fa
Feedback
APT

APT

رفتن به کانال در Telegram

This channel discusses: — Offensive Security — RedTeam — Malware Research — OSINT — etc Disclaimer: t.me/APT_Notes/6 Chat Link: t.me/APT_Notes_PublicChat

نمایش بیشتر
روسيا45 663فناوری و برنامه‌ها8 841

📈 تحلیل کانال تلگرام APT

کانال APT (@apt_notes) در بخش زبانی انگلیسی بازیگری فعال است. در حال حاضر جامعه شامل 14 653 مشترک است و جایگاه 8 841 را در دسته فناوری و برنامه‌ها و رتبه 45 663 را در منطقه روسيا دارد.

📊 شاخص‌های مخاطب و پویایی

از زمان ایجاد در невідомо، پروژه رشد سریعی داشته و 14 653 مشترک جذب کرده است.

بر اساس آخرین داده‌ها در تاریخ 11 ژوئن, 2026، کانال فعالیت پایداری دارد. در ۳۰ روز گذشته تغییر اعضا برابر 406 و در ۲۴ ساعت گذشته برابر 16 بوده و همچنان دسترسی گسترده‌ای حفظ شده است.

  • وضعیت تأیید: تأیید نشده
  • نرخ تعامل (ER): میانگین تعامل مخاطب 48.83% است و در ۲۴ ساعت نخست پس از انتشار، محتوا معمولاً N/A% واکنش نسبت به کل مشترکان کسب می‌کند.
  • دسترسی پست‌ها: هر پست به طور میانگین 7 154 بازدید دریافت می‌کند. در اولین روز معمولاً 0 بازدید جمع‌آوری می‌شود.
  • واکنش‌ها و تعامل: مخاطبان به‌طور فعال حمایت می‌کنند؛ میانگین واکنش به هر پست 18 است.

📝 توضیح و سیاست محتوایی

نویسنده این فضا را محل بیان دیدگاه‌های شخصی توصیف می‌کند:
This channel discusses: — Offensive Security — RedTeam — Malware Research — OSINT — etc Disclaimer: t.me/APT_Notes/6 Chat Link: t.me/APT_Notes_PublicChat

به لطف به‌روزرسانی‌های پرتکرار (آخرین داده در تاریخ 12 ژوئن, 2026)، کانال همواره به‌روز و دارای دسترسی بالاست. تحلیل‌ها نشان می‌دهد مخاطبان به‌طور فعال با محتوا تعامل دارند و آن را به نقطه اثرگذاری مهم در دسته فناوری و برنامه‌ها تبدیل کرده‌اند.

14 653
مشترکین
+1624 ساعت
+1087 روز
+40630 روز
آرشیو پست ها
APT
APT
14 658
Repost from Offensive Xwitter
photo content
+1

APT
APT
14 658
Repost from Offensive Xwitter
👹 [ snovvcrash, sn🥶vvcr💥sh ] Have been playing around with Domain Fronting via Fastly and discovered that you actually do not need to confirm the domain name ownership (by adding a CNAME) for the traffic to flow towards your IP. A bug or feature? 🤔 🐥 [ tweet ] игрались тут с @Acrono с домен фронтингом и вот такую фичу интересную нашли

APT
APT
14 658
🦛 PetitPotam: Local Privilege Escalation Now PetitPotato can elevate to SYSTEM on the latest windows. My test version is 10.
🦛 PetitPotam: Local Privilege Escalation Now PetitPotato can elevate to SYSTEM on the latest windows. My test version is 10.0.20348.1547 https://github.com/wh0amitz/PetitPotato/ #windows #privesc #rpc #petitpotam

APT
APT
14 658
🌐 External Trusts Are Evil https://exploit.ph/external-trusts-are-evil.html #ad #trust #abuse

APT
APT
14 658
Repost from 1N73LL1G3NC3
LPE exploit for CVE-2023-21768 (Windows Ancillary Function Driver for WinSock Elevation of Privilege) Complete exploit works on vulnerable Windows 11 22H2 systems. Write primitive works on all vulnerable systems.

