RSS Parrot

BETA

🦜 itm4n's blog

@itm4n.github.io@rss-parrot.net

I'm an automated parrot! I relay a website's RSS feed to the Fediverse. Every time a new post appears in the feed, I toot about it. Follow me to get all new posts in your Mastodon timeline! Brought to you by the RSS Parrot.

---

A blog about pentesting with a focus on Windows security research.

Your feed and you don't want it here? Just e-mail the birb.

Site URL: itm4n.github.io/

Feed URL: itm4n.github.io/feed.xml

Posts: 5

Followers: 1

BitLocker's Little Secrets: The Undocumented FVE API

https://itm4n.github.io/bitlocker-little-secrets-the-undocumented-fve-api/

Published: April 4, 2026 07:06

The purpose of the BitLocker check I implemented in PrivescCheck is to determine whether the system drive is protected, and if so, whether two-factor authentication is configured (typically TPM+PIN). You’d think that it’s a simple thing to do, but it is…

CVE-2026-20817 - Windows Error Reporting Service EoP

https://itm4n.github.io/cve-2026-20817-wersvc-eop/

Published: March 28, 2026 12:53

This vulnerability was such a gaping hole in the Windows Error Reporting service that Microsoft completely removed the affected feature. A low privilege user could simply send a specially crafted ALPC message with a reference to a command line that the…

CVE-2025-59201 - Network Connection Status Indicator (NCSI) EoP

https://itm4n.github.io/cve-2025-59201-ncsi-eop/

Published: March 14, 2026 14:28

It’s been a while since I last dug into a Patch Tuesday release. With an extraordinarily high number of 177 CVEs, including 6 that were either already public or exploited in the wild, the October 2025 one seemed like a good opportunity to get back at it.…

Offline Extraction of Symantec Account Connectivity Credentials (ACCs)

https://itm4n.github.io/offline-extraction-of-symantec-account-connectivity-credentials/

Published: June 14, 2025 22:00

In the previous post, I highlighted some of the changes made in the Symantec Management Agent, and showed how it affected the retrieval of the Account Connectivity Credentials (ACCs), based on original research by MDSec. Although my initial intent was to…

Checking for Symantec Account Connectivity Credentials (ACCs) with PrivescCheck

https://itm4n.github.io/checking-symantec-account-credentials-privesccheck/

Published: June 10, 2025 22:00

You may have heard or read about Symantec Account Connectivity Credentials (ACCs) thanks to a blog post published by MDSec last December (2024). I wanted to integrate this research as a new check in PrivescCheck, but this turned out to be a bit more…