Excited to share Supernova v3.5 (Star Dust)! What’s new: - Replaced random bytes with NOP bytes for IPv4, IPv6, MAC, and UUID obfuscations - Updated Golang dependencies - Optimized obfuscation code - Fixed the C template for obfuscation #maldev #redteam github.com/nickvourd/Supe…

Another reason to use Visual Studio (**NOT** Code) or Notepad++🤡

Here we go 🌈 looking forward to a great IT sec community gathering! #bsides BSidesBUD 🇭🇺

Sharing the stage in few weeks at #Warsaw with some of the best PROs in MS Security such as Paula Januszkiewicz - can't wait to share in-depth knowledge with everyone at MS Tech Summit ! NOTE: Special code MSTS25SP20 with 20% discount until May 30th: mstechsummit.pl/en/

Great post with 3 mitigations: 1️⃣ Add-BadSuccessorOUDenyACEs.ps1 github.com/JimSycurity/dM… This script will set 3 deny ACEs on OUs to prevent DMSA abuse. 2️⃣ Disable Implicit Owner Rights support.microsoft.com/en-us/topic/kb… 3️⃣ Don’t have a KDS Root Key learn.microsoft.com/en-us/powershe… Check for KDS

Great to be back! Craft Conference #Budapest #AISecurity

Had such great experience exchanging insights on AI Security and Code Trust at Craft Conference ! köszönöm to the event team for the hospitality and great community effort you've been driving!

Ready for MS Tech Summit 2025! Legendary backdoors - here we go #HacktiveDirectory #dfir #redteam #blueteam

So - got tired of assessing AD and customer adds me to DA, hopefully removes it at some point. so I created ADGroupMemberTimeBased (aka 'Mini-PAM')-PS module (5 cmdlets) for managing temporary group members using AD TTL optional feature. Inc. pre-reqs test github.com/YossiSassi/ADG…

Just uploaded this simple PowerShell script to detect common hypervisor in the Domain - github.com/YossiSassi/Get… Thanks for the inspiration!

I would also recommend looking at: Set-PSReadLineOption -HistorySaveStyle SaveNothing It means someone deliberately didn't want commands to be logged, without deleting txt file itself (it doesn't log the current session until closed). this of course doesn't effect psTranscripts

It goes way deeper than that, e.g. how do you map 'privileged accounts'? using AdminCount=1? Group membership (recursive, hopefully)? PAC enumeration (actual cumulative token)? Control paths / attack paths through permissions ? 1 level? 2 - 3? Just take the red pill.. 😉

Hard truths about Active Directory... - It's going to be around for much much longer - Tiering isn't optional - The longer you avoid "cleaning up" the bigger your attack surface grows - Domain Controllers are not “just another server” - Running tasks and services as Domain Admin

People on here act like someone decides not to patch. Like there’s a guy who knows the service is vulnerable, knows it runs in prod, and just shrugs. That’s maybe 1% of the cases. The rest is messier: - No idea the service exists (no inventory) - No idea it’s vulnerable (no vuln

Tired of misunderstanding privileged groups in your domain, w/mapping of direct & nested members? Get-AdminSDHolder enumerates AdminSDHolder-protected groups and members, shows recursive membership, direct vs. nested, source group, CSV/PNG and more. github.com/YossiSassi/Get…

Cloud 'GOD MODE' / master key flaw 🔑 that grants illegitimate access to *all* Entra/Az/365 tenants!! Well done Dirk-jan 👏 Remember that cloud has all the OnPrem cyber security headache + very poor MTTx - time to detect, respond, prevent etc is VERY short to non-existent.

Happy to take part at The Hack Summit this year, this time at the online edition - Oct' 13th 9am CET - be sure to catch my latest updates & free tools to discover persistence in a wide-set of forensics tools for AD. inc. promo code: thehacksummit.com/en/ #HacktiveDirectory #DFIR

Give a man an 0day and he'll have access for a day, teach a man to phish and he'll have access for life.