Carlos Perez's Avatar

Carlos Perez

@thedarkoperator.bsky.social

- Cybersecurity since 1998 - Information Security jack of all trades - Hacker https://www.darkoperator.com

746 Followers  |  124 Following  |  20 Posts  |  Joined: 15.11.2024  |  1.4908

Latest posts by thedarkoperator.bsky.social on Bluesky

Post image

Oh santa pesa ten piedad de mi …

07.02.2025 11:10 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Post image

Charging battery for some training at lunch time

15.01.2025 15:32 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

A fresh release of Locksmith to help secure your Active Directory Certificate Services (ADCS) in 2025!

01.01.2025 17:57 β€” πŸ‘ 12    πŸ” 4    πŸ’¬ 0    πŸ“Œ 0
Enumerating Advanced Audit Settings
YouTube video by Atomic Hacking Enumerating Advanced Audit Settings

youtu.be/PW6itxkRUMQ in this video I cover how I have approached enumerating advanced audit settings a host and across the domain for situational awareness and one of the mayor sources of info for rail-guards on C2s #redteam

17.12.2024 14:18 β€” πŸ‘ 1    πŸ” 1    πŸ’¬ 0    πŸ“Œ 0

Developing skills increases your luck surface area, the likelihood of experiencing good things.

10.12.2024 12:42 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Preview
PSGumshoe 2.0.13 PowerShell module for data collection, incident response, hunting, and security analysis

www.powershellgallery.com/packages/PSG... and github.com/PSGumshoe/PS...

01.12.2024 22:38 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Preview
Gamers Nexus claims NZXT’s Flex PC rental program is a β€˜scam’ Got an hour to spare?

Gamers Nexus claims NZXT’s Flex PC rental program is a β€˜scam’

01.12.2024 20:00 β€” πŸ‘ 86    πŸ” 10    πŸ’¬ 6    πŸ“Œ 2
Post image

The module is at powershellgallery.com/packages/PSGum… and the function code is github.com/PSGumshoe/PSGuβ€€ so I can do is get all events in the last hours or minutes when testing a tool to see what events where generated an have the output in CSV format

01.12.2024 17:24 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0

Updated PSGumshoe now ConvertFrom-EventLogRecord handles more types of event logs to flatten into objects for CSV, JSON and excel exports and new function Split-EventRecordCsv that flattens and splits events in to their own CSV files

01.12.2024 17:24 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0
Post image Post image Post image Post image 30.11.2024 20:23 β€” πŸ‘ 2    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Post image Post image Post image Post image

Nice day hiking and exploring #utuado #tanama

30.11.2024 20:23 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Post image

Coconut pudding (tembleque) and Puerto Rican Pastel ready for tomorrow

27.11.2024 16:11 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

Not all heroes wear capes.

27.11.2024 10:33 β€” πŸ‘ 33    πŸ” 2    πŸ’¬ 0    πŸ“Œ 0
Post image Post image

Found my old certificates from way back in the day

26.11.2024 18:00 β€” πŸ‘ 3    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Post image

I'm glad to release the tool I have been working hard on the last month: #KrbRelayEx
A Kerberos relay & forwarder for MiTM attacks!
>Relays Kerberos AP-REQ tickets
>Manages multiple SMB consoles
>Works on Win& Linux with .NET 8.0
>...
GitHub: github.com/decoder-it/K...

25.11.2024 17:31 β€” πŸ‘ 64    πŸ” 43    πŸ’¬ 3    πŸ“Œ 0

The amount of attacks against edge devices, IOT and other none server or workstation type devices has been in a rise. Even new webshells and implants for them. But still it is like pulling teeth to convince teams to at least bring basic telemetry in to the SIEM for them

25.11.2024 13:59 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
We Tracked Every Visitor to Epstein Island | WIRED
YouTube video by WIRED We Tracked Every Visitor to Epstein Island | WIRED

You find the most amazing things sitting in open S3 buckets. youtu.be/PjPHq-Ez0nc?...

23.11.2024 20:20 β€” πŸ‘ 218    πŸ” 52    πŸ’¬ 5    πŸ“Œ 8
Preview
Windows Firewall dynamic keywords Learn about Windows Firewall dynamic keywords and how to configure it using Windows PowerShell.

πŸ”₯ You can now allow/block FQDNs using Windows Firewall
learn.microsoft.com/en-us/window...

20.11.2024 10:19 β€” πŸ‘ 23    πŸ” 9    πŸ’¬ 0    πŸ“Œ 0

I really want a laser engraver but cant justify the cost yet.

19.11.2024 14:41 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

I really hate the precedent that the capital one case set that pushed almost all IR work to be through lawyers

18.11.2024 18:57 β€” πŸ‘ 2    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

Tired but I really need to record the last couple of videos for Posh-SSH so I can move to more hacker/infosec stuff

17.11.2024 20:37 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

A great loss for the agency and the nation

17.11.2024 18:12 β€” πŸ‘ 5    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Post image

What will Trump do with Biden's cyber agenda? Say goodbye to critical infrastructure security regulations, anti-spyware efforts, and AI safety, and say hello to more hacking against China.

My new story for @wired.com: www.wired.com/story/trump-...

14.11.2024 14:40 β€” πŸ‘ 207    πŸ” 78    πŸ’¬ 6    πŸ“Œ 12

Have to say doing a quick pass for event id 104 in RemoteDesktopServices-RdpCoreTS for miss matched time zones is gold. Amatures don’t change their timezone to be that of the target

17.11.2024 00:37 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

After little more of 25yrs in infosec, motivation goes up and dow. I love the hacking in terms of learning, but the profession not so much anymore. Guess I need PTO πŸ˜‚

16.11.2024 23:58 β€” πŸ‘ 2    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

PLA will last weeks unsealed even here in this tropical humid weather. PETG and TPU are another story. A good buy

16.11.2024 22:53 β€” πŸ‘ 3    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0

Been 2 months since I switched fully to IR work. Long nights but fun

16.11.2024 22:45 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

@thedarkoperator is following 20 prominent accounts