Happening now at #SOCON2025: WithSecure™'s Max Keasley is demonstrating a new attack method against AD FS federated logins. This technique impersonates any federated user by modifying the AD FS configuration database, w/o requiring a privileged foothold on Tier 0 assets.

I wonder how it feels to be an American these days...

New tool drop from Jimmy Fjällid github.com/jfjallid/go-rp…

Weird, I thought Americans liked money 🤔📉

Stand for what you believe in

My DistrictCon talk is now on Youtube! This was the one about the IBM B2B Integrator vulns, and features reversing, old-school memes, a shell-popping demo, and a philosophical dilemma youtube.com/watch?v=zwSkPW…

Ran into strict WDAC a little while ago, bypassed it using WinDbg Preview cerbersec.com/2025/04/07/byp…

This time they fixed it properly. No more vulns in that service. I'm sure of it 🙄 ibm.com/support/pages/…

"Land of the free"

It’s not a crash, it’s a happy little restart…

You have got a valid NTLM relay but SMB and LDAP are signed, LDAPS has got Channel Binding and ESC8 is not available... What about WinRMS ? :D Blogpost: sensepost.com/blog/2025/is-t… Tool: github.com/fortra/impacke… And also, big thanks to jmk (Joe Mondloch) for the collab' :D!

I spoke about the initial credential guard vulnerability at #SOCON2025, but I left out the part where the fix could be bypassed. Both bypasses have now been fixed which I cover in my blog post along with some juicy technical details. Enjoy.

In case you missed it, check out my Youtube channel with videos mostly related to Windows Internals: youtube.com/@zodiacon.

Enter to BIOS

Has anyone heard from IBM? It's been 40 years. I hope it's fixed now.

Happy Easter 🐣

This tool can steal any Windows password instantly

My take on this is that someone red teamed McDonald's, found a code signing cert and took the opportunity to sign some malware. Bred there myself, not McDonald's and didn't sign any malware because I didn't want to gamble with the client's reputation.