fa
Feedback
APT

APT

رفتن به کانال در Telegram

This channel discusses: — Offensive Security — RedTeam — Malware Research — OSINT — etc Disclaimer: t.me/APT_Notes/6 Chat Link: t.me/APT_Notes_PublicChat

نمایش بیشتر
روسيا45 631فناوری و برنامه‌ها8 841

📈 تحلیل کانال تلگرام APT

کانال APT (@apt_notes) در بخش زبانی انگلیسی بازیگری فعال است. در حال حاضر جامعه شامل 14 658 مشترک است و جایگاه 8 841 را در دسته فناوری و برنامه‌ها و رتبه 45 631 را در منطقه روسيا دارد.

📊 شاخص‌های مخاطب و پویایی

از زمان ایجاد در невідомо، پروژه رشد سریعی داشته و 14 658 مشترک جذب کرده است.

بر اساس آخرین داده‌ها در تاریخ 12 ژوئن, 2026، کانال فعالیت پایداری دارد. در ۳۰ روز گذشته تغییر اعضا برابر 406 و در ۲۴ ساعت گذشته برابر 7 بوده و همچنان دسترسی گسترده‌ای حفظ شده است.

  • وضعیت تأیید: تأیید نشده
  • نرخ تعامل (ER): میانگین تعامل مخاطب 49.89% است و در ۲۴ ساعت نخست پس از انتشار، محتوا معمولاً N/A% واکنش نسبت به کل مشترکان کسب می‌کند.
  • دسترسی پست‌ها: هر پست به طور میانگین 7 313 بازدید دریافت می‌کند. در اولین روز معمولاً 0 بازدید جمع‌آوری می‌شود.
  • واکنش‌ها و تعامل: مخاطبان به‌طور فعال حمایت می‌کنند؛ میانگین واکنش به هر پست 20 است.

📝 توضیح و سیاست محتوایی

نویسنده این فضا را محل بیان دیدگاه‌های شخصی توصیف می‌کند:
This channel discusses: — Offensive Security — RedTeam — Malware Research — OSINT — etc Disclaimer: t.me/APT_Notes/6 Chat Link: t.me/APT_Notes_PublicChat

به لطف به‌روزرسانی‌های پرتکرار (آخرین داده در تاریخ 13 ژوئن, 2026)، کانال همواره به‌روز و دارای دسترسی بالاست. تحلیل‌ها نشان می‌دهد مخاطبان به‌طور فعال با محتوا تعامل دارند و آن را به نقطه اثرگذاری مهم در دسته فناوری و برنامه‌ها تبدیل کرده‌اند.

14 658
مشترکین
+724 ساعت
+1007 روز
+40630 روز
آرشیو پست ها
APT
APT
14 663
⚙️ Determining AD domain name via NTLM Auth If you have nmap (http-ntlm-info) unable to determine the FQND of an Active Direc
⚙️ Determining AD domain name via NTLM Auth If you have nmap (http-ntlm-info) unable to determine the FQND of an Active Directory domain via OWA, for example due to Citrix NetScaler or other SSO solutions, do it manually! 
1) curl -I -k -X POST -H 'Authorization: NTLM TlRMTVNTUAABAAAAB4IIogAAAAAAAAAAAAAAAAAAAAAKANc6AAAADw==' -H 'Content-Length: 0' https://autodiscover.exmaple.com/ews

2) echo 'TlRMTVNTUAACAAAADAAMAD...' | python2 ./ntlmdecoder.py
Source: ntlmdecoder.py #ntlm #auth #sso #tricks #pentest

APT
APT
14 663
🔑 Cobalt Strike Token Vault This Beacon Object File (BOF) creates in-memory storage for stolen/duplicated Windows access tok
🔑 Cobalt Strike Token Vault This Beacon Object File (BOF) creates in-memory storage for stolen/duplicated Windows access tokens allow you to: — Hot swap/re-use already stolen tokens without re-duplicating; — Store tokens for later use in case of a person log out. https://github.com/Henkru/cs-token-vault #ad #tokens #c2 #cobalt #redteam

