VbScrub @VbScrub

VB. Active Directory. HTB Machines. These are a few of my favourite things.

 UK
inv.warpnine.de/channel/UCpo…
Joined March 2020
  • Tweets 758
  • Following 45
  • Followers 1,425
108 Photos and videos
VbScrub retweeted
mRr3b00t @UK_Daniel_Card
Feb 7
Hacking 101 if ur doing a RED TEAM, remember to use disguises - PRETEND to be a printer or MFD. if somsone spots you in the corridor just start throwing paper all over the floor and screaming ERROR ERROR #badRedTeamTips
38
25
290
Show this thread
I realise I'm very late to the party... but if you're even remotely interesting in hacking and infosec stuff, I can't say enough good things about @JackRhysider's podcast, @DarknetDiaries Been binging it the last few nights before I go to sleep and every episode has been great
1
2
33
All I want for xmas is to not have to click allow cookies on literally every website I visit
1
7
As someone who always enjoyed using the latest versions of the .NET Framework over the last 13 years, it amazes me how much I still hate .NET Core every time I try it. Sick of editing config files and looking up command lines just to do even basic things. #dotnet #dotnetframework
1
1
9
Nope, this isn't about breakfast 🍳 Scrambled #Medium #Windows Machine created by VbScrub will go live 11 June 2022 at 19:00:00 UTC. Meta will be retired! Join now and start #hacking: hackthebox.com #HackTheBox #CyberSecurity #InfoSec #NewRelease
1
12
51
My latest machine will be going live on @hackthebox_eu later today (19:00 UTC). If you have a go at it, I'd be keen to hear what you think. Obviously won't be giving out any spoilers though. #HackTheBox #pentesting #InfoSec #hacking #ethicalhacking
4
10
1
79
The machine I submitted to @hackthebox_eu last year has finally made its way to the front of the queue. I can't remember if it's any good 🙃 hopefully a few people enjoy it #hackthebox #infosec #ethicalhacking #pentesting #hacker
11
I've always thought these pop up windows to log in to paypal etc seem like they'd be real easy to fake if you wanted to. We've all got so used to seeing them now, I bet a lot of people don't even check the URL in them. But even if you do, you could still be typing into a fake.
Will Dormann @wdormann
16 Mar 2022
Oh, this is good. Think you're typing into a pop-up window? Make sure that you try to drag it OUTSIDE OF the content area of the page first. Surely normal human beings do this.
Show this thread
3
#DSInternals 4.6 has just been released. Offline modification of #ActiveDirectory databases is now supported on Windows Server 2022, including password resets, SID history injection, group membership changes, and enabling/disabling accounts. #PowerShell github.com/MichaelGrafnetter…
2
130
4
330
This is pretty cool - infinitely generating music livestream from @65dos : inv.warpnine.de/65propaganda/liv…

Wreckage Systems

-- https://www.wreckage.systems​ ---- audio stream: https://www.65daysofstatic.com​-- want to know more? here's the FAQ: https://65daysofstatic.com/WreckageS...

youtube.com
1
1
"a live broadcast of new, endless 65DOS music. It is generated live on a computer and broadcast to the internet. It takes as its source hours of new recordings we made during lockdown (and continue to make), it combines them using software that we wrote and turns them into music"
1
These are the same guys that did the procedural music for the No Mans Sky game and I assume this idea came from that
NTLM is frowned upon. But is Kerberos really that secure? One thing is for sure, Kerberos is far from being understood by the admins, and default configurations are too much trusted ✨ Patch, update, learn, harden, mitigate, detect, prevent, compartmentalize ✨ ..or get pwned
9
138
1
581
Show this thread
VbScrub retweeted
0xdf @0xdf_
7 Feb 2022
Blog from @ippsec and me on the @hackthebox_eu blog - Finding that balance between not giving up too early and being pointlessly stuck is important. But the answer isn't "never seek help". Trying harder isn't always the answer when you're trying to learn. hackthebox.com/blog/It-is-Ok…

It is Okay to Use Writeups

The path to becoming an self-sufficient learner

hackthebox.com
10
109
6
407
VbScrub retweeted
casey @varcharr
6 Feb 2022
I work in tech, but don’t: - use a super cool monitor setup - put stickers on my laptop - hack all the things all the time - love going to conferences - have any certs Being in tech doesn’t mean you have to check special boxes.
159
586
128
5,345
VbScrub retweeted
Bryce @bryceabdo
4 Feb 2022
me irl
61
123
30
1,549
Delegate to KRBTGT service to get TGT for any users ! Thanks @cnotin for the help 🙏 skyblue.team/posts/delegate-…
3
134
6
249
Things that frustrate me far more than they should: Out of all the possible shapes in the world, most fonts manage to make an uppercase i and a lowercase L look IDENTICAL 😫
1
7
Certipy is a Python tool to enumerate and abuse misconfigurations in Active Directory Certificate Services (AD CS). By @ollypwn github.com/ollypwn/Certipy

GitHub - ly4k/Certipy: Tool for Active Directory Certificate Services enumeration and abuse

Tool for Active Directory Certificate Services enumeration and abuse - GitHub - ly4k/Certipy: Tool for Active Directory Certificate Services enumeration and abuse

github.com
8
29
Are you doing write ups for THM, retired HTB, or another platform? Might I suggest you also include how long it took you to perform each step, if you also had to use another write up or how long your enumeration took? It might help boost the confidence of people just starting out
12
9
1
110
Load more