نحوه استفاده از Kubesploit و KubiScan برای بهبود امنیت Cloud Native
https://www.conjur.org/blog/tutorial-kubernetes-vulnerability-scanning-testing-with-open-source
#Cloud
#Security
@NetPentester
https://www.conjur.org/blog/tutorial-kubernetes-vulnerability-scanning-testing-with-open-source
#Cloud
#Security
@NetPentester
Daxin: Stealthy Backdoor Designed for Attacks Against Hardened Networks
https://symantec-enterprise-blogs.security.com/blogs/threat-intelligence/daxin-backdoor-espionage
#malware
#Backdoor
@NetPentester
https://symantec-enterprise-blogs.security.com/blogs/threat-intelligence/daxin-backdoor-espionage
#malware
#Backdoor
@NetPentester
Security
Daxin: Stealthy Backdoor Designed for Attacks Against Hardened Networks
Espionage tool is the most advanced piece of malware Symantec researchers have seen from China-linked actors.
MITM-cheatsheet:
All MITM attacks in one place
https://github.com/frostbits-security/MITM-cheatsheet
#MITM
#Cheatsheet
#attack
@NetPentester
All MITM attacks in one place
https://github.com/frostbits-security/MITM-cheatsheet
#MITM
#Cheatsheet
#attack
@NetPentester
GitHub
GitHub - frostbits-security/MITM-cheatsheet: All MITM attacks in one place.
All MITM attacks in one place. Contribute to frostbits-security/MITM-cheatsheet development by creating an account on GitHub.
یک ابزار شمارش سریع برای Windows AD Pentesting
https://github.com/AidenPearce369/ADReaper
#tools
#AD
@NetPentester
https://github.com/AidenPearce369/ADReaper
#tools
#AD
@NetPentester
GitHub
GitHub - m0n1x90/ADReaper: A fast enumeration tool for Windows Active Directory Pentesting written in Go
A fast enumeration tool for Windows Active Directory Pentesting written in Go - m0n1x90/ADReaper
Learning Linux kernel exploitation
Part 1 - Laying the groundwork
https://0x434b.dev/dabbling-with-linux-kernel-exploitation-ctf-challenges-to-learn-the-ropes
#linux
@NetPentester
Part 1 - Laying the groundwork
https://0x434b.dev/dabbling-with-linux-kernel-exploitation-ctf-challenges-to-learn-the-ropes
#linux
@NetPentester
Low-level adventures
Learning Linux kernel exploitation - Part 1 - Laying the groundwork
Table fo contents
Disclaimer: This post will cover basic steps to accomplish a privilege escalation based on a vulnerable driver. The basis for this introduction will be a challenge from the hxp2020 CTF called "kernel-rop". There's (obviously) write…
Disclaimer: This post will cover basic steps to accomplish a privilege escalation based on a vulnerable driver. The basis for this introduction will be a challenge from the hxp2020 CTF called "kernel-rop". There's (obviously) write…
The 8KB bypass in Google Cloud Platform WAF
https://kloudle.com/blog/piercing-the-cloud-armor-the-8kb-bypass-in-google-cloud-platform-waf
#Cloud
#WAF
@NetPentester
https://kloudle.com/blog/piercing-the-cloud-armor-the-8kb-bypass-in-google-cloud-platform-waf
#Cloud
#WAF
@NetPentester
Kloudle
Piercing the Cloud Armor: Exploiting the 8KB Bypass in Google Cloud Platform WAF
A detailed analysis of a critical security vulnerability in Google Cloud Platform's Web Application Firewall (WAF) that allows bypassing protection through an 8KB payload technique. Learn about the technical details, implications, and mitigation strategies.
Vajra is a UI based tool with multiple techniques for attacking/enumerating in target's Azure environment
https://github.com/TROUBLE-1/Vajra
#Azure
#tools
@NetPentester
https://github.com/TROUBLE-1/Vajra
#Azure
#tools
@NetPentester
GitHub
GitHub - TROUBLE-1/Vajra: Vajra is a UI-based tool with multiple techniques for attacking and enumerating in the target's Azure…
Vajra is a UI-based tool with multiple techniques for attacking and enumerating in the target's Azure and AWS environment. It features an intuitive web-based user interface built with the P...
Intrusion statistics aligned to the MITRE ATT&CK framework
https://thedfirreport.com/2022/03/07/2021-year-in-review
@NetPentester
https://thedfirreport.com/2022/03/07/2021-year-in-review
@NetPentester
The DFIR Report
2021 Year In Review
As we come to the end of the first quarter of 2022, we want to take some time to look back over our cases from 2021, in aggregate, and look at some of the top tactics, techniques and procedures (TT…
AutoWarp: Critical Cross-Account Vulnerability in Microsoft Azure Automation Service
https://orca.security/resources/blog/autowarp-microsoft-azure-automation-service-vulnerability
#Azure
#Vulnerability
@NetPentester
https://orca.security/resources/blog/autowarp-microsoft-azure-automation-service-vulnerability
#Azure
#Vulnerability
@NetPentester
Orca Security
AutoWarp: Azure Automation Vulnerability | Orca Research Pod
AutoWarp is a critical vulnerability in Microsoft Azure Automation Service that allows unauthorized access to other customer accounts using the service.
