Oddvar Moe (@Oddvarmoe) / X

Oddvar Moe

11.9K posts

Oddvar Moe

@Oddvarmoe

Norway

oddvar.moe

Joined September 2011

Pinned
Oddvar Moe
@Oddvarmoe
Jul 29, 2024
Feels incredible to finally be able to talk about this tool and capability. Thanks to everyone that attended the webinar today, much appreciated. This is a tool that the entire Targeted Ops and Research team at TS has contributed to. I initially wrote the tool, but @freefirex2
TrustedSec
@TrustedSec
Jul 29, 2024
Today, TrustedSec is releasing #Specula (our previously internal framework) into the world, which will transform the Outlook email client into a beaconing C2 agent. @Oddvarmoe and @freefirex2 walk through how to use Specula in our latest blog! hubs.la/Q02JfFFN0
32K
Oddvar Moe
@Oddvarmoe
Sep 6, 2022
This is so true 🤣
Oddvar Moe
@Oddvarmoe
Apr 3, 2024
This made me laugh more than it should
195K
Oddvar Moe
@Oddvarmoe
Jan 14, 2024
😂
114K
Oddvar Moe
@Oddvarmoe
Feb 10, 2024
😂😂
141K
Oddvar Moe
@Oddvarmoe
Mar 10, 2025
True story
122K
Oddvar Moe
@Oddvarmoe
Aug 31, 2022
This made me laugh this morning
Oddvar Moe
@Oddvarmoe
Apr 13, 2025
🤣
127K
Oddvar Moe
@Oddvarmoe
Feb 22, 2022
Omg 🤣😂
Oddvar Moe
@Oddvarmoe
Dec 17, 2022
Man, remember doing this. I am starting to feel old
141K
Oddvar Moe
@Oddvarmoe
Nov 16, 2020
Things that make my Red Team day harder: - Macro's disabled - HTA's disabled - LAPS implemented - SMB Signing On - User Behavior Analytics - Educated Users And the worst is a blue team that has passion, that use HoneyUsers/Honeytokens/tripwire/fakeservice and focus on detection.
Oddvar Moe
@Oddvarmoe
Jan 5, 2023
I may or may not have nuked all computers in my classroom when I was young
201K
Oddvar Moe
@Oddvarmoe
Nov 18, 2019
Defenders should deploy this settings: HKLM\SYSTEM\CurrentControlSet\Control\Lsa Dword: RunAsPPL Value: 1 Protects dumping of Lsass with a simple registry value. Encountered that on an engagement recently. 🤯 Mimikatz driver needed to bypass Details
Configure added LSA protection
From learn.microsoft.com
Oddvar Moe
@Oddvarmoe
Apr 30, 2023
89K