Last Week in Security (LWiS)

@lastweekinfosec

Automated tweets on the publication of the Last Week in Security blog.

Joined May 2022

0Following

2KFollowers

Pinned

Last Week in Security (LWiS)@lastweekinfosec · Jun 10

Windows self-delete on 24H2 (@TKYNSEC), DNS rebinding (@yarlob), VSCode backdoor (@d1rkmtr), leak Google users' 📞# (@brutecat), Entra sync dumping (@hotnops), Delegations (@podalirius_), Chrome abuse for screenshots, mic, and more! blog.badsectorlabs.com/last-week-in-s…

lastweekinfosec's tweet card. Windows self-delete on 24H2 (@TKYNSEC), DNS rebinding (@yarlob), VSCode backdoor (@d1rkmtr), leak Google users' 📞# (@brutecat), Entra sync dumping (@hotnops), Delegations (@podalirius_), Chrome...

3.0K

Last Week in Security (LWiS)@lastweekinfosec · Jul 22

PIC agents (@_RastaMouse), ToolShell, Async BOFs (@Cneelis), SCCM MP relays (@unsigned_sh0rt), and more! blog.badsectorlabs.com/last-week-in-s…

lastweekinfosec's tweet card. PIC agents (@_RastaMouse), ToolShell, Async BOFs (@Cneelis), SCCM MP relays (@unsigned_sh0rt), RAITrigger (@ShitSecure), and more!

4.0K

Last Week in Security (LWiS)@lastweekinfosec · Jul 15

LudusHound (@bagelByt3s), SpeechRuntimeMove (@ShitSecure), Havoc Pro (@C5pider), FortiWeb RCE (@SinSinology), SailPoint IQService RCE (@NetSPI), Altiris RCE (@lefterispan), and more! blog.badsectorlabs.com/last-week-in-s…

lastweekinfosec's tweet card. LudusHound (@bagelByt3s), SpeechRuntimeMove (@ShitSecure), Havoc Pro (@C5pider), FortiWeb RCE (@SinSinology), SailPoint IQService RCE (@NetSPI), Altiris RCE (@lefterispan), WAF bypass (@nyxgeek ),...

4.0K

Last Week in Security (LWiS)@lastweekinfosec · Jul 7

Lenovo Applocker bypass (@Oddvarmoe), Citrix Bleed 2 (@SinSinology, @inkmoro, Aliz Hammond), A+ adversary simulation (@quarkslab), DreamWalkers loader (@max2cbx), and more! blog.badsectorlabs.com/last-week-in-s…

lastweekinfosec's tweet card. Lenovo Applocker bypass (@Oddvarmoe), Citrix Bleed 2 (@SinSinology, @inkmoro, Aliz Hammond), A+ adversary simulation (@quarkslab), DreamWalkers loader (@max2cbx), SigStrike (@rushter), and more!

2.0K

Last Week in Security (LWiS)@lastweekinfosec · Jul 1

Linux sleep obfs (@k0zmer), sudo vuln (@0xm1rch), self-xss trick (@slonser_), primitive injection (@trickster012), and more! blog.badsectorlabs.com/last-week-in-s…

lastweekinfosec's tweet card. Linux sleep obfs (@k0zmer), sudo vuln (@0xm1rch), self-xss trick (@slonser_), primitive injection (@trickster012), Sitecore RCE (@chudyPB ), and more!

1.0K

Last Week in Security (LWiS)@lastweekinfosec · Jun 2

Stealth syscalls (@darkrelaylabs), VM introspection (@memn0ps), Marebackup LPE (@itm4n), Azure Arc C2 (@ZephrFish), and more! blog.badsectorlabs.com/last-week-in-s…

lastweekinfosec's tweet card. Stealth syscalls (@darkrelaylabs), VM introspection (@memn0ps), Marebackup LPE (@itm4n), Azure Arc C2 (@ZephrFish), Obfusk8 (@x86byte), and more!

5.0K

Last Week in Security (LWiS)@lastweekinfosec · May 27

BadSuccessor (@YuG0rd), o3 finds SMB 0day (@seanhn), crashing defender (@InfoGuard_Labs), and more! blog.badsectorlabs.com/last-week-in-s…

lastweekinfosec's tweet card. BadSuccessor (@YuG0rd), o3 finds SMB 0day (@seanhn), crashing defender (@InfoGuard_Labs), MDT looting (@Oddvarmoe), and more!

437

Last Week in Security (LWiS)@lastweekinfosec · May 19

Certipy 5 (@ly4k_), MobileIron pwnage (@chudyPB), new CRTO pricing (@_ZeroPointSec), and more! blog.badsectorlabs.com/last-week-in-s…

lastweekinfosec's tweet card. Certipy 5 (@ly4k_), MobileIron pwnage (@chudyPB), new CRTO pricing (@_ZeroPointSec), Volatility 3 parity (@volatility), and more!

2.0K

Last Week in Security (LWiS)@lastweekinfosec · May 12

SysAid RCE (@SinSinology + @watchtowrcyber), defendnot (@es3n1n), iOS widget hacks (@brycebostwick1), and more! blog.badsectorlabs.com/last-week-in-s…

lastweekinfosec's tweet card. SysAid RCE (@SinSinology + @watchtowrcyber), defendnot (@es3n1n), iOS widget hacks (@brycebostwick1), Sword of Secrets (@GiliYankovitch), and more!

