🔥The 9th Round of Easy Loan, Earn $40 Reward is in progress❗️ ⏰ Promotion Period: January 15th - Feburary 15th, 2025 👉 Register now and check more details at gate.io/campaigns/358

I found some time between all the stress to read this blog. It's very fun to read 😄trustedsec.com/blog/attacking…

Remember sapphire ticket? I always felt connected to this attack, maybe because we share the same name ;) Anyway, a year and a half ago it didn't work so well in impacket. Today I happened to run it again, and it works! Nostalgia at its best :) unit42.paloaltonetworks.com/next-gen-kerbe…

Last two weeks I talked about BYO Identity Providers in Entra ID and backdoors to External Auth Methods to bypass MFA. Only possible because MSFT doesn't implement the mandatory OIDC security measures. Slides with optional dark mode on: dirkjanm.io/talks/

Investing all my energy in a crazy investigation with crazy edge cases only to realize after two hours that the source hostname is kali🤦‍♀️

I hope TROOPERS Conference this year will be at least as amazing as it was last year! 🤩 FOMO mode is ON!

I really waited for research on EAM!looking forward to the recording 🤩

Its time to create detection for new federated creds to application, don't settle for "Update application - certificate and secret.." ! Activity Type:Update application Check if property "FederatedIdentityCredentials" is populated!

Happy to finally share a new blog with Charlie Clark on our work revisiting the Kerberos Diamond Ticket. ✅ /opsec for a more genuine flow ✅ /ldap to populate the PAC 🆕 Forge a diamond service ticket using an ST We finally gave it a proper cut 💎 huntress.com/blog/recutting…

Troopers just started, and so many things are out already!! semperis.com/blog/noauth-ab…

Life recently 🙃

Wtf is BroCI 🥲 i need the recording 😭😭

It's conferences season!

Some really weird shit is happening in my life at the moment 🙃

Whenever I feel like my mind is not in the right place, I read Tuesdays with Morrie. Then I remembered what is really important in life ❤️

Done 🙂 post with conclusions will be here soon.

My favorite talk from Yesterday is the talk by ChrisPy youtu.be/Vb_MyY3RQn8?t=… He shows how you can enumerate SharePoint sites, without MS Graph! And this cool URL that allows you download a file and bypass some policies 😁

Unpopular opinion: I don't like to go to many conferences because it's hard for me to maintain a routine. WDYT?

My life is about to change very soon, and I'm freaking out 🥴

If JWT is pronounced "jot" then WWW is pronounced "wow". Stop. This. Madness. #JayDubyaTee

!!!!