Crypt0s

Confused about DMR? Fustrated you can't get your hotspot configured? Need some help? Here is a quick tutorial: @Crypt0s/how-to-use-dmr-with-mmdvm-and-the-btech-dmr-handset-39e1784ec73b" target="_blank" rel="nofollow noopener">medium.com/@Crypt0s/how-t… #DMR #hamradio #brandmeister #mmdvm

@iEndure_4evr @RipRawlings @d0tslash && @KismetWireless I think we talked about this at the start.

Ukrainian soldiers call them sugar cubes. They are personal drone detectors that sense enemy drones nearby without giving away the wearer's position. They're small, light, easy to use, and work well to save lives. Ukrainian forces are working hard to equip every soldier with one.

I had no clue what this MIG switch was when it showed up, now I remember ordering it. Lol

@d0tslash Dammit, Bobby (tables)

You want free propane? Cuz this is how you get free propane…

1/12 It has been confirmed that the #Taurus interception was done via “a non-secure line”. Below is my opinion of one way in which it *might* have been done, taking into account the situation and #Russia's previous history. Essentially it involves using #SS7 interception. 🧵

Lenovo X1 Carbon Bitlocker Key Sniffing any% Speedrun (42.9 seconds)

OST cannot be stopped. Here is a technique we tested internally 9 months ago: blocking EDR telemetry by leveraging the Windows Filtering Platform. Considered it so evil that we didn't publish it that time. It was pointless, now here it is by @netero_1010: github.com/netero1010/EDR…

Discovered and exploited an arbitrary file delete vulnerability that lead to SYSTEM level privileges. Thanks to the goat @filip_dragovic.

interesting recent UAC bypass method zcgonvh.com/post/Advanced_…

The best thing about generative AI is that I hear far far less about Web3 bullshit

@N4k3dTurtl3 BOKOR drop when?

If you are a 'redteamer' that doesn't open source your offensive tools, consider that your undisclosed techniques may be used by Russia against Ukraine. Think how hard it will be to stop something they know nothing about. Consider the ethical implications of that.

Are we really not supposed to double space after a period anymore???????

@greybrimstone I have no idea but people are saying you’re either a lawyer or a boomer if you do it and I’m like…..???

@Crypt0s Right? When did this become a thing and why?!

Red, Blue, and Purple LDAP Queries. Quite useful. politoinc.com/post/ldap-quer…

Very cool explanation of CANbus theft technique

New blog: Obtaining Domain Admin from Azure AD by abusing Cloud Kerberos Trust I teased this a bit during my Windows Hello talks, now found some time to write about this interesting technique. Also contains defenses and detection opportunities. dirkjanm.io/obtaining-doma…

Sorry GreyNoise is down right now! We're experiencing one of the shittiest, most mickey mouse DDoS we've ever seen, but sadly it's working. We'll be back up soon, promise 🫡 status.greynoise.io

A certificate reseller bypassed the HTTP verification of the ACME cert protocol by using a remote code injection in ACME.sh to write their own When called out they are surprised Pikachu and say they didn’t know what an RCE was before this. 😬