obivan - Network
I just pwned Planning on Hack The Box! https://www.hackthebox.com/achievement/machine/52014/660 #HackTheBox
https://infosec.exchange/@obivan...I just pwned Planning on Hack The Box! https://www.hackthebox.com/achievement/machine/52014/660 #HackTheBox
11.5.2025 17:38I just pwned Planning on Hack The Box! https://www.hackthebox.com/achievement/machine/52014/660 #HackTheBoxhttps://infosec.exchange/@obivan...
One-Click RCE in ASUS’s Preinstalled Driver Software https://mrbruh.com/asusdriverhub/
https://infosec.exchange/@obivan...One-Click RCE in ASUS’s Preinstalled Driver Software https://mrbruh.com/asusdriverhub/
11.5.2025 09:23One-Click RCE in ASUS’s Preinstalled Driver Software https://mrbruh.com/asusdriverhub/https://infosec.exchange/@obivan...
AWSPEAS a tool for enumerating AWS permissions and uncovering potential privilege escalation paths and other attack vectors...
https://infosec.exchange/@obivan...AWSPEAS a tool for enumerating AWS permissions and uncovering potential privilege escalation paths and other attack vectors https://github.com/carlospolop/CloudPEASS?tab=readme-ov-file#awspeas-%EF%B8%8F
10.5.2025 11:13AWSPEAS a tool for enumerating AWS permissions and uncovering potential privilege escalation paths and other attack vectors...https://infosec.exchange/@obivan...
A practical NTLM relay attack using the MS-EVEN RPC protocol and antivirus-assisted coercion...
https://infosec.exchange/@obivan...A practical NTLM relay attack using the MS-EVEN RPC protocol and antivirus-assisted coercion https://github.com/Thunter-HackTeam/EvilentCoerce
9.5.2025 11:11A practical NTLM relay attack using the MS-EVEN RPC protocol and antivirus-assisted coercion...https://infosec.exchange/@obivan...
Windows is and always will be a Potatoland https://www.r-tec.net/r-tec-blog-windows-is-and-always-will-be-a-potatoland.html
https://infosec.exchange/@obivan...Windows is and always will be a Potatoland https://www.r-tec.net/r-tec-blog-windows-is-and-always-will-be-a-potatoland.html
7.5.2025 17:13Windows is and always will be a Potatoland https://www.r-tec.net/r-tec-blog-windows-is-and-always-will-be-a-potatoland.htmlhttps://infosec.exchange/@obivan...
linWinPwn is a bash script that streamlines the use of a number of Active Directory tools https://github.com/lefayjey/linWinPwn
https://infosec.exchange/@obivan...linWinPwn is a bash script that streamlines the use of a number of Active Directory tools https://github.com/lefayjey/linWinPwn
6.5.2025 09:35linWinPwn is a bash script that streamlines the use of a number of Active Directory tools https://github.com/lefayjey/linWinPwnhttps://infosec.exchange/@obivan...
Python Tools and Scripts w/ UV CheatSheet https://0xdf.gitlab.io/cheatsheets/uv#
https://infosec.exchange/@obivan...Python Tools and Scripts w/ UV CheatSheet https://0xdf.gitlab.io/cheatsheets/uv#
6.5.2025 09:33Python Tools and Scripts w/ UV CheatSheet https://0xdf.gitlab.io/cheatsheets/uv#https://infosec.exchange/@obivan...
From Subdomains to Secrets: A Modern Recon Playbook for Bug Bounty Hunters...
https://infosec.exchange/@obivan...From Subdomains to Secrets: A Modern Recon Playbook for Bug Bounty Hunters https://www.linkedin.com/pulse/from-subdomains-secrets-modern-recon-playbook-bug-bounty-medeiros-nvxlf/
6.5.2025 09:32From Subdomains to Secrets: A Modern Recon Playbook for Bug Bounty Hunters...https://infosec.exchange/@obivan...
The Signal Clone the Trump Admin Uses Was Hacked https://www.404media.co/the-signal-clone-the-trump-admin-uses-was-hacked
https://infosec.exchange/@obivan...The Signal Clone the Trump Admin Uses Was Hacked https://www.404media.co/the-signal-clone-the-trump-admin-uses-was-hacked
5.5.2025 10:56The Signal Clone the Trump Admin Uses Was Hacked https://www.404media.co/the-signal-clone-the-trump-admin-uses-was-hackedhttps://infosec.exchange/@obivan...
New DomainPasswordSpray fork, which relies on LDAP codes to help identify expired passwords. It goes hand in hand with a new NetExec module...
https://infosec.exchange/@obivan...New DomainPasswordSpray fork, which relies on LDAP codes to help identify expired passwords. It goes hand in hand with a new NetExec module for password reset. https://github.com/LazyTitan33/DomainPasswordSpray
5.5.2025 10:48New DomainPasswordSpray fork, which relies on LDAP codes to help identify expired passwords. It goes hand in hand with a new NetExec module...https://infosec.exchange/@obivan...
