fa
Feedback
APT

APT

رفتن به کانال در Telegram

This channel discusses: — Offensive Security — RedTeam — Malware Research — OSINT — etc Disclaimer: t.me/APT_Notes/6 Chat Link: t.me/APT_Notes_PublicChat

نمایش بیشتر
روسيا45 554فناوری و برنامه‌ها8 834

📈 تحلیل کانال تلگرام APT

کانال APT (@apt_notes) در بخش زبانی انگلیسی بازیگری فعال است. در حال حاضر جامعه شامل 14 701 مشترک است و جایگاه 8 834 را در دسته فناوری و برنامه‌ها و رتبه 45 554 را در منطقه روسيا دارد.

📊 شاخص‌های مخاطب و پویایی

از زمان ایجاد در невідомо، پروژه رشد سریعی داشته و 14 701 مشترک جذب کرده است.

بر اساس آخرین داده‌ها در تاریخ 13 ژوئن, 2026، کانال فعالیت پایداری دارد. در ۳۰ روز گذشته تغییر اعضا برابر 414 و در ۲۴ ساعت گذشته برابر 17 بوده و همچنان دسترسی گسترده‌ای حفظ شده است.

  • وضعیت تأیید: تأیید نشده
  • نرخ تعامل (ER): میانگین تعامل مخاطب 50.76% است و در ۲۴ ساعت نخست پس از انتشار، محتوا معمولاً N/A% واکنش نسبت به کل مشترکان کسب می‌کند.
  • دسترسی پست‌ها: هر پست به طور میانگین 7 449 بازدید دریافت می‌کند. در اولین روز معمولاً 0 بازدید جمع‌آوری می‌شود.
  • واکنش‌ها و تعامل: مخاطبان به‌طور فعال حمایت می‌کنند؛ میانگین واکنش به هر پست 20 است.

📝 توضیح و سیاست محتوایی

نویسنده این فضا را محل بیان دیدگاه‌های شخصی توصیف می‌کند:
This channel discusses: — Offensive Security — RedTeam — Malware Research — OSINT — etc Disclaimer: t.me/APT_Notes/6 Chat Link: t.me/APT_Notes_PublicChat

به لطف به‌روزرسانی‌های پرتکرار (آخرین داده در تاریخ 14 ژوئن, 2026)، کانال همواره به‌روز و دارای دسترسی بالاست. تحلیل‌ها نشان می‌دهد مخاطبان به‌طور فعال با محتوا تعامل دارند و آن را به نقطه اثرگذاری مهم در دسته فناوری و برنامه‌ها تبدیل کرده‌اند.

14 701
مشترکین
+1724 ساعت
+1027 روز
+41430 روز
آرشیو پست ها
APT
APT
14 701
Pre-Auth Reflected XSS in MS Exchange (CVE-2021-41349) https://github.com/httpvoid/CVE-Reverse/tree/master/CVE-2021-41349 #exchange #xss #cve

APT
APT
14 701
SMBSR Well, SMBSR is a python script which given a CIDR/IP/IP_file/HOSTNAME(s) enumerates all the SMB services listening (445) among the targets and tries to authenticate against them; if the authentication succeed then all the folders and subfolders are visited recursively in order to find secrets in files and ... secret files. In order to scan the targets for SMB ports open the masscan module is used. https://github.com/oldboy21/SMBSR #smb #share #secrets #redteam

APT
APT
14 701
NanoDump Dumping LSASS has never been so stealthy Features • It uses syscalls (with SysWhispers2) for most operations • You c
NanoDump Dumping LSASS has never been so stealthy Features 
• It uses syscalls (with SysWhispers2) for most operations
• You can choose to download the dump without touching disk or write it to a file
• The minidump by default has an invalid signature to avoid detection
• It reduces the size of the dump by ignoring irrelevant DLLs. The (nano)dump tends to be arround 10 MB in size
• You don't need to provide the PID of LSASS
• No calls to dbghelp or any other library are made, all the dump logic is implemented in nanodump
• You can use the .exe version to run nanodump outside of Cobalt Strike
https://github.com/helpsystems/nanodump #dump #lsass #syswhispers

APT
APT
14 701
Unauthenticated RCE in Palo Alto GlobalProtect VPN https://www.randori.com/blog/cve-2021-3064/ #globalprotect #cve #0day

