You might like
Watching artists on the timeline share their work, struggling, succeeding, trying harder, experimenting, improving, uplifting each other, and most importantly, not giving up - is so inspiring and contagious. Now, even when I'm creating alone, I'm thinking of all of you 💭
[thread 🧵] Kerberos basics & (ab)use of Certificates within Active Directory (i.e. AD CS and PKINIT) - Kerberos 101 - Pass-the-Certificate - UnPAC-the-Hash - Shadow Credentials - AD CS escalation (ESC1 to ESC8) (Links and credits at the end)
![_nwodtuhs's tweet image. [thread 🧵] Kerberos basics & (ab)use of Certificates within Active Directory (i.e. AD CS and PKINIT)
- Kerberos 101
- Pass-the-Certificate
- UnPAC-the-Hash
- Shadow Credentials
- AD CS escalation (ESC1 to ESC8)
(Links and credits at the end)](https://pbs.twimg.com/media/FCTFfEcXMAIdaQM.jpg)
🧠 Mental models are useful for developing solutions and stimulating thinking. In this post, I discuss some personal mental models I've found useful for offensive capability R&D, which can also generalize to understanding opponent processes in InfoSec. jackson-t.ca/operational-me…
One year ago, we launched the Atlas of Surveillance. It’s the largest public database of known police surveillance technologies that have been used across the country. Check it out: atlasofsurveillance.org
Threat Hunting, A Methodology: 1) Grab a PCAP anywhere on your network 2) WTF is that? 3) That can't be right 4) Who would do that? 5) It's the dumbest thing 6) Where is this asshole program sending this traffic? 7) It's your core business app 8) It's working as intended Repeat
What is half of 99?
400 vote · Final results
2,018 Intel Shooting Star drones flying in formation acting as a 3D display.
Ever wondered what lies beneath that cool looking chip on your bank card? What does it do? Why is it there? Well here's a little pointless thread that delves into the magic using my @monzo card as an example
Having a breakout exercise and direct drive access is forbidden? Perhaps try these too: \\localhost\d$ \\127.0.0.1\d$ file:\\127.0.0.1\d$ \\--1.ipv6-literal.net\d$ \\0--1.ipv6-literal.net\d$ \\--0-1.ipv6-literal.net\d$ file://--0-1.ipv6-literal.net\d$
Linux for Pentester: APT Privilege Escalation Exploiting Sudo rights: Method -I sudo apt-get update -o APT::Update::Pre-Invoke::= /bin/bash
Life lessons for us here. No matter what never give in. Be this little boy, who refused to give up. Be his friends who encouraged him to keep going. Persevere with your challenges. You can do this.
My friend shared this site with me and I swear I'm about to blow a whole paycheck. bootlegtees.bigcartel.com
daily struggles of an osint researcher
The real reason to do bug hunting is to give you motivation to learn boring stuff. When was the last time you read an IPv6 for BSD reference manual with desperate enthusiasm? What if it meant you could hack the iPhone? XD
As a follow up to our container escape post, we're also releasing a 0day Vim escape exploit (below): <esc>:q!
PoC||GTFO 0x19 is out! It's a PDF, a ZIP, and an HTML page: If you drop it on itself in a browser, it can give you a PDF viewer, a video and a PNG explaining the whole file structure. All these files have the same MD5.
United States Trends
- 1. Penn State 24.4K posts
- 2. Indiana 40.2K posts
- 3. Mendoza 21.5K posts
- 4. Gus Johnson 7,335 posts
- 5. Heisman 9,721 posts
- 6. #UFCVegas111 6,547 posts
- 7. Iowa 21.5K posts
- 8. Sayin 70.6K posts
- 9. #iufb 4,472 posts
- 10. Mizzou 4,377 posts
- 11. Oregon 34.7K posts
- 12. Omar Cooper 10.2K posts
- 13. Cam Coleman N/A
- 14. Estevao 44.5K posts
- 15. Beck 7,669 posts
- 16. Josh Hokit N/A
- 17. Barcelos N/A
- 18. Kirby Moore N/A
- 19. Stein 3,296 posts
- 20. Pringle N/A
Something went wrong.
Something went wrong.