DPAPI-NG article and tooling released: first native, open source implementation of DPAPI-NG! hakin9.org/product/brute-…

Nice, got invited for one of the famous Intigriti hacking events. Looking forward! #1337up1120

Just released some cryptography research on Windows Credential Storage including some new tooling. insecurity.be/blog/2020/12/2… Thanks: 🥝🏳️‍🌈 Benjamin Delpy

Yes, first CVE-2021 exploit on exploit DB: exploit-db.com/exploits/49461 Please update your Java JDK's :-)

Another one bites the dust. Patch now please: exploit-db.com/exploits/49602

insecurity.be/blog/2021/03/1… Kort maar belangrijk stukje

Very glad to have been given the opportunity to participate in the largest and most complex international live-fire cyber defense exercise #LockedShields2021 as part of the #ICS/#SCADA Blue Team. ccdcoe.org/news/2021/lock…

CVE-2021-31166 verification? Run these on your systems (and prepare for a reboot): curl http://127.0.0.1 -H "Accept-Encoding: x,," curl http://127.0.0.1:5985 -H "Accept-Encoding: x,," curl http://127.0.0.1:5357 -H "Accept-Encoding: x,,"

CVE-2021-1675, please patch/mitigate ;-) Remote verification: `rpcdump.py PR.11.0.19 | grep MS-RPRN`

So this is a thing now on various Windows 10 and 11 systems. Just open C:\Windows\System32\Config in explorer once and this becomes possible. Screenshots from fresh and updated Win11, Win10 20H2 and Win10 21H1.

Howest is looking for Cyber Security lecturers, all questions welcome. howest.be/nl/vacatures/2…

So, this happened again. Repeat of easter 2017 anyone? RCE via RPC, exploited in the wild. isc.sans.edu/diary.html?sto…

Looking forward to giving my workshop on Hack in Paris next month: Cleartext credentials on Windows. More details: hackinparis.com/workshops/#wor… Sneak preview: data.deneut.be/index.php/s/zS…

Looking forward to giving my workshop and releasing the new Diana framework at #HIP22

Anyone can confirm? Clear text user creds in memory on *all* modern versions of Windows (including Server) when logging on via Cached Logon Data.

Can confirm that MCH2022 did contain 3200 hackers :-) Amazingly won the on-site Hardware CTF, thanks @Jilles_com for the extremely rare coin.

New Release: Sharing some security tools, demonstrations, own creations, hacks, exploits and scripts on my new channel: youtube.com/channel/UCMWKJ…

Just finished sharing a trilogy of Azure AD hacking demonstration videos: youtube.com/channel/UCMWKJ… Please harden your setups :-)

Still proud that I got to receive the famous SANS coins, three years in a row for the ICS CTF :-)

I noticed an Entra ID MFA bypass option with some interesting consequences, please verify if your tenant(s) are secure. Script is available on my GitHub, it has some red-teaming options too.