unicode domain phishing with EvilURL
Demo : https://youtu.be/ug5ZuezbD3c
https://github.com/UndeadSec/EvilURL
Demo : https://youtu.be/ug5ZuezbD3c
https://github.com/UndeadSec/EvilURL
XSS payloads in PNG IDAT chunks
https://www.adamlogue.com/revisiting-xss-payloads-in-png-idat-chunks/
An XSS on Facebook via PNGs
https://whitton.io/articles/xss-on-facebook-via-png-content-types/
https://www.adamlogue.com/revisiting-xss-payloads-in-png-idat-chunks/
An XSS on Facebook via PNGs
https://whitton.io/articles/xss-on-facebook-via-png-content-types/
Jack
An XSS on Facebook via PNGs & Wonky Content Types
Bug Bounty & Application Security
Convert Hex To Assembly Using Simple Python Script
https://haiderm.com/convert-hex-assembly-using-simple-python-noscript/
https://haiderm.com/convert-hex-assembly-using-simple-python-noscript/
Haider's Infosec Blog
Convert Hex To Assembly Using Simple Python Script
Convert hex Shellcode to Assembly instructions using Python noscript. This noscript will convert your Hex input straight into assembly
Shed - Inspect .NET malware like a Sir
http://antonioparata.blogspot.sg/2017/11/shed-inspect-net-malware-like-sir.html?m=1
http://antonioparata.blogspot.sg/2017/11/shed-inspect-net-malware-like-sir.html?m=1
antonioparata.blogspot.co.uk
Shed - Inspect .NET malware like a Sir
When I start to analyze a new malware, there are some initial tasks that provide a lot of useful information to speedup the analysis. Two ...
Using PowerShell to resolve Sysprep problems involving App-X packages
http://techgenix.com/sysprep-problems-app-x-packages/
Deploying App-X packages in Windows images prepared using Sysprep can be problematical. Here's how one IT pro solved the problem with PowerShell.
The post Using PowerShell to resolve Sysprep problems involving App-X packages (http://techgenix.com/sysprep-problems-app-x-packages/) appeared first on TechGenix (http://techgenix.com/).
http://techgenix.com/sysprep-problems-app-x-packages/
Deploying App-X packages in Windows images prepared using Sysprep can be problematical. Here's how one IT pro solved the problem with PowerShell.
The post Using PowerShell to resolve Sysprep problems involving App-X packages (http://techgenix.com/sysprep-problems-app-x-packages/) appeared first on TechGenix (http://techgenix.com/).
VMware Patches Vulnerabilities in vCenter Server
http://feedproxy.google.com/~r/Securityweek/~3/aJUn-Gf3gDs/vmware-patches-vulnerabilities-vcenter-server
The VMware vCenter Server management software is affected by a couple of moderate severity vulnerabilities that can be exploited for obtaining information and remote denial-of-service (DoS) attacks.
read more (http://www.securityweek.com/vmware-patches-vulnerabilities-vcenter-server)
http://feedproxy.google.com/~r/Securityweek/~3/aJUn-Gf3gDs/vmware-patches-vulnerabilities-vcenter-server
The VMware vCenter Server management software is affected by a couple of moderate severity vulnerabilities that can be exploited for obtaining information and remote denial-of-service (DoS) attacks.
read more (http://www.securityweek.com/vmware-patches-vulnerabilities-vcenter-server)
Securityweek
VMware Patches Vulnerabilities in vCenter Server | SecurityWeek.Com
VMware patches moderate severity DoS and information disclosure vulnerabilities in vCenter Server
x86_64 reverse TCP bind shell with basic authentication on Linux systems
https://pentesterslife.blog/2017/11/13/x86_64-reverse-tcp-bind-shell-with-basic-authentication-on-linux-systems/
https://pentesterslife.blog/2017/11/13/x86_64-reverse-tcp-bind-shell-with-basic-authentication-on-linux-systems/
Pentester's life
x86_64 reverse TCP bind shell with basic authentication on Linux systems
The objective here is to create a reverse TCP bind shell using Assembly x64, which will authenticate the attacker through a password, and have no Null bytes (0x00) in it.