APT

前往频道在 Telegram

This channel discusses: — Offensive Security — RedTeam — Malware Research — OSINT — etc Disclaimer: t.me/APT_Notes/6 Chat Link: t.me/APT_Notes_PublicChat

显示更多

俄罗斯45 554 技术与应用8 834...

📈 Telegram 频道 APT 的分析概览

频道 APT (@apt_notes) 英语语言赛道中的是活跃参与者。目前社区聚集了 14 682 名订阅者，在 技术与应用 类别中位列第 8 834，并在 俄罗斯 地区排名第 45 554 位。

📊 受众指标与增长动态

自 невідомо 创建以来，项目保持高速增长，吸引了 14 682 名订阅者。

根据 13 六月, 2026 的最新数据，频道保持稳定运转。过去 30 天订阅人数变化为 414，过去 24 小时变化为 17，整体触达仍然可观。

认证状态： 未认证
互动率 (ER)： 平均受众互动率为 50.76%。内容发布后 24 小时内通常能获得 N/A% 的反应，占订阅者总量。
帖子覆盖： 每篇帖子平均可获得 7 449 次浏览，首日通常累积 0 次浏览。
互动与反馈： 受众积极参与，单帖平均反应数为 20。

📝 描述与内容策略

作者将该频道定位为表达主观观点的平台：
“This channel discusses: — Offensive Security — RedTeam — Malware Research — OSINT — etc Disclaimer: t.me/APT_Notes/6 Chat Link: t.me/APT_Notes_PublicChat”

凭借高频更新（最新数据采集于 14 六月, 2026），频道始终保持新鲜度与高覆盖。分析显示受众积极互动，使其成为 技术与应用 类别中的关键影响点。

14 682

订阅者

+1724 小时

+1027 天

+41430 天

7 449

帖子浏览量

无数据24 小时

无数据48 小时

50.76%

参与率

无数据

每日帖子数

Ads index

beta

帖子存档

14 675

DevSecOps pipelines — Secrets scan — Code scan — Dependency check (code libraries + image packages) — DAST — Exposures check Pipelines: https://gitlab.com/whitespots-public/pipelines Security scanners: https://gitlab.com/whitespots-public/security-images Example project integration: https://gitlab.com/whitespots-public/vulnerable-python-app #appsec #devsecops #pipelines

14 675

Active Directory Checklist — Attack & Defense Cheatsheet https://cybersecuritynews.com/active-directory-checklist/ #ad #cheatsheet #redteam #blueteam

14 675

Evading WinDefender ATP Credential Theft https://b4rtik.github.io/posts/evading-windefender-atp-credential-theft-kernel-version/ #windows #native #api #kernel #cpp

14 675

Malware Analysis: Syscalls Great guide and overview about Syscalls and how to start diagnosing them. https://jmpesp.me/malware-analysis-syscalls-example/ #maldev #cpp #syscall

14 675

Vergilius A collection of Microsoft Windows kernel structures, unions and enumerations. Most of them are not officially documented and cannot be found in Windows Driver Kit (WDK) headers. The target audience of this site is driver developers and kernel researches https://www.vergiliusproject.com/ #windows #driver #kernel

14 675

Ares This project is a PoC loader written in C/C++ based on the Transacted Hollowing technique. It features: — PPID spoofing — Dynamic function resolution with API hashing — NTDLL unhooking — AES256 CBC Encryption — CIG to block non-Microsoft-signed binaries https://github.com/Cerbersec/Ares #edr #evasion #cpp

14 675

LdrLoadDll-Unhooking https://github.com/trickster0/LdrLoadDll-Unhooking #edr #evasion #dll #cpp

14 675

Network Access Control (NAC) Bypass This post will be all about Network Access Control (NAC) solutions and how they might lull you into a sense of security. https://luemmelsec.github.io/I-got-99-problems-but-my-NAC-aint-one/ #nac #bypass #pentest

14 675

Active Directory ACL Visualizer and Explorer adalanche tool gives instant results, showing you what permissions users and groups have in an Active Directory. It is useful for visualizing and exploring who can take over accounts, machines or the entire domain, and can be used to find and show misconfigurations. https://github.com/lkarlslund/adalanche #ad #acl #visualizer #blueteam #redteam

14 675

Suspicious Named Pipe Events https://medium.com/falconforce/falconfriday-suspicious-named-pipe-events-0xff1b-fe475d7ebd8 #windows #pipe #events #blueteam #redteam

14 675

AWS IAM explained for RedTeam & BlueTeam https://infosecwriteups.com/aws-iam-explained-for-red-and-blue-teams-2dda8b20fbf7 #aws #iam #redteam #blueteam

14 675

14 675

Password Hash Cracking in AWS https://www.sans.org/blog/password-hash-cracking-amazon-web-services/ #aws #cuda #hashcat

14 675

$Bypass EDR with Microsoft Teams Copy payload into: %userprofile%\AppData\Local\Microsoft\Teams\current\ Then: %userprofile%\A$

Bypass EDR with Microsoft Teams Copy payload into:

%userprofile%\AppData\Local\Microsoft\Teams\current\

Then:

%userprofile%\AppData\Local\Microsoft\Teams\Update.exe --processStart payload.exe --process-start-args "args"

#edr #evasion #teams

14 675

Domain Escalation — ShadowCoerce (MS-FSRVP) Coercing the domain controller machine account to authenticate to a host which is under the control of a threat actor could lead to domain compromise. The most notable technique which involves coerced authentication is the PetitPotam attack which uses the Encrypting File System Remote Protocol (MS-EFSR). However, this is not the only protocol which could be utilized for domain escalation. Research: https://pentestlaboratories.com/2022/01/11/shadowcoerce/ PoC: https://github.com/ShutdownRepo/ShadowCoerce #ad #escalation #relay #redteam

14 675

Log4jHorizon A proof of concept for VMWare Horizon instances and allows attackers to execute code as an unauthenticated user using a single HTTP request. Research: https://www.sprocketsecurity.com/blog/crossing-the-log4j-horizon-a-vulnerability-with-no-return Exploit: https://github.com/puzzlepeaches/Log4jHorizon #log4j #vmware #horizon #rce

14 675

Important Windows processes for Threat Hunting https://www.socinvestigation.com/important-windows-processes-for-threat-hunting/ #edr #detection #forensic #process

14 675

Malicious PDF Generator Generate ten different malicious pdf files with phone-home functionality. Can be used with Burp Collaborator. https://github.com/pussycat0x/malicious-pdf #pdf #payload #burp #collaborator

14 675

Deep Technical Analysis of an Office RCE Exploit https://billdemirkapi.me/unpacking-cve-2021-40444-microsoft-office-rce/ #office #rce #cve_2021_40444

14 675

Domain Domination With Windows Shortcuts This article on malicious shortcut files and how they can be leveraged to capture NTLM hashes quietly and dominate a network or domain. https://medium.com/cybersecpadawan/domain-domination-with-windows-shortcuts-6aab1d72b793 #shortcuts #lnk #abuse #windows