Mike @PinToStart
Security for MSRC. RPISEC alum Joined May 2016-
Tweets5
-
Followers78
-
Following37
-
Likes4
Mike retweeted
File system redirection has long been a tool for attackers seeking privilege escalation. RedirectionGuard, a new Windows mitigation, is designed to block malicious junction-based redirection by default, strengthening system security. Key Features of RedirectionGuard: •Blocks junction traversal only when followed by an opted-in process and when created by a non-admin user. •Stores privilege metadata in an admin-only alternate data stream to verify junction trustworthiness. •Already enabled in Windows Insider builds for User Profile Service, AppX Deployment Service, and Installer Service, historically among the most vulnerable components. Learn more in our new blog by Mike Macelletti (@pintostart), Senior Security Researcher, Microsoft: msft.it/6018SIil0 Many thanks to Georgios Baltas (@gebaltas) and James Forshaw (@tiraniddo) for their contributions.
4
26
61
10K
21
View Details
@galdeleon Great blog post, and you're right that it isn't enabled for any processes on Windows 10 yet (keep an eye out next month though). But if you scan on Windows 11, and better yet an insider build, you will see a different story.
Back by popular demand! This time I wrote one of the pwnables.
It’s almost time for Hack The Vote 2020 and registration is now live! Sign up for RPISEC's quadrennial CTF at the link below - our registration page is available in English, Spanish and AT&T hackthe.vote
Mike retweeted
Registration for Hack the Vote CTF now open: pwn.voting
Alibabas @0x_alibabas
115 Followers 601 Following
renorobert @renorobertr
2K Followers 988 Following
G2 @g2_hq1
27 Followers 330 Following
FFE4 @KernelDBG
311 Followers 3K Following I'm a virus analyst focus on Windows Security Research,Exploit Development
比个心 @vbigthing
51 Followers 4K Following
0xRiskVector @JT777777777
3 Followers 825 Following Cybersecurity, AI security, and digital forensics. Breaking systems, studying risk, and figuring out how things fail before they do.
Papa @aus_papa
24 Followers 341 Following
winterknife 🌻 @_winterknife_
5K Followers 5K Following low-level developer with a focus on 𝙸𝚗𝚝𝚎𝚕 𝚡𝟾𝟼 ISA devices running 𝚆𝚒𝚗𝚍𝚘𝚠𝚜 | R&D @BHinfoSecurity | https://t.co/lyJL0y7qRZ
Harvester @Harvesterify
1K Followers 5K Following Protecting Galileo at @esa | Ground segment cybersecurity | All your ground stations are belong to us | Previously @SafranElecDef & @ANSSI_FR
shshp @shshp4
0 Followers 5K Following
abdelmohimen soliman @abdelmohimen_01
10 Followers 862 Following I'm interested about cyber security and ethical hacking
Daniel Sikorskiy @sikorskiyz
40 Followers 1K Following talk to systems that talk back | chief architect @wonderfulai_
Jeremy Blackthorne @0xJeremy
1K Followers 413 Following Life-long student. Teacher. Marine. Instructor at @BosCybernetics. @RPISEC alumnus. السلام عليكم https://t.co/9GA7q1bmT5
bhaskar @rastogi_bhaskar
39 Followers 2K Following
Vishal Chauhan @axsdnied
515 Followers 239 Following Microsoft MSRC V&M team lead. Hacker. Gamer. Swimmer. Guitar player. Can't stay focused.
Jade @jadequery
24 Followers 39 Following Interested in computers and urbanism. Alumnus #RPISEC. she/they 🏳️⚧️
linkerrors @fengjixuchui123
94 Followers 3K Following
MicrosVuln @microsvuln
2K Followers 1K Following 🇮🇷 Vulnerability under the 🔬Microscope, Dating security mitigations, breaking them up in the end ...
Martin Orem @martinorem
125 Followers 1K Following
WP @wepIV
994 Followers 1K Following Currently @blackthornellc Entrepeneur, startup advisor, angel investor, CEO, CTO, red team / Frmly CEO @icebrgio before @Microsoft @DeptofDefense @dartmouth
Roy @xwlin_roy
1K Followers 2K Following
`Ivan @Ivanlef0u
11K Followers 4K Following
quidbit @nktropy
146 Followers 658 Following
Kevin Sullivan @kevsull
1K Followers 4K Following Working with Windows ecosystem partners to keep our customers safe. Double Husky - @CCISatNU and @TMMBA. Opinions are my own.
