Security Consultant / Pentester
#Intrested in AD, Malware Dev and WebApps
#Lover of Videogames, my Partner and Friends
Learn all the things 🤓🙌🏽
- 67 Followers
- 98 Following
- 59 Posts
- Start working out again 
- Start tracking cals in/out again 
- Finish Sektor7 courses 
- Get OSEP 
- Get to know more people in infosec a.k.a make new friends 
- Try to fly again for my partner 
- Get better at housekeeping 
Last week i got Domain Admin on an internal pentest in less than 5 minutes.
Besides the fact that storing passwords in description fields in Active Directory is a bad practice anyway, the amount of admins not aware of the fact that every user can read those descriptions is still astonishing for me
rundll32 dsquery.dll,OpenQueryWindow
Thats what i always like to do first 😊 works everywhere and allows for a quick manual lookup of AD objects
@alyssam_infosec amazing thread 🤗 thats also why there are no 'security experts' in my eyes, its just too big of a field with lots of niche skills
@Iaintshootinmis @_lennart what a nice exchange 🤗
@pads yeah i hated school too. In CH you have to finish school (9 grades) at a certain 'level' to have a chance at getting an apprenticeship in IT.
Until i got the chance at even starting the IT apprenticeship i wanted, i did another year at school and a 2-year apprenticeship.
Finally, starting the 4-year apprenticeship i wanted 3 years later, i performed very well and even got my first certs while doing it.
Almost 10 years passed since then 😌 Now life is great, working fulltime as consultant/pentester with a nice salary, living with my partner in a wonderful flat 🤗
Still very happy i proceeded with my plan when i was young and did not listen to all the things the teachers said about what i will be able to do and what not.
/End rant