RedTeam Pentesting

@RedTeamPT

Official RedTeam Pentesting GmbH account -- Impressum: http://redteam-pentesting.de/imprint/

Aachen, Germany

Joined January 2017

171Following

8KFollowers

Pinned

RedTeam Pentesting@RedTeamPT · Dec 5, 2022

Wir haben eine Mission: Werde eine*r von uns! 👩‍🚀👨‍🚀 Finde gemeinsam mit uns die Schwachstellen von morgen 🔑 und manchmal auch welche aus längst vergangener Zeit 🗝️ Mehr erfahrt ihr unter jobs.redteam-pentesting.de 🚀 #infosec #cybersecurity #aachen #hiring #ITJobs #Pentesting

RedTeam Pentesting@RedTeamPT · Jun 17

We're excited to host our XSS workshop for RWTH Aachen University's SecLab, again. Today, the students will face XSS challenges as well as a hunt for IT security easter eggs to climb the leaderboard 🏆 #rwth #informatik #aachen

RedTeamPT's tweet image. We're excited to host our XSS workshop for RWTH Aachen University's SecLab, again. Today, the students will face XSS challenges as well as a hunt for IT security easter eggs to climb the leaderboard 🏆
#rwth #informatik #aachen

1.0K

RedTeam Pentesting@RedTeamPT · Jun 13

x.com/RedTeamPT/stat… The efsr_spray module is merged in #NetExec. If you want to coerce an up-to-date Windows 11 and you have a writable share, this will come handy 😎. Thanks for the PR !

RRedTeam Pentesting@RedTeamPT · Jun 4

And this is our pull request to NetExec which adds efsr_spray which can re-enable EFSR/PetitPotam on up-to-date Windows 11 hosts 🤯if they have a writeable share: github.com/Pennyw0rth/Net…

8.0K

RedTeam Pentesting@RedTeamPT · Jun 11

Based on our testing, Microsoft seems to have fixed CVE-2025-33073 by blocking the CredUnmarshalTargetInfo/CREDENTIAL_TARGET_INFORMATIONW trick! @tiraniddo @decoder_it @Synacktiv #netsec #infosec #windows #cybersecurity x.com/RedTeamPT/stat…

RRedTeam Pentesting@RedTeamPT · Jun 11

🚨 Our new blog post about Windows CVE-2025-33073 which we discovered is live: 🪞 The Reflective Kerberos Relay Attack - Remote privilege escalation from low-priv user to SYSTEM with RCE by applying a long forgotten NTLM relay technique to Kerberos: blog.redteam-pentesting.de/2025/reflectiv…

4.0K

RedTeam Pentesting@RedTeamPT · Jun 5

Newer Windows clients often enforce signing ✍️ when using SMB fileshares. To quickly deploy an SMB server with signing supported we implemented this in impacket's smbserver.py based on a prior work by @lowercase_drm. github.com/fortra/impacke…

RedTeamPT's tweet card. This pull requests adds the option to support signing for arbitrary clients in a domain. Most of the NetLogon code is based on this gist by @ThePirateWhoSmellsOfSunflowers. To use this functionalit...

5.0K

RedTeam Pentesting@RedTeamPT · Jun 3

🎉Finally, you can now also find us on Bluesky and mastodon: bsky.app/profile/redtea… mastodon.social/@RedTeamPentes… Also, stay tuned for a brand new blog post this week 🥳

432

RedTeam Pentesting@RedTeamPT · Apr 30

Like every year in spring, yesterday, it was time for the B2Run 5k in Aachen. Of course, RedTeam's running team participated and delivered 🏆🏃🏃🏃🏃🏃 #running #aachen #b2run #vielfalt #diversity 🌈

RedTeamPT's tweet image. Like every year in spring, yesterday, it was time for the B2Run 5k in Aachen. Of course, RedTeam's running team participated and delivered 🏆🏃🏃🏃🏃🏃

#running #aachen #b2run #vielfalt #diversity 🌈

635

RedTeam Pentesting@RedTeamPT · Apr 8

🚨 In our new advisory we show how we could exploit a previously known SQL injection vulnerability in Shopware which was only partially fixed in a backport contained in Shopware Security Plugin. #infosec redteam-pentesting.de/en/advisories/…

1.0K