New blog post!
This is the longest one in quite a while.
Last year, I held a presentation about the basics of Active Directory pentesting, focusing on "quick wins", easy to exploit vulnerabilities with huge impact.
I turned that presentation into a blog post.
The result is a surface-level overview of some of the most severe Active Directory vulnerabilities.
I hope it can be useful for aspiring pentesters and Active Directory admins alike.
https://ti-kallisti.com/general/ms/ad-basics.html
#redteam #pentesting #infosec #ActiveDirectory #sysadmin #Microsoft #Windows
I commissioned art for the first time in my life. I might get addicted to this.
The process was so pleasant and exciting, and the result... absolutely gorgeous, way above and beyond my expectations.
The first art of my OC, Kallisti, by the wonderful LEIXV (https://vgen.co/LEIXV).
Look at her, so cool!
#fediart #mastoart #commission #oc
@da_667@infosec.exchange
At least once a week, looking at the state of InfoSec, I ask myself:"Why do we still have running water, electricity, an economy, infrastructure?"
And a few minutes later I remember the ever same answer:"Because nobody cared enough to take it from us yet."
I commissioned art for the first time in my life. I might get addicted to this.
The process was so pleasant and exciting, and the result... absolutely gorgeous, way above and beyond my expectations.
The first art of my OC, Kallisti, by the wonderful LEIXV (https://vgen.co/LEIXV).
Look at her, so cool!
#fediart #mastoart #commission #oc
New blog post!
This is the longest one in quite a while.
Last year, I held a presentation about the basics of Active Directory pentesting, focusing on "quick wins", easy to exploit vulnerabilities with huge impact.
I turned that presentation into a blog post.
The result is a surface-level overview of some of the most severe Active Directory vulnerabilities.
I hope it can be useful for aspiring pentesters and Active Directory admins alike.
https://ti-kallisti.com/general/ms/ad-basics.html
#redteam #pentesting #infosec #ActiveDirectory #sysadmin #Microsoft #Windows
@da_667@infosec.exchange
At least once a week, looking at the state of InfoSec, I ask myself:"Why do we still have running water, electricity, an economy, infrastructure?"
And a few minutes later I remember the ever same answer:"Because nobody cared enough to take it from us yet."
InfoSec is a fun industry.
Happy #PatchTuesday, everyone
I love PBL.
Why would I want to send mails from my own server when I can instead funnel all my mail traffic through corporate servers and give them my money to allow me to do so?
Isn't that better?
Aren't we all so much more secure now?
/s
Oh, yeah, and while we're at it:
Let's give more power to ISPs.
You know, these huge, pseudo-monopolistic corporations that we regrettably depend on to have the Internet as it is but that make the Internet infinitely worse at the same time?
Yeah, let's just rely on them for everything, why don't we?
I love PBL.
Why would I want to send mails from my own server when I can instead funnel all my mail traffic through corporate servers and give them my money to allow me to do so?
Isn't that better?
Aren't we all so much more secure now?
/s
Time for an #introductiontoot, I guess.
I've been an #InfoSec professional for a bit now - too long for it being good for my mental health, some might say, but I still enjoy every second of it.
From time to time, albeit far too infrequently, I write stuff for my website (https://ti-kallisti.com).
I have one Alt to try out Akkoma (@ti-kallisti@corteximplant.net) and another one for offtopic stuff and shitposts (@Bartmoss_h4x0r@corteximplant.com).
I also wrote a little bot, the output of which is basically what would happen if an Adeptus Mechanicus priest became a Red-Teamer (@rubricatus_turma@cyber.ms).
When I'm not hacking stuff I like to play video games, especially RPGs. For those I even like to go analog, being a forever GM for Cyberpunk RED and playing VtM from time to time.
I would like to say that I like reading, but I've neglected that hobby a bit these past few years. Maybe 2025 will change that.
I guess that's all of the important stuff out of the way. If there's something else you wanna know, feel free to ask.
#introduction #introductionpost
Kallisti