RedTeam Pentesting

@RedTeamPentesting
87 Followers
34 Following
38 Posts
Official RedTeam Pentesting GmbH account
Homepagehttps://www.redteam-pentesting.de
Jobshttps://jobs.redteam-pentesting.de
Bloghttps://blog.redteam-pentesting.de
Impressumhttps://redteam-pentesting.de/imprint/
Show threadRedTeam PentestingJan 30
This is kind of funny because CustomKeyInformation is actually forbidden for validated writes according to Microsoft's specs 🤡
https://learn.microsoft.com/en-us/openspecs/windows_protocols/ms-adts/f70afbcc-780e-4d91-850c-cfadce5bb15c
[MS-ADTS]: msDS-KeyCredentialLink

The object has class computer (or a subclass of computer). The msDS-KeyCredentialLink value satisfies the following

Show threadRedTeam PentestingJan 30
Originally, Microsoft did not enforce their own specs for validated writes at all and only checked if a KeyCredentialLink is already present. Now they require a CustomKeyInformation field with the "MFA Not Required" flag to be present and the last logon timestamp to be absent.
RedTeam PentestingJan 30

Our tool for KeyCredentialLinks and Shadow Credential attacks keycred now works with updated domain controllers again!

It turns out, Microsoft violated their own specs.

Try it out: https://github.com/RedTeamPentesting/keycred/
#infosec #security

RedTeam PentestingDec 4

🚨Nextcloud was vulnerable to XSS in PDF.js (CVE-2024-4367) found by Thomas Rinsma at CodeanIO.

Although Nextcloud mitigated the vulnerability in their portal by disabling eval, the viewer.html component of the vulnerable PDF.js was still exposed.

https://www.redteam-pentesting.de/en/advisories/rt-sa-2025-003/

RedTeam Pentesting - Cross-Site Scripting in Nextcloud: Development files shipped in files_pdfviewer app

Nextcloud’s PDF viewer uses an outdated version of PDF.js vulnerable to CVE-2024-4367. Attackers with regular user access to a Nextcloud instance are able to prepare a special link. If this link is visited by other logged-in users a cross-site scripting is executed and attackers get access to that users’ files.

RedTeam PentestingDec 1
Pwn-la-ChapelleNov 30

Haix-la-Chapelle 2025 is over!

128 teams submitted at least one flag, 270 correct flags were submitted, and 589 drinks consumed.

The winners are:
🥇 Team tjcsc with 3165 points
🥈Team THEM?! with 2665 points
🥉Team IT-Security Club with 2087 points

Thanks to all participants, see you next year!

#haix2025 #ctf

RedTeam PentestingNov 28
Pwn-la-ChapelleNov 28

By popular demand, registrations for Haix-la-Chapelle are now open!
Register your account here:
https://haix-la-chapelle.eu/register

If you experience any issues, open a support ticket on our discord:
https://discord.gg/ASYqv7N2Rj

Haix-la-Chapelle 2025

RedTeam PentestingNov 28
Pwn-la-ChapelleNov 26
RedTeam PentestingNov 19
Pwn-la-ChapelleNov 19

Just 10 days left until our first CTF, Haix-la-Chapelle, starts!

We have been hard at work and are excited to have you play our challenges 👀

CTF starts at 10am CET on 29th November with prizes sponsored by our lovely sponsors @RedTeamPentesting and @binaryninja
Big thanks also to Google for sponsoring our infrastructure

More information:
https://ctftime.org/event/2951

Haix-la-Chapelle 2025

Haix‑la‑Chapelle 2025 is a online Jeopardy-style CTF organized for the first time by Pwn‑la‑Chapelle and friends! It...

Show threadRedTeam PentestingNov 19
You can find the CTFTime event at https://ctftime.org/event/2951
Haix-la-Chapelle 2025

Haix‑la‑Chapelle 2025 is a online Jeopardy-style CTF organized for the first time by Pwn‑la‑Chapelle and friends! It...

RedTeam PentestingNov 19

🔥Only 10 days left until the Haix-la-Chapelle 2025 CTF is starting on November 29!

We're sponsoring the prize money for the best writeups and are excited to see your creative solutions.

https://haix-la-chapelle.eu/

Haix-la-Chapelle 2025