yeshuibo @yeshuibo
109 Followers 6K Following
makelaris @makelariss
1K Followers 3K Following Building worlds where hackers play. 🏴 Head of CTFs @hackthebox_eu | Global cyber competitions + enterprise training | he/him
Mycroft @bughumx
33 Followers 1K Following
dotdot @____dotdot
4 Followers 2K Following
toshi @piazzt
981 Followers 271 Following Security Engineer for MSFT; Member of @RPISEC | Icon: https://t.co/86WMScenvq
Swamy S Nagaraju @swamysng
526 Followers 450 Following Leading Sec Eng in Azure Confidential Computing, former MSRC Eng
Mischkag @mischkag
215 Followers 168 Following
Patrick Ventuzelo @Pat_Ventuzelo
4K Followers 1K Following Founder & CEO of @FuzzingLabs | Security Researcher focused on Fuzzing & Vulnerability Research | Rust, Go, Wasm, Browser, AI, Blockchain & Web3 Security
Matt Miller @epakskape
12K Followers 646 Following Killing bug classes and breaking exploits as part of @msftsecresponse. Adding more entropy to the Internet. https://t.co/J8GCGurGP3
suren reddy @suren1981
36 Followers 747 Following
vx-underground @vxunderground
438K Followers 357 Following The largest collection of malware source code, samples, and papers on the internet. Password: infected
Is The Mountain Out? @IsMtRainierOut
35K Followers 5 Following Perhaps the most important question in Seattle: Is Mount Rainier Out? (Updated around 3-5 times weekly.)
Umpire Scorecards @UmpScorecards
399K Followers 1 Following Umpire Scorecards posted for every game, every day. Find data and more info at the link below. Support us at https://t.co/GTnpOLedZF
NWS Seattle @NWSSeattle
240K Followers 428 Following Official Twitter account for the National Weather Service Seattle. Details: https://t.co/yoQbjVwBSK
Gal De Leon @galdeleon
1K Followers 465 Following Fuzzing, vulns & exploits. MSRC top researcher (2018, 2019, 2020). Tweets are my own.
Vishal Chauhan @axsdnied
515 Followers 239 Following Microsoft MSRC V&M team lead. Hacker. Gamer. Swimmer. Guitar player. Can't stay focused.
Rail & Oak American F... @Nedsfeed
55K Followers 223 Following Steel. Wood. Leather. Nightfall. Built to leave a mark.
Swamy S Nagaraju @swamysng
526 Followers 450 Following Leading Sec Eng in Azure Confidential Computing, former MSRC Eng
itszn @itszn13
11K Followers 734 Following Amy | Security researcher @ OpenAI | https://t.co/W1SE7NmCx8 | bsky: https://t.co/JBmOGE4YKO | LLM ART: https://t.co/7FtQ8O8nAW
0x5A1F @Saif_Sherei
5K Followers 1K Following some security stuff, opinions are based on experimental thought patterns resulting in delusional yet fun life choices. @[email protected]
Matt Miller @epakskape
12K Followers 646 Following Killing bug classes and breaking exploits as part of @msftsecresponse. Adding more entropy to the Internet. https://t.co/J8GCGurGP3
Alex Ionescu @aionescu
47K Followers 2K Following Chief Technical Innovation Officer @crowdstrike. Windows Internals author and trainer. He/Him. RTs are not endorsements, opinions are my own.
James Forshaw @tiraniddo
49K Followers 336 Following Security researcher in Google Project Zero. Author of Attacking Network Protocols. Tweets are my own etc. Mastodon: @[email protected]
Axel Souchet @0vercl0k
13K Followers 582 Following ¯\_(ツ)_/¯, blogging on https://t.co/36oOc8Mgha and posting codes on https://t.co/P83Oen94Rc.
Joseph Bialek @joseph... @JosephBialek
4K Followers 340 Following No longer using Twitter, find me on Mastodon: @[email protected] Security engineer @ Microsoft. I speak on my own behalf, not my employers.
Georgios Baltas @gebaltas
618 Followers 76 Following All things systems security. Opinions are my own.
toshi @piazzt
981 Followers 271 Following Security Engineer for MSFT; Member of @RPISEC | Icon: https://t.co/86WMScenvq
Sophia d’Antoine @Calaquendi44
3K Followers 123 Following Founder @Margin_Research, Hacker in Residence @ NYU, @RPISEC
Jeremy Blackthorne @0xJeremy
1K Followers 413 Following Life-long student. Teacher. Marine. Instructor at @BosCybernetics. @RPISEC alumnus. السلام عليكم https://t.co/9GA7q1bmT5
Evan Jensen @jensensec
789 Followers 1K Following
Barry Dorrans @blowdart
24K Followers 1K Following language & fx security person at msft. Not speaking on behalf of Microsoft. Not here much at all because, well, everything
Mari0n @pinkflawd
12K Followers 609 Following nutcracker by heart • tweets are my own, but if someone wants to buy them.. errr kidding
hwak heart @realBirdOrgan
34 Followers 163 Following
Hawkheart @Hwakheart
466 Followers 414 Following @RPISEC, @Toontown, etc. | no longer here, @[email protected], @hawkhe.art (bluesky) instead
0xAlexei @0xAlexei
6K Followers 1K Following Computer security research & cyber policy / @RPISEC alumnus / personal account
You might like
ReWolf
@rwfpl
2K Followers
Dougall
@dougallj
3K Followers
Luke Biery 🐀
@Tiec00n
148 Followers
Ian Kronquist
@IanKronquist
470 Followers
Pedro Justo
@itanium_guy
512 Followers