APT
APT
14 663
💉ClipboardInject Abusing the clipboard to inject code into remote processes This PoC uses the clipboard to copy a payload into a remote process, eliminating the need for VirtualAllocEx/WriteProcessMemory https://www.x86matthew.com/view_post?id=clipboard_inject #maldev #injection #clipboard #redteam

APT
APT
14 663
🦮 BlueHound It is an open-source tool that helps blue teams pinpoint the security issues that actually matter. By combining
🦮 BlueHound It is an open-source tool that helps blue teams pinpoint the security issues that actually matter. By combining information about user permissions, network access and unpatched vulnerabilities, BlueHound reveals the paths attackers would take if they were inside your network It is a fork of NeoDash, reimagined, to make it suitable for defensive security purposes. Blog: 🔗 https://zeronetworks.com/blog/bluehound-community-driven-resilience/ Tool: 🔗 https://github.com/zeronetworks/BlueHound #ad #sharphound #blueteam

APT
APT
14 663
🔔 TamperingSyscalls This is a 2 part novel project consisting of argument spoofing and syscall retrival which both abuse EH
🔔 TamperingSyscalls This is a 2 part novel project consisting of argument spoofing and syscall retrival which both abuse EH in order to subvert EDRs. This project consists of both of these projects in order to provide an alternative solution to direct syscalls. https://github.com/rad9800/TamperingSyscalls #edr #evasion #maldev #syscall #tampering

APT
APT
14 663
🛡 On Detection: Tactical to Functional The goal of this series is to facilitate a conversation about the more technical aspects of attacks and how a deeper understanding at the more foundational levels helps to provide a batter base to build assumptions from. 🔗 Part 1: Discovering API Function Usage through Source Code Review 🔗 Part 2: Operations #maldev #pinvoke #winapi #detection #blueteam #ttp

APT
APT
14 663
Certipy 4.0: ESC9 & ESC10, BloodHound GUI, New Authentication and Request Methods — and more! https://research.ifcr.dk/certipy-4-0-esc9-esc10-bloodhound-gui-new-authentication-and-request-methods-and-more-7237d88061f7 #ad #adcs #certypy #bloodhound

APT
APT
14 663

APT
APT
14 663
🔐 PPLDump RIPPL is a tool that abuses a usermode only exploit to manipulate PPL processes on Windows. https://github.com/last-byte/RIPPL #ad #ppl #lsass #tools

APT
APT
14 663
🐚 PSAsyncShell: Asynchronous Firewall Bypass PSAsyncShell is an Asynchronous TCP Reverse Shell written in pure PowerShell. U
🐚 PSAsyncShell: Asynchronous Firewall Bypass PSAsyncShell is an Asynchronous TCP Reverse Shell written in pure PowerShell. Unlike other reverse shells, all the communication and execution flow is done asynchronously, allowing to bypass some firewalls and some countermeasures against this kind of remote connections. 🔗 Research: https://darkbyte.net/psasyncshell-bypasseando-firewalls-con-una-shell-tcp-asincrona/ 🔗 Source: https://github.com/JoelGMSec/PSAsyncShell #ad #powershell #reverse #shell

APT
APT
14 663
Repost from Offensive Xwitter
😈 [ mpgn_x64, mpgn ] Me after writing ONE vulnerablity out of 10 for the pentest report 🐥 [ tweet ] Жиза же ну
😈 [ mpgn_x64, mpgn ] Me after writing ONE vulnerablity out of 10 for the pentest report 🐥 [ tweet ] Жиза же ну

APT
APT
14 663
🔍 OSINT Tools Today I'm going to talk about two excellent resources for photo editing during OSINT/IMINT. Remini: The image
🔍 OSINT Tools Today I'm going to talk about two excellent resources for photo editing during OSINT/IMINT. Remini: The image unblurring/sharpening tool could help yield better reverse image search and facial recognition result. https://app.remini.ai/ Cleanup.Pictures: One of the best online photo object removal tools I've ever seen. https://cleanup.pictures/ #OSINT #IMINT #ImageAnalysis #tools