APT
APT
14 658
🔑 KeePass2: DLL Hijacking and Hooking API This new article about a way to get the Master Password of a KeePass database. htt
🔑 KeePass2: DLL Hijacking and Hooking API This new article about a way to get the Master Password of a KeePass database. https://skr1x.github.io/keepass-dll-hijacking/ #keepass #dll #hijacking #redteam

APT
APT
14 658
🌐 DroppedConnection — Cisco ASA Anyconnect Emulator Fake VPN server that captures credentials and executes code via the Cisc
🌐 DroppedConnection — Cisco ASA Anyconnect Emulator Fake VPN server that captures credentials and executes code via the Cisco AnyConnect client. Source: https://github.com/nccgroup/DroppedConnection Research: https://research.nccgroup.com/2023/03/01/making-new-connections-leveraging-cisco-anyconnect-client-to-drop-and-run-payloads/ #cisco #asa #anyconnect #credentials #redteam

APT
APT
14 658
​​​⚛️ AtomLdr A DLL loader with advanced evasive. Features: • DLL unhooking from \KnwonDlls\ directory, with no RWX sections
​​​⚛️ AtomLdr A DLL loader with advanced evasive. Features: • DLL unhooking from \KnwonDlls\ directory, with no RWX sections • The encrypted payload is saved in the resource section and retrieved via custom code • AES256-CBC Payload encryption using custom no table/data-dependent branches using ctaes; this is one of the best custom AES implementations I've encountered • Indirect syscalls, utilizing HellHall with ROP gadgets • Payload injection using APC calls - alertable thread • Api hashing using two different implementations of the CRC32 string hashing algorithm • The total Size is 17kb https://github.com/NUL0x4C/AtomLdr #loader #dll #edr #evasion #redteam

APT
APT
14 658
📜 Abusing Code Signing Certificates Abusing code signing certificates is not new. In the past few years alone, it has proven
📜 Abusing Code Signing Certificates Abusing code signing certificates is not new. In the past few years alone, it has proven to be an effective method of bypassing certain security controls to allow malicious software to run and look seemingly benign. This article describes code signing methods, as well as tools for copying the signature from legitimate PE files. Source: https://axelarator.github.io/posts/codesigningcerts/ #sign #code #certificate #abuse #redteam

APT
APT
14 658
Repost from Ralf Hacker Channel
Это реально круто! Вкратце: позволяет записывать файлы, созданные маяком кобальта (на примере кобальта), в память, а не на ди
Это реально круто! Вкратце: позволяет записывать файлы, созданные маяком кобальта (на примере кобальта), в память, а не на диск в системе. https://github.com/Octoberfest7/MemFiles #redteam #pentest #git #cs #bypass

APT
APT
14 658
💥 Fortinet FortiNAC Unauthenticated RCE On Thursday, 16 February 2022, Fortinet released a PSIRT that details CVE-2022-39952
💥 Fortinet FortiNAC Unauthenticated RCE On Thursday, 16 February 2022, Fortinet released a PSIRT that details CVE-2022-39952, a critical vulnerability affecting its FortiNAC product. This vulnerability, discovered by Gwendal Guégniaud of Fortinet, allows an unauthenticated attacker to write arbitrary files on the system and as a result obtain remote code execution in the context of the root user. PoC: https://github.com/horizon3ai/CVE-2022-39952 Research: https://www.horizon3.ai/fortinet-fortinac-cve-2022-39952-deep-dive-and-iocs/ #fortinet #fortinac #rce #cve

APT
APT
14 658
🧪 NtQueueApcThreadEx — NTDLL Gadget Injection This novel way of using NtQueueApcThreadEx by abusing the ApcRoutine and Syste
🧪 NtQueueApcThreadEx — NTDLL Gadget Injection This novel way of using NtQueueApcThreadEx by abusing the ApcRoutine and SystemArgument[0-3] parameters by passing a random pop r32; ret gadget can be used for stealthy code injection. Source: https://github.com/LloydLabs/ntqueueapcthreadex-ntdll-gadget-injection #apc #ntdll #injection #clang #redteam