LSASS forked dump https://github.com/wtechsec/LSASS-Forked-Dump---Bypass-EDR-CrowdStrike
https://infosec.exchange/@obivan...LSASS forked dump https://github.com/wtechsec/LSASS-Forked-Dump---Bypass-EDR-CrowdStrike
2.5.2025 10:35LSASS forked dump https://github.com/wtechsec/LSASS-Forked-Dump---Bypass-EDR-CrowdStrikehttps://infosec.exchange/@obivan...
Malware investigation in a BeamNG Mod https://lemonyte.com/blog/beamng-malware
https://infosec.exchange/@obivan...Malware investigation in a BeamNG Mod https://lemonyte.com/blog/beamng-malware
1.5.2025 09:18Malware investigation in a BeamNG Mod https://lemonyte.com/blog/beamng-malwarehttps://infosec.exchange/@obivan...
PrimeEncryptor is a flexible Dynamic Shellcode Encryptor designed to generate encrypted shellcode using multiple encryption techniques...
https://infosec.exchange/@obivan...PrimeEncryptor is a flexible Dynamic Shellcode Encryptor designed to generate encrypted shellcode using multiple encryption techniques https://github.com/dagowda/PrimeEncryptor
28.4.2025 10:18PrimeEncryptor is a flexible Dynamic Shellcode Encryptor designed to generate encrypted shellcode using multiple encryption techniques...https://infosec.exchange/@obivan...
Attacking and Defending Configuration Manager - An Attackers Easy Win https://logan-goins.com/2025-04-25-sccm/
https://infosec.exchange/@obivan...Attacking and Defending Configuration Manager - An Attackers Easy Win https://logan-goins.com/2025-04-25-sccm/
28.4.2025 10:17Attacking and Defending Configuration Manager - An Attackers Easy Win https://logan-goins.com/2025-04-25-sccm/https://infosec.exchange/@obivan...
Ghosting AMSI: Cutting RPC to disarm AV https://medium.com/@andreabocchetti88/ghosting-amsi-cutting-rpc-to-disarm-av-04c26d67bb80
https://infosec.exchange/@obivan...Ghosting AMSI: Cutting RPC to disarm AV https://medium.com/@andreabocchetti88/ghosting-amsi-cutting-rpc-to-disarm-av-04c26d67bb80
26.4.2025 11:23Ghosting AMSI: Cutting RPC to disarm AV https://medium.com/@andreabocchetti88/ghosting-amsi-cutting-rpc-to-disarm-av-04c26d67bb80https://infosec.exchange/@obivan...
I just pwned Scepter on Hack The Box! https://www.hackthebox.com/achievement/machine/52014/657 #HackTheBox
https://infosec.exchange/@obivan...I just pwned Scepter on Hack The Box! https://www.hackthebox.com/achievement/machine/52014/657 #HackTheBox
26.4.2025 09:03I just pwned Scepter on Hack The Box! https://www.hackthebox.com/achievement/machine/52014/657 #HackTheBoxhttps://infosec.exchange/@obivan...
XSS to Account Takeover & Data Exfiltration https://xbz0n.sh/blog/XSS-to-Account-Takeover-and-Data-Exfiltration
https://infosec.exchange/@obivan...XSS to Account Takeover & Data Exfiltration https://xbz0n.sh/blog/XSS-to-Account-Takeover-and-Data-Exfiltration
25.4.2025 07:46XSS to Account Takeover & Data Exfiltration https://xbz0n.sh/blog/XSS-to-Account-Takeover-and-Data-Exfiltrationhttps://infosec.exchange/@obivan...
From NTLM relay to Kerberos relay: Everything you need to know...
https://infosec.exchange/@obivan...From NTLM relay to Kerberos relay: Everything you need to know https://decoder.cloud/2025/04/24/from-ntlm-relay-to-kerberos-relay-everything-you-need-to-know/
25.4.2025 07:46From NTLM relay to Kerberos relay: Everything you need to know...https://infosec.exchange/@obivan...
The Roots of All Evil: Common Paths to Domain Compromise and their Origin...
https://infosec.exchange/@obivan...The Roots of All Evil: Common Paths to Domain Compromise and their Origin https://www.r-tec.net/r-tec-blog-the-roots-of-all-evil-common-paths-to-domain-compromise-and-their-origin.html
25.4.2025 07:46The Roots of All Evil: Common Paths to Domain Compromise and their Origin...https://infosec.exchange/@obivan...
Ivanti Endpoint Manager_Local Privilege Escalation via DLL Search Order Hijacking...
https://infosec.exchange/@obivan...Ivanti Endpoint Manager_Local Privilege Escalation via DLL Search Order Hijacking https://sec-consult.com/vulnerability-lab/advisory/ivanti-endpoint-manager-local-privilege-escalation-via-dll-search-order-hijacking/
22.4.2025 18:03Ivanti Endpoint Manager_Local Privilege Escalation via DLL Search Order Hijacking...https://infosec.exchange/@obivan...
