rootsecdev
@rootsecdev
Security Consultant @TrustedSec | Military grade meme poster, researcher, cloud penetration tester, voider of warranties. My thoughts are my own.
Just wanted to remind everyone. Azure Cloud training does not need to be super expensive. You just need to know where to look. Because that is what hackers do. #Azure #Cloud #Hacking Books: amazon.com/Penetration-Te… Labs: github.com/iknowjason/Awe… Free SANS Courses (on demand):…
How is it going this morning @HackingDave Getting creative in the gym and adding more weight?
Some guy bought 30 132lbs (60kg) steel anvils on Amazon. Not related to cybersecurity, but this is an important event to the Amazon delivery driver dropping off 3,960lbs (1,800kg) of steel at someones front door
You asked, we listened! From accessories to apparel, we’re excited to offer international shipping for all our merch 🌎 Shop now and wear your favorite gear! merch.trustedsec.com/trustedsec/sho…
@rootsecdev he dropping CA bypasses directly onto twitter
@rootsecdev he dropping CA bypasses directly onto twitter
Microsoft to stop using China-based teams to support Department of Defense 🦊 🐓 🏠 propublica.org/article/micros…
The Art of the Honeypot Account: Making the Unusual Look Normal, by @PyroTek3 hub.trimarcsecurity.com/post/the-art-o…
Gwyneth Paltrow Joins Astronomer Coldplay Kiss Scandal in Video variety.com/2025/digital/n…
Don’t miss @fir3d0g at @DEFCON 33! His talk, “The Human Vulnerability: Social Engineering in a Hyper-Connected World,” will be held on Friday, August 9 at 11:30 AM. Be sure to check it out if you’re attending! defcon.org/html/defcon-33…
This is good news
A rare, but highly welcome change. Microsoft changed the license requirement for Token protection from Entra ID P2 to P1. This will protect more customers in the long run and lead to a more secure ecosystem. learn.microsoft.com/en-us/entra/id…
Building off of @CodyBurkard's prior work, I put together a tool for automating the decryption of Entra ID application tokens from Azure App Services resources. Here's a blog that outlines the tooling: netspi.com/blog/technical…
We updated our blog with expanded analysis and threat intelligence from newly observed activity by Storm-2603 leading to the deployment of Warlock ransomware. msft.it/6011s132J
This might be useful for enumerating the SaaS products companies use, but it was more of an exercise in seeing how many DNS patterns I could get public LLMs to generate. github.com/HackingLZ/saas…
This mitigation is critical (esp based on Storm-2603 exploitation) and I expect it’s most-likely to be overlooked: 🔃🔑 Rotate SharePoint Server ASP .NET machine keys • After applying the latest security updates above or enabling AMSI, it is critical that customers rotate…
Microsoft is sharing details from ongoing investigations of threat actors exploiting vulnerabilities targeting on-premises SharePoint servers. Linen Typhoon, Violet Typhoon, and Storm-2603 have been observed exploiting the vulnerabilities: msft.it/6015sE1p5
👀 noooo
BREAKING: Ozzy Osbourne dead at 76; exact reason not yet released (Sky News)
We are #hiring! TrustedSec is searching for a Cloud Pentester with experience hacking Kubernetes and containers to join our Force-Cloud team. Learn more and apply today! recruiting.paylocity.com/recruiting/job…
Microsoft is sharing details from ongoing investigations of threat actors exploiting vulnerabilities targeting on-premises SharePoint servers. Linen Typhoon, Violet Typhoon, and Storm-2603 have been observed exploiting the vulnerabilities: msft.it/6015sE1p5
Dear Microsoft this was a minor annoyance but thanks for playing with the implementation over the weekend. 🙃😉 I’m still kicking ass. techcommunity.microsoft.com/blog/exchange/…
