en
Feedback
APT

APT

Open in Telegram

This channel discusses: β€” Offensive Security β€” RedTeam β€” Malware Research β€” OSINT β€” etc Disclaimer: t.me/APT_Notes/6 Chat Link: t.me/APT_Notes_PublicChat

Show more
Russia45 631Technologies & Applications8 841

πŸ“ˆ Analytical overview of Telegram channel APT

Channel APT (@apt_notes) in the English language segment is an active participant. Currently, the community unites 14 658 subscribers, ranking 8 841 in the Technologies & Applications category and 45 631 in the Russia region.

πŸ“Š Audience metrics and dynamics

Since its creation on Π½Π΅Π²Ρ–Π΄ΠΎΠΌΠΎ, the project has demonstrated rapid growth, gathering an audience of 14 658 subscribers.

According to the latest data from 12 June, 2026, the channel demonstrates stable activity. Although there has been a change in the number of participants by 406 over the last 30 days and by 7 over the last 24 hours, overall reach remains high.

  • Verification status: Not verified
  • Engagement rate (ER): The average audience engagement rate is 49.89%. Within the first 24 hours after publication, content typically collects N/A% reactions from the total number of subscribers.
  • Post reach: On average, each post receives 7 313 views. Within the first day, a publication typically gains 0 views.
  • Reactions and interaction: The audience actively supports content: the average number of reactions per post is 20.

πŸ“ Description and content policy

The author describes the resource as a platform for expressing subjective opinions:
β€œThis channel discusses: β€” Offensive Security β€” RedTeam β€” Malware Research β€” OSINT β€” etc Disclaimer: t.me/APT_Notes/6 Chat Link: t.me/APT_Notes_PublicChat”

Thanks to the high frequency of updates (latest data received on 13 June, 2026), the channel maintains relevance and a high level of publication reach. Analytics show that the audience actively interacts with content, making it an important point of influence in the Technologies & Applications category.

14 658
Subscribers
+724 hours
+1007 days
+40630 days
Posts Archive
APT
APT
14 669
Coercing NTLM Authentication from SCCM https://posts.specterops.io/coercing-ntlm-authentication-from-sccm-e6e23ea8260a #ad #ntlm #sccm

APT
APT
14 669
VMware Workspace ONE β€” SSTI (CVE-2022-22954) Successful exploitation could lead to RCE from an unauthenticated user. Payload:
VMware Workspace ONE β€” SSTI (CVE-2022-22954) Successful exploitation could lead to RCE from an unauthenticated user. Payload: https://victim/catalog-portal/ui/oauth/verify?error=&deviceUdid=${"freemarker.template.utility.Execute"?new()("cat /etc/passwd")} #vmware #workspace #ssti #cve

APT
APT
14 669
AppRecoveryCallback Inject Overwrite a process's recovery callback and invoke a crash to execute https://github.com/Wra7h/ARCInject #av #edr #evasion #inject #csharp

APT
APT
14 669
How NAT traversal works This blog post about NAT and NAT traversal is truly awesome! https://tailscale.com/blog/how-nat-traversal-works/ #howto #nat #blog

APT
APT
14 669
Remotely Dumping Chrome Cookies The method in this blog post does not require the remote debugger or Keychain (macOS)/DPAPI (Windows) access and applies to Chromium-based browsers in general https://cedowens.medium.com/remotely-dumping-chrome-cookies-revisited-b25343257209 #chrome #cookie #dump #blog

APT
APT
14 669
Rockyou for Web Fuzzing This is a wordlist for fuzzing purposes made from the best wordlists currently available, lowercased and deduplicated later with duplicut, added cleaner from BonJarber. The lists used have been some selected within these repositories: 
β€” fuzzdb
β€” SecLists
β€” xmendez
β€” minimaxir
β€” TheRook
β€” danielmiessler
β€” swisskyrepo
β€” 1N3
β€” cujanovic
β€” lavalamp
β€” ics-default
β€” jeanphorn
β€” j3ers3
β€” nyxxxie
β€” dirbuster
β€” dotdotpwn
β€” hackerone_wordlist
β€” commonspeak2
β€” bruteforce-list
β€” assetnote
https://github.com/six2dez/OneListForAll #web #fuzzing #wordlist

APT
APT
14 669
Unmanaged Code Execution with .NET Dynamic PInvoke https://bohops.com/2022/04/02/unmanaged-code-execution-with-net-dynamic-pinvoke/ #edr #evasion #pinvoke #csharp #blog

APT
APT
14 669
Spring4Shell Scan A fully automated, reliable, and accurate scanner for finding Spring4Shell and Spring Cloud RCE vulnerabilities Features: β€” Support for lists of URLs. β€” Fuzzing for more than 10 new Spring4Shell payloads (previously seen tools uses only 1-2 variants). β€” Fuzzing for HTTP GET and POST methods. β€” Automatic validation of the vulnerability upon discovery. β€” Randomized and non-intrusive payloads. β€” WAF Bypass payloads. https://github.com/fullhunt/spring4shell-scan #spring4shell #spring #scan #tools