APT
APT
14 701
Obscure-IP-Obfuscator Simple script you can use to convert and obscure any IP address of any host. https://github.com/C-REMO/
Obscure-IP-Obfuscator Simple script you can use to convert and obscure any IP address of any host. https://github.com/C-REMO/Obscure-IP-Obfuscator #ip #obfuscate #tools

APT
APT
14 701

APT
APT
14 701
MacOS — CVE-2021-30657 (POC) A vulnerability in syspolicyd allows specially crafted application bundle downloaded from internet to bypass foundational macOS security features such as File Quarantine, Gatekeeper, and Notarization. Armed with this capability attackers could hack macOS systems with a simple user (double)-click. https://github.com/shubham0d/CVE-2021-30657 #macos #poc #cve #syspolicyd

APT
APT
14 701
KubiScan KubiScan helps cluster administrators identify permissions that attackers could potentially exploit to compromise the clusters. This can be especially helpful on large environments where there are lots of permissions that can be challenging to track. KubiScan gathers information about risky roles\clusterroles, rolebindings\clusterrolebindings, users and pods, automating traditional manual processes and giving administrators the visibility they need to reduce risk. https://github.com/cyberark/KubiScan #kubernetes #rbac #scan #security #tools

APT
APT
14 701
Keycloak POST-based Reflected XSS 1. POST /auth/realms/master/clientsregistrations/openid-connect 2. Content-Type: applicatio
+1
Keycloak POST-based Reflected XSS 1. POST /auth/realms/master/clientsregistrations/openid-connect 2. Content-Type: application/json 3. Request {"<svg onload=alert(document.domain)>":1} 4. Unfiltered user-input in error message will triggered XSS #bugbounty #keycloak #xss

APT
APT
14 701

APT
APT
14 701
Mindmap on RDP analysis #mindmap #forensic #rdp

APT
APT
14 701
How to exploit CVE-2021-40539 on ManageEngine ADSelfService Plus 👤 by Antoine Cervoise, Wilfried Bécard ADSS offers multiple functionalities such as managing password policies for administrators or self password reset/account unlock for Active Directory users. In this article research team explore the details of several vulnerabilities that allow an unauthenticated attacker to execute arbitrary code on the server. 📝 Contents: • First steps • Authentication Bypass • Arbitrary file upload through the API • Arguments injection • Chaining everything together to get code execution • Conclusion https://www.synacktiv.com/publications/how-to-exploit-cve-2021-40539-on-manageengine-adselfservice-plus.html

APT
APT
14 701
ScoutSuite Scout Suite is an open source multi-cloud security-auditing tool, which enables security posture assessment of cloud environments. Using the APIs exposed by cloud providers, Scout Suite gathers configuration data for manual inspection and highlights risk areas. Rather than going through dozens of pages on the web consoles, Scout Suite presents a clear view of the attack surface automatically. # https://github.com/nccgroup/ScoutSuite # https://github.com/nccgroup/sadcloud #aws #azure #gcp #auditing #tool

APT
APT
14 701
LOLBAS Cmdl32.exe It's like a new certutil.exe but absolutely unheard of by any antivirus software! "C:\Windows\System32\Cmdl32.exe" (signed by MS) is for you. #lolbin #lolbas

APT
APT
14 701
Django Debug Mode Bypass https://target/login?next=/ https://target/admin [301 to https://target/admin/login/?next=/admin/] C
Django Debug Mode Bypass 
https://target/login?next=/

https://target/admin
[301 to https://target/admin/login/?next=/admin/]

Change request to [POST]
[500 Django DEBUG mode and vary bad information]
#bugbounty #bugbountytips #bugbountytip

APT
APT
14 701
GitLab RCE — CVE-2021-22205 https://github.com/Al1ex/CVE-2021-22205 #gitlab #rce

APT
APT
14 701
From Zero to Domain Admin https://thedfirreport.com/2021/11/01/from-zero-to-domain-admin/ #blueteam #writeup

APT
APT
14 701
Cheat Sheet for Malware Analysis MalAPI.io Maps Windows APIs to common techniques used by malware. Filesec.io Stay up-to-date
+1
Cheat Sheet for Malware Analysis MalAPI.io Maps Windows APIs to common techniques used by malware. Filesec.io Stay up-to-date with the latest file extensions being used by attackers. #redteam #blueteam #DFIR #windows #winapi

APT
APT
14 701

APT
APT
14 701

APT - آمار و تحلیل کانال تلگرام @apt_notes