en
Feedback
APT

APT

Open in Telegram

This channel discusses: β€” Offensive Security β€” RedTeam β€” Malware Research β€” OSINT β€” etc Disclaimer: t.me/APT_Notes/6 Chat Link: t.me/APT_Notes_PublicChat

Show more
Russia45 631Technologies & Applications8 841

πŸ“ˆ Analytical overview of Telegram channel APT

Channel APT (@apt_notes) in the English language segment is an active participant. Currently, the community unites 14 674 subscribers, ranking 8 841 in the Technologies & Applications category and 45 631 in the Russia region.

πŸ“Š Audience metrics and dynamics

Since its creation on Π½Π΅Π²Ρ–Π΄ΠΎΠΌΠΎ, the project has demonstrated rapid growth, gathering an audience of 14 674 subscribers.

According to the latest data from 12 June, 2026, the channel demonstrates stable activity. Although there has been a change in the number of participants by 406 over the last 30 days and by 7 over the last 24 hours, overall reach remains high.

  • Verification status: Not verified
  • Engagement rate (ER): The average audience engagement rate is 49.89%. Within the first 24 hours after publication, content typically collects N/A% reactions from the total number of subscribers.
  • Post reach: On average, each post receives 7 313 views. Within the first day, a publication typically gains 0 views.
  • Reactions and interaction: The audience actively supports content: the average number of reactions per post is 20.

πŸ“ Description and content policy

The author describes the resource as a platform for expressing subjective opinions:
β€œThis channel discusses: β€” Offensive Security β€” RedTeam β€” Malware Research β€” OSINT β€” etc Disclaimer: t.me/APT_Notes/6 Chat Link: t.me/APT_Notes_PublicChat”

Thanks to the high frequency of updates (latest data received on 13 June, 2026), the channel maintains relevance and a high level of publication reach. Analytics show that the audience actively interacts with content, making it an important point of influence in the Technologies & Applications category.

14 674
Subscribers
+724 hours
+1007 days
+40630 days
Posts Archive
APT
APT
14 674
Repost from PT SWARM
βœ… A tip for obtaining NT hash from GenericWrite/All privileges. Works for both user and machine accounts.
βœ… A tip for obtaining NT hash from GenericWrite/All privileges. Works for both user and machine accounts.

APT
APT
14 674
OSINT Tip Quickly scrape email addresses from a site with this simple curl command cat targets.txt | xargs -n1 -I{} curl -s https://{} | grep -E -o "\b[a-zA-Z0-9.-]+@[a-zA-Z0-9.-]+\.[a-zA-Z0-9.-]+\b" | sort -u #osint #tip #curl #email #recon

APT
APT
14 674
Relaying Kerberos over DNS using krbrelayx and mitm6 New method of gaining RCE on AD hosts in the same VLAN without credentials or needing NTLM, by abusing Kerberos, DNS and Active Directory Certificate Services. https://dirkjanm.io/relaying-kerberos-over-dns-with-krbrelayx-and-mitm6/ #ad #kerberos #relay #mitm6

APT
APT
14 674
KnockOutlook KnockOutlook is a C# project that interacts with Outlook's COM object in order to perform a number of operations useful in red team engagements. https://github.com/eksperience/KnockOutlook #exchange #outlook #com #recon

APT
APT
14 674
Fortinet Fortimail 7.0.1 β€” Reflected Cross-Site Scripting (CVE-2021-43062) An improper neutralization of input during web page generation vulnerability in FortiMail may allow an unauthenticated attacker to perform an XSS attack via crafted HTTP GET requests to the FortiGuard URI protection service. PoC: https://example/fmlurlsvc/?=&url=https%3A%2F%http://google.com%3CSvg%2Fonload%3Dalert(1)%3E Payload: https%3A%2F%http://google.com%3CSvg%2Fonload%3Dalert(1)%3E Dork: inurl:/fmlurlsvc/ #fortinet #forimail #xss

APT
APT
14 674
Container Security Checklist Checklist for container security devsecops practices https://github.com/krol3/container-security-checklist #kubernetes #docker #security #cheatsheet #blueteam

APT
APT
14 674
PowerRunAsSystem Run application as system with interactive system process support (active Windows session). This technique doesn't rely on any external tools and doesn't require a Microsoft Service. It spawns an NT Authority/System process using the Microsoft Windows Task Scheduler then upgrade to Interactive System Process using cool WinApi's (Run in Active Windows Session) https://github.com/DarkCoderSc/PowerRunAsSystem #windows #powershell #runas

APT
APT
14 674
Bloodhound Custom Queries A combination of custom cypher queries from various sources for BloodHound, added categories to match newest version of BH. https://github.com/ZephrFish/Bloodhound-CustomQueries #ad #azure #bloodhound #queries

APT
APT
14 674
Google Groups Dork Some Devs use "Google Groups" as a workplace because it is easy and free. But a lot of sensitive informati
Google Groups Dork Some Devs use "Google Groups" as a workplace because it is easy and free. But a lot of sensitive information is leaked Such as "access keys", "aws secrets" ...etc . Dork: site:http://groups.google.com "COMPANY" #osint #dorks #bugbounty

APT
APT
14 674
Bypass 2FA Using noVNC Steal credentials and bypass 2FA by giving users remote access to your server via an HTML5 VNC client
Bypass 2FA Using noVNC Steal credentials and bypass 2FA by giving users remote access to your server via an HTML5 VNC client that has a browser running in kiosk mode. https://mrd0x.com/bypass-2fa-using-novnc/ #2fa #bypass #novnc