Azure Dominance Paths
https://cloudbrothers.info/en/azure-dominance-paths/
#azure
#cloud
#AD
@NetPentester
https://cloudbrothers.info/en/azure-dominance-paths/
#azure
#cloud
#AD
@NetPentester
cloudbrothers.info
Azure Attack Paths
Creating and maintaining a secure environment is hard. And with every technology or product added to your environment it gets more complicated. Microsoft Azure as a cloud environment is no exception to this rule and with the many services and features that…
تمام حملات MITM در یک مکان :
https://github.com/frostbits-security/MITM-cheatsheet
#MITM
#Cheatsheet
@NetPentester
https://github.com/frostbits-security/MITM-cheatsheet
#MITM
#Cheatsheet
@NetPentester
GitHub
GitHub - frostbits-security/MITM-cheatsheet: All MITM attacks in one place.
All MITM attacks in one place. Contribute to frostbits-security/MITM-cheatsheet development by creating an account on GitHub.
Resources for Kubernetes network policies
https://github.com/networkpolicy/community
#pollicies
@NetPentester
https://github.com/networkpolicy/community
#pollicies
@NetPentester
GitHub
GitHub - networkpolicy/community: Resources for Kubernetes network policies
Resources for Kubernetes network policies. Contribute to networkpolicy/community development by creating an account on GitHub.
LDAP relays for initial foothold in dire situations
https://offsec.almond.consulting/ldap-relays-for-initial-foothold-in-dire-situations.html
#LDAP
@NetPentester
https://offsec.almond.consulting/ldap-relays-for-initial-foothold-in-dire-situations.html
#LDAP
@NetPentester
Active Directory (Attack & Defense )
https://0xsp.com/offensive/active-directory-attack-defense
#AD
#Attack
#Defense
@NetPentester
https://0xsp.com/offensive/active-directory-attack-defense
#AD
#Attack
#Defense
@NetPentester
MITRE ATT&CK TTP’s used by LAPSUS$
Two interesting techniques used by LAPSUS$ (Code Signing, Disable, and Modify Tools)
#MITRE
@NetPentester
Two interesting techniques used by LAPSUS$ (Code Signing, Disable, and Modify Tools)
#MITRE
@NetPentester
Vulnerable Active Directory
Create a vulnerable AD that will allow you to test most AD attacks in a local lab
Main characteristics:
- Random attacks
- Full coverage of the listed attacks
- it is necessary to run the noscript in DC with Active Directory installed
- Some attacks require a client workstation
Supported attacks:
- Abuse of ACLs/ACEs
- Kerberoasting
- AS-REP Roasting
- Abuse of DnsAdmins
- Password in object denoscription
- Custom objects with default password (Changeme123!)
- Password spraying
- DCSync
- Silver ticket
- Golden Ticket
- Pass-the-Hash
- Pass-the-Ticket
- SMB signing disabled
https://github.com/WazeHell/vulnerable-AD
#Ad
#Lab
@NetPentester
Create a vulnerable AD that will allow you to test most AD attacks in a local lab
Main characteristics:
- Random attacks
- Full coverage of the listed attacks
- it is necessary to run the noscript in DC with Active Directory installed
- Some attacks require a client workstation
Supported attacks:
- Abuse of ACLs/ACEs
- Kerberoasting
- AS-REP Roasting
- Abuse of DnsAdmins
- Password in object denoscription
- Custom objects with default password (Changeme123!)
- Password spraying
- DCSync
- Silver ticket
- Golden Ticket
- Pass-the-Hash
- Pass-the-Ticket
- SMB signing disabled
https://github.com/WazeHell/vulnerable-AD
#Ad
#Lab
@NetPentester
GitHub
GitHub - safebuffer/vulnerable-AD: Create a vulnerable active directory that's allowing you to test most of the active directory…
Create a vulnerable active directory that's allowing you to test most of the active directory attacks in a local lab - GitHub - safebuffer/vulnerable-AD: Create a vulnerable active directo...
Azure Active Directory
اطلاعات داخلی را در معرض نمایش قرار می دهد
https://www.secureworks.com/research/azure-active-directory-exposes-internal-information
#AD
#azure
@NetPentester
اطلاعات داخلی را در معرض نمایش قرار می دهد
https://www.secureworks.com/research/azure-active-directory-exposes-internal-information
#AD
#azure
@NetPentester
Sophos
Azure Active Directory Exposes Internal Information - Threat Analysis
A threat actor can gather a significant amount of OSINT from an Azure AD tenant. Microsoft addressed all but two of the issues CTU researchers identified..