A small tool to view real-world ActivityPub objects as JSON! Enter a URL
or username from Mastodon or a similar service below, and we'll send a
request with
the right
Accept
header
to the server to view the underlying object.
{
"@context": [
"https://www.w3.org/ns/activitystreams",
{
"ostatus": "http://ostatus.org#",
"atomUri": "ostatus:atomUri",
"inReplyToAtomUri": "ostatus:inReplyToAtomUri",
"conversation": "ostatus:conversation",
"sensitive": "as:sensitive",
"toot": "http://joinmastodon.org/ns#",
"votersCount": "toot:votersCount",
"litepub": "http://litepub.social/ns#",
"directMessage": "litepub:directMessage",
"blurhash": "toot:blurhash",
"focalPoint": {
"@container": "@list",
"@id": "toot:focalPoint"
}
}
],
"id": "https://infosec.exchange/users/sensepost/statuses/109302867196984366",
"type": "Note",
"summary": null,
"inReplyTo": null,
"published": "2022-11-07T13:56:34Z",
"url": "https://infosec.exchange/@sensepost/109302867196984366",
"attributedTo": "https://infosec.exchange/users/sensepost",
"to": [
"https://www.w3.org/ns/activitystreams#Public"
],
"cc": [
"https://infosec.exchange/users/sensepost/followers"
],
"sensitive": false,
"atomUri": "https://infosec.exchange/users/sensepost/statuses/109302867196984366",
"inReplyToAtomUri": null,
"conversation": "tag:infosec.exchange,2022-11-07:objectId=20260654:objectType=Conversation",
"content": "<p>A new CrackMapExec module just landed courtesy of our Aurélien Chalot.</p><p>It makes use of token impersonation to execute commands as different logged in users (ala meterpreter's incognito module originally from Luke Jennings).</p><p>Aurélien did a full writeup of his work, as well as released a stand alone tool.</p><p>Writeup: <a href=\"https://sensepost.com/blog/2022/abusing-windows-tokens-to-compromise-active-directory-without-touching-lsass/\" target=\"_blank\" rel=\"nofollow noopener noreferrer\" translate=\"no\"><span class=\"invisible\">https://</span><span class=\"ellipsis\">sensepost.com/blog/2022/abusin</span><span class=\"invisible\">g-windows-tokens-to-compromise-active-directory-without-touching-lsass/</span></a></p><p>Standalone tool: <a href=\"https://github.com/sensepost/impersonate\" target=\"_blank\" rel=\"nofollow noopener noreferrer\" translate=\"no\"><span class=\"invisible\">https://</span><span class=\"ellipsis\">github.com/sensepost/impersona</span><span class=\"invisible\">te</span></a></p><p>CME commit: <a href=\"https://github.com/Porchetta-Industries/CrackMapExec/pull/601\" target=\"_blank\" rel=\"nofollow noopener noreferrer\" translate=\"no\"><span class=\"invisible\">https://</span><span class=\"ellipsis\">github.com/Porchetta-Industrie</span><span class=\"invisible\">s/CrackMapExec/pull/601</span></a></p>",
"contentMap": {
"en": "<p>A new CrackMapExec module just landed courtesy of our Aurélien Chalot.</p><p>It makes use of token impersonation to execute commands as different logged in users (ala meterpreter's incognito module originally from Luke Jennings).</p><p>Aurélien did a full writeup of his work, as well as released a stand alone tool.</p><p>Writeup: <a href=\"https://sensepost.com/blog/2022/abusing-windows-tokens-to-compromise-active-directory-without-touching-lsass/\" target=\"_blank\" rel=\"nofollow noopener noreferrer\" translate=\"no\"><span class=\"invisible\">https://</span><span class=\"ellipsis\">sensepost.com/blog/2022/abusin</span><span class=\"invisible\">g-windows-tokens-to-compromise-active-directory-without-touching-lsass/</span></a></p><p>Standalone tool: <a href=\"https://github.com/sensepost/impersonate\" target=\"_blank\" rel=\"nofollow noopener noreferrer\" translate=\"no\"><span class=\"invisible\">https://</span><span class=\"ellipsis\">github.com/sensepost/impersona</span><span class=\"invisible\">te</span></a></p><p>CME commit: <a href=\"https://github.com/Porchetta-Industries/CrackMapExec/pull/601\" target=\"_blank\" rel=\"nofollow noopener noreferrer\" translate=\"no\"><span class=\"invisible\">https://</span><span class=\"ellipsis\">github.com/Porchetta-Industrie</span><span class=\"invisible\">s/CrackMapExec/pull/601</span></a></p>"
},
"attachment": [
{
"type": "Document",
"mediaType": "image/png",
"url": "https://media.infosec.exchange/infosec.exchange/media_attachments/files/109/302/848/561/239/108/original/772e3c3d732896d5.png",
"name": null,
"blurhash": "U46*UR%%AeoixGWoNbn%nhj]bcW=X9ayr=jY",
"width": 1242,
"height": 895
}
],
"tag": [],
"replies": {
"id": "https://infosec.exchange/users/sensepost/statuses/109302867196984366/replies",
"type": "Collection",
"first": {
"type": "CollectionPage",
"next": "https://infosec.exchange/users/sensepost/statuses/109302867196984366/replies?min_id=109302884717654147&page=true",
"partOf": "https://infosec.exchange/users/sensepost/statuses/109302867196984366/replies",
"items": [
"https://infosec.exchange/users/sensepost/statuses/109302884717654147"
]
}
},
"likes": {
"id": "https://infosec.exchange/users/sensepost/statuses/109302867196984366/likes",
"type": "Collection",
"totalItems": 42
},
"shares": {
"id": "https://infosec.exchange/users/sensepost/statuses/109302867196984366/shares",
"type": "Collection",
"totalItems": 31
}
}