x3) Certified by Altered Security Red Team Professional for Azure (CARTP) - (x10) Malware Analysis for Hedgehogs Bundle CTRE and CARTP sponsored by @nikhil_mitt Malware Analysis sponsored by @struppigel Leave a comment below on what you'd like. Winners chosen in 24 hours.

@vxunderground Is it just COMB again?

No. Someone took a bunch of existing leaks, threw it all together, and slapped a NEW stick on it.

@techspence Honestly, the people those accounts belong to are doing as well as you could possibly hope they would, at that point as a defender you gotta know that eventually every password could be cracked and work on the defenses of the rest of the environment.

I was reminded today about that one time I cracked 4, 20-character passphrases. It was so cool from a pentester POV. From a defensive side of things, using popular song lyrics or bible versions is not the best strategy for passwords. That stuff is all too common and is in a word list somewhere...

@_Alika Come

@CamilaDTavares @Nitrao_ Já ganhou

Vamos fazer uma brincadeira. Em comemoração a ontem dia de São Valentim (Valentine's Day). Quem mandar a melhor cantada ganha um código de Hanzo Cupido. Quem mandar a pior cantada ganha um código Reaper Destruidor de Corações. Instruções: -Cantadas não podem ter cunho sexual -Siga @OverwatchBrasil e @Nitrao_ no X. -Na live hoje as 20:00 vou decidir AO VIVO. Códigos enviados pela mamãe Blizzard! Obrigado Blizzard! #OW2Valentine #OverwatchCreators

@lkarlslund One could argue AD is never the "final goal of most attackers" though, it's simply how you get access to nearly everywhere else, where you then find the real crown jewels, but that's another conversation.

@lkarlslund The only ones that immediately come to mind other than the ones you mentioned are generating a Golden Ticket and deploying persistence as System on DCs/Exchange Servers/Azure AD Connect Servers.

@techspence Let me know if you have any suggestions on how to improve it btw

@techspence Shameless self plug, but my tool might help you and you might help it github.com/vulcanun/smbla…

You haven't lived unless you've gotten lost in an endless sea of file shares only to come up for air and realize it's almost 4pm and you haven't ate, drank or blinked since 8am

@irgao_ Coe tô voando amanhã, agora fodeu

as definições de pânico e cagaço foram atualizadas com sucesso

@NaisuBanana Tiny correction, the language is actually called Cypher. I recommend you to make use of console queries too, they are really useful for auditing-like activities. Simply open up neo4j console and instead of returning entire nodes, return their properties (m.name).

so it turns out bloodhound queries are super fun to write :D

@irgao_ Jogo é jogo, treino é treino

todo dia sai de casa um malandro e um otário

Thank you to: @ari_ugwu for his help with SharpHound Common @vulcanunsec for improving prebuilt analytics @rookuu_ for the AddSelf edge @elad_shamir for AddKeyCredentialLink edge

We are releasing #BloodHound 4.1 on February 9th, 2022. In the release webinar, @CptJesus, @ddlees and I will cover: ✅ New edges ✅ Big changes to SharpHound ✅ Quality of life improvements Register here: specterops.zoom.us/webinar/regist…. Recording available afterwards.

@g1 Só falta liberar a briga de galo que o Brasil vai pra frente!

O jogo do bicho é considerado pela legislação como uma contravenção penal desde 1941. A sentença desta semana determina recolhimento mensal de impostos no valor de R$ 15 mil glo.bo/3CRq1ZJ #g1 #jogodobicho #Ceará

@irgao_ Tá namorando traficante?

se eu aparecer sem cabelo qualquer dia desses não estranhem

@MalwareTechBlog Is she getting it?

Just received my first ever CVE, feels good. cve.mitre.org/cgi-bin/cvenam… Big thanks to the Mitre CVE team for the quick reply and to the @ArcherySec devs who fixed the vulnerability right away. #opensource #xss

Next time you're scanning for live assets in an unknown network, try to scan for addresses ending with 1 and 254 first. Might just save you some time by skipping 253 dead addresses every /24.

Aaand it's been fixed.