APT

الذهاب إلى القناة على Telegram

This channel discusses: — Offensive Security — RedTeam — Malware Research — OSINT — etc Disclaimer: t.me/APT_Notes/6 Chat Link: t.me/APT_Notes_PublicChat

📈 نظرة تحليلية على قناة تيليجرام APT

تُعد قناة APT (@apt_notes) في القطاع اللغوي الإنكليزية لاعباً نشطاً. يضم المجتمع حالياً 14 701 مشتركاً، محتلاً المرتبة 8 834 في فئة التكنولوجيات والتطبيقات والمرتبة 45 554 في منطقة روسيا.

📊 مؤشرات الجمهور والحراك

منذ تأسيسه في невідомо، حقق المشروع نمواً سريعاً وجمع 14 701 مشتركاً.

بحسب آخر البيانات بتاريخ 13 يونيو, 2026، تحافظ القناة على نشاط مستقر. خلال آخر 30 يوماً تغيّر عدد الأعضاء بمقدار 414، وفي آخر 24 ساعة بمقدار 17، مع بقاء الوصول العام مرتفعاً.

حالة التحقق: غير موثّقة
معدل التفاعل (ER): يبلغ متوسط تفاعل الجمهور 50.76‎%. وخلال أول 24 ساعة من النشر يحصد المحتوى عادةً N/A‎% من ردود الفعل نسبةً إلى إجمالي المشتركين.
وصول المنشورات: يحصل كل منشور على متوسط 7 449 مشاهدة. وخلال اليوم الأول يجمع عادةً 0 مشاهدة.
التفاعلات والاستجابة: يتفاعل الجمهور بانتظام؛ متوسط التفاعلات لكل منشور يبلغ 20.

📝 الوصف وسياسة المحتوى

يصف المؤلف القناة بأنها مساحة للتعبير عن الآراء الذاتية:
“This channel discusses: — Offensive Security — RedTeam — Malware Research — OSINT — etc Disclaimer: t.me/APT_Notes/6 Chat Link: t.me/APT_Notes_PublicChat”

بفضل وتيرة التحديث المرتفعة (أحدث البيانات بتاريخ 14 يونيو, 2026) تحافظ القناة على حداثتها ومستوى وصول مرتفع. وتُظهر التحليلات تفاعلاً نشطاً من الجمهور، ما يجعلها نقطة تأثير مهمة ضمن فئة التكنولوجيات والتطبيقات.

14 701

المشتركون

+1724 ساعات

+1027 أيام

+41430 أيام

7 449

عرض المشاهدات

لا توجد بيانات24 ساعات

لا توجد بيانات48 ساعات

50.76%

معدل المشاركة

لا توجد بيانات

المشاركات في اليوم

Ads index

beta

أرشيف المشاركات

14 701

Pre-Auth Reflected XSS in MS Exchange (CVE-2021-41349) https://github.com/httpvoid/CVE-Reverse/tree/master/CVE-2021-41349 #exchange #xss #cve

14 701

SMBSR Well, SMBSR is a python script which given a CIDR/IP/IP_file/HOSTNAME(s) enumerates all the SMB services listening (445) among the targets and tries to authenticate against them; if the authentication succeed then all the folders and subfolders are visited recursively in order to find secrets in files and ... secret files. In order to scan the targets for SMB ports open the masscan module is used. https://github.com/oldboy21/SMBSR #smb #share #secrets #redteam

14 701

NanoDump Dumping LSASS has never been so stealthy Features

• It uses syscalls (with SysWhispers2) for most operations
• You can choose to download the dump without touching disk or write it to a file
• The minidump by default has an invalid signature to avoid detection
• It reduces the size of the dump by ignoring irrelevant DLLs. The (nano)dump tends to be arround 10 MB in size
• You don't need to provide the PID of LSASS
• No calls to dbghelp or any other library are made, all the dump logic is implemented in nanodump
• You can use the .exe version to run nanodump outside of Cobalt Strike

https://github.com/helpsystems/nanodump #dump #lsass #syswhispers

14 701

Unauthenticated RCE in Palo Alto GlobalProtect VPN https://www.randori.com/blog/cve-2021-3064/ #globalprotect #cve #0day

14 701

Obscure-IP-Obfuscator Simple script you can use to convert and obscure any IP address of any host. https://github.com/C-REMO/Obscure-IP-Obfuscator #ip #obfuscate #tools