APT
APT
14 669
[Blog] Unmanaged Code Execution with .NET Dynamic PInvoke https://bohops.com/2022/04/02/unmanaged-code-execution-with-net-dynamic-pinvoke/ #edr #evasion #pinvoke #csharp

APT
APT
14 669
The Bug Hunter Methodology PDF: https://www.ceos3c.com/wp-content/uploads/2020/06/Bug-Hunter-Methodology-V4-Visualization.pdf
The Bug Hunter Methodology PDF: https://www.ceos3c.com/wp-content/uploads/2020/06/Bug-Hunter-Methodology-V4-Visualization.pdf #bugbounty #methodology #xmind

APT
APT
14 669
LOLBIN to dump LSASS Path: C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\Extensions\TestPlatform\Extens
LOLBIN to dump LSASS Path: C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\Extensions\TestPlatform\Extensions Binary: DumpMinitool.exe #lolbin #lsass #dump

APT
APT
14 669
SpringShell: Spring Core RCE (CVE-2022-22963) PoC Payload: spring.cloud.function.routing-expression: T(java.lang.Runtime).get
SpringShell: Spring Core RCE (CVE-2022-22963) PoC Payload: spring.cloud.function.routing-expression: T(java.lang.Runtime).getRuntime().exec("xcalc") Research: https://www.cyberkendra.com/2022/03/springshell-rce-0-day-vulnerability.html Exploit: https://github.com/craig/SpringCore0day #spring #exploit #rce #cve

APT
APT
14 669
Guest User abuse in Azure AD Dear BlueTeam, save yourself from the RedTeam and enable these settings in your Azure tenant! Ot
+1
Guest User abuse in Azure AD Dear BlueTeam, save yourself from the RedTeam and enable these settings in your Azure tenant! Otherwise, every "Guest" you invite in your Microsoft Team meetings can list users from other groups etc. #azure #teams #guest #redteam #blueteam

APT
APT
14 669
PSSW100AVB This is the PSSW100AVB (Powershell Scripts With 100% AV Bypass) Framework. A list of useful Powershell scripts wit
PSSW100AVB This is the PSSW100AVB (Powershell Scripts With 100% AV Bypass) Framework. A list of useful Powershell scripts with 100% AV bypass ratio. (At the time of publication). Latest Reverse shell tested on Windows 11 (ReverseShell_2022_03.ps1) https://github.com/tihanyin/PSSW100AVB #av #evasion #amsi #powershell #ps1

APT
APT
14 669
LDAP relays for initial foothold in dire situations https://offsec.almond.consulting/ldap-relays-for-initial-foothold-in-dire
LDAP relays for initial foothold in dire situations https://offsec.almond.consulting/ldap-relays-for-initial-foothold-in-dire-situations.html #ad #relay #attack #adcs #redteam

APT
APT
14 669
CVE-2022-27666 This is the exploit for CVE-2022-27666, a vulnerability that achieves local privilege escalation on the latest Ubuntu Desktop 21.10. Research: https://etenal.me/archives/1825 Exploit: https://github.com/plummm/CVE-2022-27666 #ubuntu #lpe #linux

APT
APT
14 669
Azure Dominance Paths You are looking for a comprehensive map of Azure and Azure AD attack paths? Look no further, this is th
Azure Dominance Paths You are looking for a comprehensive map of Azure and Azure AD attack paths? Look no further, this is the right blog for you. https://cloudbrothers.info/en/azure-dominance-paths/ #azure #cloud #redteam #blueteam

APT
APT
14 669
CVE-2022-0995 This is my exploit for CVE-2022-0995, an heap out-of-bounds write in the watch_queue Linux kernel component. It
CVE-2022-0995 This is my exploit for CVE-2022-0995, an heap out-of-bounds write in the watch_queue Linux kernel component. It uses the same technique described in https://google.github.io/security-research/pocs/linux/cve-2021-22555/writeup.html. The exploit targets Ubuntu 21.10 with kernel 5.13.0-37. The exploit is not 100% reliable, you may need to run it a couple of times. It may panic the kernel, but during my tests it happened rarely. https://github.com/Bonfee/CVE-2022-0995 #linux #lpe #exploit #cve

APT
APT
14 669
ntTraceControl β€” Powershell Event Tracing Toolbox Want to simulate any ETW logs using powershell, even the security one? Do y
ntTraceControl β€” Powershell Event Tracing Toolbox Want to simulate any ETW logs using powershell, even the security one? Do you want to import any evtx files into the current eventlog session? ntTraceControl is a set of Powershell commands to forge/generate Windows logs. Simply put, ntTraceControl supports Detection teams by simplifying the testing of detection use cases and alerts without using complex infrastructure, tools, or the testing of vulnerabilities. https://github.com/airbus-cert/ntTraceControl #etw #simulate #powershell #redteam #blueteam

APT
APT
14 669
Windows Event Log Evasion via Native APIs Some native Windows API calls can be used to install services WITHOUT generating correlating entries in the event log. This was seen in Stuxnet. https://www.inversecos.com/2022/03/windows-event-log-evasion-via-native.html #edr #event #log #evasion