Andrea P

When (NTLM) relaying potatoes lead you to domain admin... A "permanent" 0day Privilege Escalation Vulnerability in Windows RPC Protocol ;-) cc @splinter_code Our writeup here: labs.sentinelone.com/relaying-potat…

@pfiatde 😂

Gave some extra work to MSRC 😅

@timb_machine @_dirkjan I never really tracked them, but a few days ago I got curious about how many CVEs I had. It wasn’t easy to gather them starting from 2018, but now they’re all in Excel ;)

@_dirkjan @decoder_it You can never have too many :)

@_RastaMouse It’s in my nature 😊

@decoder_it You're so thoughtful 🙃

@_dirkjan No limits 😎,and honestly, it should be 21 since I declined a CVE a couple of years ago 😅

@decoder_it Not satisfied with your CVE count I see? 😂

[RELEASE] Better late than never! Part 3 is out! Fantastic unwind information and where to find them. We went digging through .pdata, RTF Lookups, and a few ntdll internals that probably weren't meant to be touched. BYOUD dropping alongside. Enjoy 😉 klezvirus.github.io/posts/Byoud/

I know, I know well-known stuff everyone knows. Then why do I still keep finding these misconfigs so often? Maybe it’s still worth ? semperis.com/blog/missing-p…

@sekurlsa_pw 👍

@decoder_it This one I assume? Nice one 👍

With yesterday’s CVE I realized that I reached 20 CVEs. Nothing huge, but an honest number considering this isn’t even my job.🤷‍♂️

@_dirkjan Thx! need some mental rest now…my brain isn’t what it was 20 years ago. 😅

@decoder_it Congrats! Pretty good number indeed 😄

@freefirex2 The first CVE is like the first love… you never forget it. 😉

I caught my first CVE :D msrc.microsoft.com/update-guide/e… Blog post inbound at TrustedSec.com tomorrow!

When you try to harden Windows PrintNotify callbacks, you end up exposing vulnerabilities in other protocols like EPMAP that have been sitting around (or even more) for 20 years msrc.microsoft.com/update-guide/v…

@EsercitoCrucian Sapere poco, commentare tutto. (semi-cit.)

VERGOGNA. #ItaliaPaeseDiMerda

We’re exploring cutting-edge attack surfaces while years-old vulnerabilities remain unpatched. That gap is frustrating. 🔐

@IceSolst @gentilkiwi c99.php… 😍 amarcord. Takes me back to the old days

Love my sysadmin 🥰 up at 4 am uploading lil scripts keeping our Active Directory environment safe!

@StefanoPutinati Se parte sul Capo Berta forse si

Ho finto di interessarmi molto delle Olimpiadi. Fingo di interessarmi molto del festival di Sanremo. In realtà io aspetto solo e soltanto il 21 marzo, perché prima o poi dobbiamo portarcela a casa Tadej.

Sometimes you close the front door… and something still walks in through the hallway 😉 Soon. Hopefully.

@lastknight @bdev90 @Frenkie_Woody Elì, Elì, lemà sabactàni?

@bdev90 @Frenkie_Woody Uno ci prova.

Ma se il PIN della carta è segreto… come fa la macchinetta a sapere se è corretto quando lo inserisci?

@decoder_it breaks down reflection attacks and their impact on enterprise security in this new talk at #INSO26. Are you interested in how modern authentication flow works? So this talk is for you! Save your spot: ow.ly/cCr450Ykak4 #Infosec #INSO26 #CyberConference

In the final part of his blog series, @tiraniddo tells the story of how a bug was introduced into a Windows API. Code re-writes can improve security, but it’s important not to forget the security properties the code needs to enforce in the process. projectzero.google/2026/02/gphfh-…