APT
APT
14 658
🔥 NimPlant С2 This is a new light-weight, first-stage C2 implant written in Nim, with a supporting Python server and Next.JS
🔥 NimPlant С2 This is a new light-weight, first-stage C2 implant written in Nim, with a supporting Python server and Next.JS web GUI. https://github.com/chvancooten/NimPlant #c2 #nim #python #redteam

APT
APT
14 658
Joomla Web Service Endpoint Access (CVE-2023-23752) An issue was discovered in Joomla! 4.0.0 through 4.2.7. An improper acces
Joomla Web Service Endpoint Access (CVE-2023-23752) An issue was discovered in Joomla! 4.0.0 through 4.2.7. An improper access check allows unauthorized access to webservice endpoints. PoC: 
httpx -l targets.txt -sc -ct -ip -path '/api/index.php/v1/config/application?public=true'
Research: https://unsafe.sh/go-149780.html Nuclei Template: https://github.com/thecyberneh/nuclei-templatess/blob/main/cves/2023/CVE-2023-23752.yaml #joomla #endpoint #access #cve

APT
APT
14 658
🔧 Windows LPE via StorSvc Service StorSvc is a service which runs as NT AUTHORITY\SYSTEM and tries to load the missing SprintCSP.dll DLL when triggering the SvcRebootToFlashingMode RPC method locally. PoC: https://github.com/blackarrowsec/redteam-research/tree/master/LPE%20via%20StorSvc #windows #lpe #storsvc #service

APT
APT
14 658
Repost from Ralf Hacker Channel
И ещё одна новая картошка! RasMan service for privilege escalation https://github.com/crisprss/RasmanPotato #git #lpe #soft #pentest #redteam

APT
APT
14 658
Repost from Offensive Xwitter
Псс, гайс, слышали об уязвимости CVE-2022-48109? Вот и я нет до сегодняшнего дня, а ведь это CVE ID моего инфосек-братишки @Acrono! Хочу первым поздравить Пашу с потерей цвйешной девственности – ура-ура! Ждем от него покорения новых вершин на поприще киберсесурити 💪🏻 Следите за каналом @APT_Notes, чтобы узнать подробности 😉

APT
APT
14 658
Repost from 1N73LL1G3NC3
certsync certsync is a new technique in order to dump NTDS remotely, but this time without DRSUAPI: it uses golden certificat
certsync certsync is a new technique in order to dump NTDS remotely, but this time without DRSUAPI: it uses golden certificate and UnPAC the hash. It works in several steps: 1) Dump user list, CA informations and CRL from LDAP 2) Dump CA certificate and private key 3) Forge offline a certificate for every user 4) UnPAC the hash for every user in order to get nt and lm hashes

APT
APT
14 658
⭐️ Privileger Privilger allows you to work with privileges in Windows as easily as possible. There are three modes: — Add pri
⭐️ Privileger Privilger allows you to work with privileges in Windows as easily as possible. There are three modes: — Add privileges to an account; — Start a process by adding a specific privilege to its token; — Remove privilege from the user. Thanks to: @Michaelzhm https://github.com/MzHmO/Privileger #ad #windows #privilege #lsa

APT
APT
14 658
Repost from Offensive Xwitter
😈 [ 0x0SojalSec, Md Ismail Šojal ] The shortest payload for a tiny php reverse shell written in 19 bytes using only non-alp
😈 [ 0x0SojalSec, Md Ismail Šojal ] The shortest payload for a tiny php reverse shell written in 19 bytes using only non-alphanumeric characters. Hex values inside ⛶ indicate raw bytes. This will help to bypass WAF and execute PHP reverse shell for RCE. get more detail about this👇 🔗 https://gist.github.com/0xSojalSec/5bee09c7035985ddc13fddb16f191075 #bugbountyTips #bugbounty 🐥 [ tweet ]