APT
APT
14 663
💉 Apache Spark RCE (CVE-2022-33891) Apache Spark could allow an attacker to execute arbitrary commands on the system, caused
💉 Apache Spark RCE (CVE-2022-33891) Apache Spark could allow an attacker to execute arbitrary commands on the system, caused by improper input validation of code path in HttpSecurityFilter when ACSs are enabled. This affects Apache Spark versions 3.0.3 and earlier, versions 3.1.1 to 3.1.2, and versions 3.2.0 to 3.2.1. PoC (Sleep 10): http://localhost:8080/?doAs=`echo%20%22c2xlZXAgMTAK%22%20|%20base64%20-d%20|%20bash` Exploits: https://github.com/HuskyHacks/cve-2022-33891 https://github.com/W01fh4cker/cve-2022-33891 https://github.com/west-wind/CVE-2022-33891 Shodan Dorks: http.favicon.hash:856048515 #apache #spark #rce #cve

APT
APT
14 663
🔓 Unprotect A project that is meant to provide Malware Analysts and Defenders with actionable insights and detection capabil
🔓 Unprotect A project that is meant to provide Malware Analysts and Defenders with actionable insights and detection capabilities to shorten their response times. A catalog of over 200 tricks used by malware to bypass detection and protection tools. There are also rules for detecting these tricks. https://unprotect.it/ #maldev #evasion #redteam #blueteam

APT
APT
14 663
👨‍👩‍👦 Book Can Save A Life I will be very happy if this book helps at least one person to gain knowledge and learn the sci
👨‍👩‍👦 Book Can Save A Life I will be very happy if this book helps at least one person to gain knowledge and learn the science of cybersecurity. The book is mostly practice oriented. This book is dedicated to my wife, Laura, and my children, Yerzhan and Munira. Also, thanks to everyone who is helping me through these difficult times. The proceeds from the sale of this book will be used to treat Munira (my daughter), who is currently battling for her life at a hospital in Istanbul, Turkey. The book is divided into three logical chapters: — Malware development tricks and techniques; — AV evasion tricks; — Persistence techniques. This book costs $16 but you can pay as much as you want. All money will go to the treatment of her daughter. https://cocomelonc.github.io/book/2022/07/16/mybook.html Channel author's preface: Dear cocomelonc (@abuyerzh) I wish you and your daughter health and well-being!

APT
APT
14 663
🪲 Abuse Cloudflare Zerotrust for C2 channels https://0xsp.com/offensive/red-ops-techniques/abuse-cloudflare-zerotrust-for-c2
🪲 Abuse Cloudflare Zerotrust for C2 channels https://0xsp.com/offensive/red-ops-techniques/abuse-cloudflare-zerotrust-for-c2-channels/ #c2 #cloudflare #zerotrust #redteam

APT
APT
14 663
👀 PowerView.py This is an alternative for the awesome original PowerView script. Most of the modules used in PowerView are a
👀 PowerView.py This is an alternative for the awesome original PowerView script. Most of the modules used in PowerView are available in this project. https://github.com/aniqfakhrul/powerview.py #ad #powerview #python #tools

APT
APT
14 663
Repost from Caster
Моя статья по пост-эксплуатации взломанного оборудования Cisco вышла в свет. https://habr.com/ru/post/676942/

APT
APT
14 663
🎲 Abusing forgotten permissions on computer objects in Active Directory The post is a dive into permissions that are set when you pre-create computer accounts the wrong way, why BloodHound missed those and how to abuse, fix, or monitor for this. Resource: 🔗 https://dirkjanm.io/abusing-forgotten-permissions-on-precreated-computer-objects-in-active-directory/ 🔗 https://www.trustedsec.com/blog/diving-into-pre-created-computer-accounts/ #ad #permission #acl

APT
APT
14 663
🧦 Chisel Strike A .NET XOR encrypted cobalt strike aggressor implementation for chisel to utilize faster proxy and advanced socks5 capabilities. https://github.com/m3rcer/Chisel-Strike #cobaltstrike #socks #proxy #redteam