Jonas Vestberg @bugch3ck - Bluesky Profile

The World need more @rageagainst.bsky.social

27.05.2025 06:34 — 👍 0 🔁 0 💬 0 📌 0

They didn't even try this time...

New report for LPE incoming.

30.04.2025 12:49 — 👍 0 🔁 0 💬 0 📌 0

Security Bulletin: Vulnerability found in Personal Communications through deployment of arbitrary MSI package. There is a vulnerability in found in Personal Communications through deployment of arbitrary MSI package. Personal Communications has addressed the applicable CVE-2025-1095.

This time they fixed it properly. No more vulns in that service. I'm sure of it 🙄

www.ibm.com/support/page...

10.04.2025 14:33 — 👍 0 🔁 0 💬 0 📌 1

GitHub - jfjallid/go-rpcclient: Interact with Windows RPC Services over SMB using go-smb Interact with Windows RPC Services over SMB using go-smb - jfjallid/go-rpcclient

New tool drop from jfjallid (not on this platform)

github.com/jfjallid/go-...

06.04.2025 11:05 — 👍 5 🔁 2 💬 0 📌 0

Wow I didn't expect that 🤯 Great blog post.

06.03.2025 22:05 — 👍 1 🔁 0 💬 1 📌 0

Using RDP without leaving traces: the MSTSC public mode Learn how MSTSC’s /public mode works! It blocks credential caching, session details, and bitmap storage, enhancing security. Discover its impact and how to reset MSTSC for a clean slate.

Need to use RDP without leaving traces? Learn how to enable MSTSC public mode for more privacy and security in your remote sessions. Perfect for shared environments and enhanced confidentiality! 🔐💻

👉 Read my latest blog post: blog.devolutions.net/2025/03/usin...

06.03.2025 21:59 — 👍 7 🔁 3 💬 1 📌 0

Some of the backsplashes disappeared from one of the examples due to lack of escaping. Check for "C:Program FilesMicrosoft".

06.03.2025 21:42 — 👍 0 🔁 0 💬 1 📌 0

Decrypting the Forest From the Trees - SpecterOps TL;DR: SCCM forest discovery accounts can be decrypted including accounts used for managing untrusted forests. If the site server is a managed client, service account credentials can be decrypted via ...

#SCCM forest discovery accounts can be decrypted—even those for untrusted forests. If the site server is a managed client, all creds can be decrypted via Administration Service API.

Check out our latest blog post from @unsignedsh0rt.bsky.social to learn more. ghst.ly/4buoISp

06.03.2025 20:34 — 👍 22 🔁 15 💬 1 📌 0

So did Justin Trudeau just quit to make sure he never had anything to do with Trump ever again?

06.01.2025 22:41 — 👍 0 🔁 0 💬 0 📌 0

01.01.2025 21:23 — 👍 0 🔁 0 💬 0 📌 0

Delinea Protocol Handler - Remote Code Execution via Update Process (CVE-2024-12908) AmberWolf Security Research Blog

Some Christmas cheer with @buffaloverflow.rw.md . A nice bug in the URL handler for Delinea Secret Server.

blog.amberwolf.com/blog/2024/de...

26.12.2024 12:17 — 👍 3 🔁 3 💬 0 📌 0

NTLM v1 is removed from the latest version of Windows

Oh by the way

06.12.2024 01:08 — 👍 102 🔁 35 💬 9 📌 6

"Influencing the infosec community 101" by @xpnsec.com

02.12.2024 21:55 — 👍 2 🔁 0 💬 2 📌 0

Capture NetNTLM handshakes. Relay against domainintegrated services.

25.11.2024 22:24 — 👍 1 🔁 0 💬 1 📌 0

Enhancing Cyber Resilience: Insights from CISA Red Team Assessment of a US Critical Infrastructure Sector Organization | CISA

RIP "Within this assessment, the red team (also referred to as ‘the team’) gained initial access through a web shell left from a third party’s previous security assessment."

www.cisa.gov/news-events/...

21.11.2024 17:10 — 👍 94 🔁 19 💬 8 📌 8

@avlidienbrunn.bsky.social just joined 👀

21.11.2024 16:00 — 👍 2 🔁 0 💬 1 📌 0

Wait, where is cube0x0? 🤔

(probably busy coding)

20.11.2024 21:10 — 👍 0 🔁 0 💬 0 📌 0

Following my prev tweet, my Kerberos MITM relay/forwarder is almost finished! It targets for example insecure DNS updates in AD, allowing DNS name forgery. It intercepts, relays, and forwards traffic, with the client unaware. Currently supporting smb->smb and smb->http (adcs)

20.11.2024 11:21 — 👍 36 🔁 14 💬 1 📌 0

... and _RastaMouse.

19.11.2024 16:21 — 👍 1 🔁 0 💬 1 📌 0