3.0K

Last Week in Security (LWiS)@lastweekinfosec · May 6

ProxyBlobing (@_atsika), SonicWall n-days (@SinSinology), Drag and Pwnd (@d4d89704243), Loki C2 2.0 (@0xBoku), and more! blog.badsectorlabs.com/last-week-in-s…

lastweekinfosec's tweet card. ProxyBlobing (@_atsika), SonicWall n-days (@SinSinology), Drag and Pwnd (@d4d89704243), Loki C2 2.0 (@0xBoku), GraphSpy 1.5.0 (@RedByte1337), and more!

3.0K

Last Week in Security (LWiS)@lastweekinfosec · Apr 29

TTTracer unmasks sleep obfs (@felixm_pw), GitHub spoofing (@pfiatde), Synology RCE (@ret2systems), and more! blog.badsectorlabs.com/last-week-in-s…

lastweekinfosec's tweet card. TTTracer unmasks sleep obfs (@felixm_pw), GitHub spoofing (@pfiatde), Synology RCE (@ret2systems), netify scraper (@Jhaddix), and more!

826

Last Week in Security (LWiS)@lastweekinfosec · Apr 22

CVE drama (@MITREcorp), Control Flow Hijacking w/Data Pointers (@0xLegacyy), Copilot in notepad (@zux0x3a), .NET AOT in Ghidra (@washi_dev), CSWSH in 2025 (@IncludeSecurity), and more! blog.badsectorlabs.com/last-week-in-s…

lastweekinfosec's tweet card. CVE drama (@MITREcorp), Control Flow Hijacking w/Data Pointers (@0xLegacyy), Copilot in notepad (@zux0x3a), .NET AOT in Ghidra (@washi_dev), CSWSH in 2025 (@IncludeSecurity), 300ms to Admin (@compa...

610

Last Week in Security (LWiS)@lastweekinfosec · Apr 15

WinRMS relay (@Defte_), plaintext Zip attacks (@pfiatde), SQL Server Crypto deep dive (@_xpn_), and more! blog.badsectorlabs.com/last-week-in-s…

lastweekinfosec's tweet card. WinRMS relay (@Defte_), plaintext Zip attacks (@pfiatde), SQL Server Crypto deep dive (@_xpn_), FindUnusualSessions (@podalirius_), and more!

5.0K

Last Week in Security (LWiS)@lastweekinfosec · Apr 7

2 weeks worth of news, techniques, tools and exploits! blog.badsectorlabs.com/last-week-in-s…

lastweekinfosec's tweet card. 2 weeks worth of news, techniques, tools and exploits!

2.0K

Last Week in Security (LWiS)@lastweekinfosec · Mar 25

Next.js auth bypass (@zhero____>__ + @inzo______>__), ServiceNow for red teamers (@__invictus_invictus_>__), Veeam RCE - again! (@chudyPB), and more! blog.badsectorlabs.com/last-week-in-s…

lastweekinfosec's tweet card. Next.js auth bypass (@zhero___ + @inzo____), ServiceNow for red teamers (@__invictus_), Veeam RCE - again! (@chudyPB), ArgFuscator (@Wietze), and more!

410

Last Week in Security (LWiS)@lastweekinfosec · Mar 17

Evilginx Pro (@mrgretzky), Pre-auth RCE in a CMS (@chudyPB), GOAD ADCS (@M4yFly), YouTube email disclosure (@brutecat), and more! blog.badsectorlabs.com/last-week-in-s…

lastweekinfosec's tweet card. Evilginx Pro (@mrgretzky), Pre-auth RCE in a CMS (@chudyPB), GOAD ADCS (@M4yFly), YouTube email disclosure (@brutecat), SAML parser bug (@ulldma.bsky.social/@ulldma@infosec.exchange), and more!

5.0K

Last Week in Security (LWiS)@lastweekinfosec · Mar 10

Detection Studio (@sifex), SCCM discovery account decryption (@unsigned_sh0rt), FindProcessesWithNamedPipes (@podalirius_), and more! blog.badsectorlabs.com/last-week-in-s…

lastweekinfosec's tweet card. Detection Studio (@sifex), SCCM discovery account decryption (@unsigned_sh0rt), FindProcessesWithNamedPipes (@podalirius_), Windows LPE (@MrAle_98), and more!

2.0K

Last Week in Security (LWiS)@lastweekinfosec · Mar 4

Ligolo-MP (@ttpreport), Bybit hack via CI (@adnanthekhan), FindGPPPasswords (@podalirius_), and more! blog.badsectorlabs.com/last-week-in-s…

lastweekinfosec's tweet card. Ligolo-MP (@ttpreport), Bybit hack via CI (@adnanthekhan), FindGPPPasswords (@podalirius_), ComDotNetExploit (@T3nb3w), and more!

677

Last Week in Security (LWiS)@lastweekinfosec · Feb 26

ADIDNS Parser (@the_bit_diddler), Parallels LPE (@patch1t), PowerChell (@itm4n), and more! blog.badsectorlabs.com/last-week-in-s…

lastweekinfosec's tweet card. ADIDNS Parser (@the_bit_diddler), Parallels LPE (@patch1t), PowerChell (@itm4n), SACL Scanner (Alexander DeMine of @SpecterOps), and more!

861

Last Week in Security (LWiS)@lastweekinfosec · Feb 18

PAN-OS auth bypass (@hash_kitten), Outlook drafts as C2 (@elasticseclabs), Ludus powered SocGholish analysis (@RussianPanda9xx), and more! blog.badsectorlabs.com/last-week-in-s…

lastweekinfosec's tweet card. PAN-OS auth bypass (@hash_kitten), Outlook drafts as C2 (@elasticseclabs), Ludus powered SocGholish analysis (@RussianPanda9xx), kernel UAF (@h0mbre_), and more!

6.0K