SANS #HolidayHack 2018 #KringleCon completed 🙃. Thanks @SANSPenTest

We're elated to announce the release of the OWASP IoT Top 10 for 2018 !!! This release focuses on simplicity and usability, with a list that combines the top issues facing manufacturers, enterprises, and consumers. owasp.org/index.php/OWAS… #iot #infosec

cat /root/proof.txt Thanks OffSec for the amazing challenge!

Short blog and POC code for CVE-2019-1040 (patched last Tuesday). Combining this vulnerability with the SpoolService bug and Kerberos delegation means: any AD user to Domain Admin; RCE on unpatched hosts; possible over Forest trusts. dirkjanm.io/exploiting-CVE… TL;DR: GO PATCH!

Ready for 2 days of jus d'orange, croissants and awesome talks! #HIP19 Hack In Paris

Today's friday talk is from @pvdh talking about the work he and Roy Reinders did to exploit resource based constrained delegation (RBAC) over the Internet with Direct Access, which required some IPv6 mods to Rubeus github.com/GhostPack/Rube… that Will Schroeder landed in May (thanks).

Very excited to publish my first research since I started as a pentester at Orange Cyberdefense Netherlands hosted on the Orange Cyberdefense's SensePost Team blog ! The research shows you how to use an ACE misconfiguration in AD to gain RCE by setting legacy RCM settings on a user object. sensepost.com/blog/2020/ace-…

Password Spraying F5 Networks Secure Logon via Burp Suite! A blog by n00py. n00py.io/2020/08/passwo…

I've also added a POC and rough instructions on restoring the DC machine account password afterwards which should un-break the DC again 🙃 github.com/dirkjanm/CVE-2…

I waited 2 years for this, rewrote impacket for this, asked cryptographers to remake algos in python for this, spent enormous time of my life to make this happen. and it's finally here this finally works and I can't find the words to express my satisfaction.

Abusing IP camera's for Red Teaming: Part 1 - Obtaining the firmware. northwave-security.com/blog-abusing-i…

Really excited about our new training!

We have created a flow chart to assist in the Log4shell vulnerability decision making. Check our blog and the threat response for the latest information: log4shell.northwave.nl #log4j

Badge acquired, ready for #DEFCON!

Northwave has conducted research into the psychological effects of a ransomware crisis on people involved in mitigating a ransomware attack. The findings reveal the deep marks that a ransomware crisis leaves on all those affected. northwave-security.com/wp-content/upl…

Thrilled to announce that I'll be giving a 2-hour Kernel Driver Exploitation lab at HITBSecConf, together with my colleague Jan-Jaap. 🥳 If you want to develop your first malicious kernel driver (exploit), join us the 21st of April in Amsterdam!

I dived into exploiting leaked code signing certificates to sign malware ✍. A technique that has been actively abused in the wild by threat actors for a long time. Blog post: tij.me/blog/finding-a…

Truly an honor to be amidst such brilliant minds and passionate red teamers. 🔥 And those stroopwafels are simply the cherry on top! 🍒 Together with Tijme Gommers and Roy Reinders 🥳

Got to present a zero-day 🎯 at #RedTreat23 this morning. Attending the other talks was even more awesome. A shame I can't be there tomorrow. Thanks Outflank and MDSec!

#BSidesLondon2023 was fun! Had the opportunity to present a kernel exploit for PulseSecure VPN and Ivanti Connect Secure VPN. Shared research of my colleague Alex and me. northwave-cybersecurity.com/ivanti-pulse-v…