14 701

OffSec/OSINT Resources http://Urlscan.io http://Hunter.io http://snov.io http://Osint.link http://DNSdumpster.com http://osintframework.com http://shodan.io http://censys.io http://zoomeye.org http://opencorporates.com http://kitploit.com http://ipv4info.com http://robtex.com http://securitytrails.com http://intelx.io http://crt.sh http://spyse.com #offsec #osint

14 701

MacOS — CVE-2021-30657 (POC) A vulnerability in syspolicyd allows specially crafted application bundle downloaded from internet to bypass foundational macOS security features such as File Quarantine, Gatekeeper, and Notarization. Armed with this capability attackers could hack macOS systems with a simple user (double)-click. https://github.com/shubham0d/CVE-2021-30657 #macos #poc #cve #syspolicyd

14 701

KubiScan KubiScan helps cluster administrators identify permissions that attackers could potentially exploit to compromise the clusters. This can be especially helpful on large environments where there are lots of permissions that can be challenging to track. KubiScan gathers information about risky roles\clusterroles, rolebindings\clusterrolebindings, users and pods, automating traditional manual processes and giving administrators the visibility they need to reduce risk. https://github.com/cyberark/KubiScan #kubernetes #rbac #scan #security #tools

14 701

Keycloak POST-based Reflected XSS 1. POST

/auth/realms/master/clientsregistrations/openid-connect

Content-Type: application/json

3. Request

{"<svg onload=alert(document.domain)>":1}

4. Unfiltered user-input in error message will triggered XSS #bugbounty #keycloak #xss

14 701

HackTheBox - PivotAPI https://youtu.be/FbTxPz_GA4o https://youtu.be/hzsGMj9C8Nw https://0xdf.gitlab.io/2021/11/06/htb-pivotapi.html #htb #writeup #ad #reverse

14 701

Mindmap on RDP analysis #mindmap #forensic #rdp

14 701

How to exploit CVE-2021-40539 on ManageEngine ADSelfService Plus 👤 by Antoine Cervoise, Wilfried Bécard ADSS offers multiple functionalities such as managing password policies for administrators or self password reset/account unlock for Active Directory users. In this article research team explore the details of several vulnerabilities that allow an unauthenticated attacker to execute arbitrary code on the server. 📝 Contents: • First steps • Authentication Bypass • Arbitrary file upload through the API • Arguments injection • Chaining everything together to get code execution • Conclusion https://www.synacktiv.com/publications/how-to-exploit-cve-2021-40539-on-manageengine-adselfservice-plus.html

14 701

ScoutSuite Scout Suite is an open source multi-cloud security-auditing tool, which enables security posture assessment of cloud environments. Using the APIs exposed by cloud providers, Scout Suite gathers configuration data for manual inspection and highlights risk areas. Rather than going through dozens of pages on the web consoles, Scout Suite presents a clear view of the attack surface automatically. # https://github.com/nccgroup/ScoutSuite # https://github.com/nccgroup/sadcloud #aws #azure #gcp #auditing #tool

14 701

LOLBAS Cmdl32.exe It's like a new certutil.exe but absolutely unheard of by any antivirus software! "C:\Windows\System32\Cmdl32.exe" (signed by MS) is for you. #lolbin #lolbas

14 701

Django Debug Mode Bypass

https://target/login?next=/

https://target/admin
[301 to https://target/admin/login/?next=/admin/]

Change request to [POST]
[500 Django DEBUG mode and vary bad information]

#bugbounty #bugbountytips #bugbountytip

14 701

GitLab RCE — CVE-2021-22205 https://github.com/Al1ex/CVE-2021-22205 #gitlab #rce

14 701

From Zero to Domain Admin https://thedfirreport.com/2021/11/01/from-zero-to-domain-admin/ #blueteam #writeup

14 701

Cheat Sheet for Malware Analysis MalAPI.io Maps Windows APIs to common techniques used by malware. Filesec.io Stay up-to-date with the latest file extensions being used by attackers. #redteam #blueteam #DFIR #windows #winapi

14 701

https://twitter.com/SagieSec/status/1339514329780072448 #bloodhoud #ransomulator

14 701

Chrome Extensions for Bug Bounty Hunters 1) Wappalyzer 2) Shodan 3) HackTools 4) Penetration Testing Kit 5) Mitaka 6) HackerTarget 7) Snov.io 8) Hunter - Email Finder Extension 9) EditThisCookie 10) User-Agent Switcher 11) d3coder 12) Trufflehog 13) DotGit 14) Retire.js # https://securitytrails.com/blog/bug-bounty-hunting-browser-extensions #chrome #extensions #bugbounty