APT
APT
14 674
DNS Abuse & Misconfiguration The History of DNS Vulnerabilities and the Cloud https://unit42.paloaltonetworks.com/dns-vulnerabilities/ Dangling Domains: Security Threats, Detection and Prevalence https://unit42.paloaltonetworks.com/dangling-domains/ Fishing the AWS IP Pool for Dangling Domains https://bishopfox.com/blog/fishing-the-aws-ip-pool-for-dangling-domains Respect My Authority – Hijacking Broken Nameservers to Compromise Your Target https://thehackerblog.com/respect-my-authority-hijacking-broken-nameservers-to-compromise-your-target/ The Orphaned Internet – Taking Over 120K Domains via a DNS Vulnerability in AWS, Google Cloud, Rackspace and Digital Ocean https://thehackerblog.com/the-orphaned-internet-taking-over-120k-domains-via-a-dns-vulnerability-in-aws-google-cloud-rackspace-and-digital-ocean/ The .io Error – Taking Control of All .io Domains With a Targeted Registration https://thehackerblog.com/the-io-error-taking-control-of-all-io-domains-with-a-targeted-registration/ The International Incident – Gaining Control of a .int Domain Name With DNS Trickery https://thehackerblog.com/the-international-incident-gaining-control-of-a-int-domain-name-with-dns-trickery/ Hostile Subdomain Takeover using Heroku/Github/Desk + more https://labs.detectify.com/2014/10/21/hostile-subdomain-takeover-using-herokugithubdesk-more/ Dangling DNS: Amazon EC2 IPs https://blog.melbadry9.xyz/dangling-dns/aws/ddns-ec2-current-state Eliminating Dangling Elastic IP Takeovers with Ghostbuster https://blog.assetnote.io/2022/02/13/dangling-eips/ Internet-Wide Analysis of Subdomain Takeovers https://redhuntlabs.com/blog/project-resonance-wave-1.html Subdomain Takeover https://0xpatrik.com/subdomain-takeover-basics/ https://0xpatrik.com/subdomain-takeover-candidates/ https://0xpatrik.com/takeover-proofs/ https://0xpatrik.com/subdomain-takeover-ns/ https://0xpatrik.com/subdomain-takeover/ #dns #abuse #aws #elastic #subdomain #takeover

APT
APT
14 674
Certipy 2.0: BloodHound, New Escalations, Shadow Credentials, Golden Certificates, and more! Blog: https://research.ifcr.dk/certipy-2-0-bloodhound-new-escalations-shadow-credentials-golden-certificates-and-more-34d1c26f0dc6 Tool: https://github.com/ly4k/Certipy #ad #adcs #abuse #tools

APT
APT
14 674
LOLBIN β€” wlrmdr Action on click: wlrmdr.exe -s 60000 -f 1 -t "Important" -m "Click this dude!" -a 10 -u cmd You can use "-a 1
+1
LOLBIN β€” wlrmdr Action on click: wlrmdr.exe -s 60000 -f 1 -t "Important" -m "Click this dude!" -a 10 -u cmd You can use "-a 11" to skip the click requirement and spawn your process immediately: wlrmdr -s 0 -f 0 -t 0 -m 0 -a 11 -u cmd #windows #wlrmdr #lolbin #lolbas

APT
APT
14 674
DumpSMBShare A script to dump files and folders remotely from a Windows SMB share. https://github.com/p0dalirius/DumpSMBShare
DumpSMBShare A script to dump files and folders remotely from a Windows SMB share. https://github.com/p0dalirius/DumpSMBShare #ad #smb #share #dump

APT
APT
14 674
Keeping Up with the NTLM Relay https://www.fortalicesolutions.com/posts/keeping-up-with-the-ntlm-relay #ad #ntlm #relay #adcs

APT
APT
14 674
o365recon Script to retrieve information via O365 and AzureAD with a valid cred. https://github.com/nyxgeek/o365recon #azure
o365recon Script to retrieve information via O365 and AzureAD with a valid cred. https://github.com/nyxgeek/o365recon #azure #recon #tools

APT
APT
14 674
Zabbix SAML Authentication Bypass (CVE-2022-23131) https://blog.sonarsource.com/zabbix-case-study-of-unsafe-session-storage #zabbix #research #auth #bypass #cve

APT
APT
14 674
S3Scanner Scan for open S3 buckets and dump the contents Features: β€” Multi-threaded scanning β€” Supports tons of S3-compatible
S3Scanner Scan for open S3 buckets and dump the contents Features: β€” Multi-threaded scanning β€” Supports tons of S3-compatible APIs β€” Scans all bucket permissions to find misconfigurations β€” Dump bucket contents to a local folder β€” Docker support https://github.com/sa7mon/S3Scanner #aws #s3 #bucket #scanner

APT
APT
14 674
Recon β€” Horizontal Enumeration https://aaryanapex.medium.com/bug-bounty-methodology-horizontal-enumeration-89f7cd172e6e #osint #recon #enumeration

APT
APT
14 674
Useful Libraries for Malware Development https://captmeelo.com/redteam/maldev/2022/02/16/libraries-for-maldev.html #edr #evasion #lib #maldev #cpp