A Deep Dive Into SoWaT: APT31’s Multifunctional Router Implant
https://imp0rtp3.wordpress.com/2021/11/25/sowat/
#APT31
#Router
#malware
@Netpentesters
https://imp0rtp3.wordpress.com/2021/11/25/sowat/
#APT31
#Router
#malware
@Netpentesters
Nmap noscript that searches for probable vulnerabilities based on services discovered in open ports
https://github.com/scmanjarrez/CVEScannerV2
#Nmap
#Script
#Port
#Vulnerability
@NetPentesters
https://github.com/scmanjarrez/CVEScannerV2
#Nmap
#Script
#Port
#Vulnerability
@NetPentesters
GitHub
GitHub - scmanjarrez/CVEScannerV2: Nmap noscript that scans for probable vulnerabilities based on services discovered in open ports.
Nmap noscript that scans for probable vulnerabilities based on services discovered in open ports. - GitHub - scmanjarrez/CVEScannerV2: Nmap noscript that scans for probable vulnerabilities based on se...
Proxy-Attackchain:
proxylogon, proxyshell, proxyoracle, proxytoken
full chain exploit tool
https://github.com/FDlucifer/Proxy-Attackchain
#tools
#proxy
@NetPentesters
proxylogon, proxyshell, proxyoracle, proxytoken
full chain exploit tool
https://github.com/FDlucifer/Proxy-Attackchain
#tools
#proxy
@NetPentesters
GitHub
GitHub - FDlucifer/Proxy-Attackchain: Proxylogon & Proxyshell & Proxyoracle & Proxytoken & All exchange server history vulns summarization…
Proxylogon & Proxyshell & Proxyoracle & Proxytoken & All exchange server history vulns summarization :) - FDlucifer/Proxy-Attackchain
Azure Privilege Escalation via Azure API Permissions Abuse
https://posts.specterops.io/azure-privilege-escalation-via-azure-api-permissions-abuse-74aee1006f48
#Azure
#privilege
#Api
#microsoft
@NetPentesters
https://posts.specterops.io/azure-privilege-escalation-via-azure-api-permissions-abuse-74aee1006f48
#Azure
#privilege
#Api
#microsoft
@NetPentesters
Analysis for CVE-2021-34535 -
RCE vulnerability in Remote Desktop Client
https://www.synack.com/blog/this-microsoft-windows-rce-vulnerability-gives-an-attacker-complete-control
#vulnerability
#RDP
#RCE
#Analysis
@NetPentesters
RCE vulnerability in Remote Desktop Client
https://www.synack.com/blog/this-microsoft-windows-rce-vulnerability-gives-an-attacker-complete-control
#vulnerability
#RDP
#RCE
#Analysis
@NetPentesters
Configurable backdoor to bypass antivirus
https://github.com/RoseSecurity/Anti-Virus-Evading-Payloads
#Bypass
#antivirus
#backdoor
@NetPentesters
https://github.com/RoseSecurity/Anti-Virus-Evading-Payloads
#Bypass
#antivirus
#backdoor
@NetPentesters
Airstrike - Automatically grab and crack WPA-2 handshakes with distributed client-server architecture
https://github.com/redcode-lab/AirStrike
#tools
#wpa
#airstrike
@NetPentesters
https://github.com/redcode-lab/AirStrike
#tools
#wpa
#airstrike
@NetPentesters
Cloud service provider security mistakes
https://github.com/SummitRoute/csp_security_mistakes
#Cloud
@NetPentesters
https://github.com/SummitRoute/csp_security_mistakes
#Cloud
@NetPentesters
GitHub
GitHub - SummitRoute/csp_security_mistakes: This repo has been replaced by https://www.cloudvulndb.org
This repo has been replaced by https://www.cloudvulndb.org - SummitRoute/csp_security_mistakes
MikroTik_vulns.pdf
555.4 KB
Most exploited vulnerabilities of MikroTik devices, 2021.
#Analytics
#Mikrotik
#vulnerability
@NetPentesters
#Analytics
#Mikrotik
#vulnerability
@NetPentesters
Microsoft and GitHub OAuth Implementation Vulnerabilities Lead to Redirection Attacks
https://www.proofpoint.com/us/blog/cloud-security/microsoft-and-github-oauth-implementation-vulnerabilities-lead-redirection
#microsoft
#vulnerability
@NetPentesters
https://www.proofpoint.com/us/blog/cloud-security/microsoft-and-github-oauth-implementation-vulnerabilities-lead-redirection
#microsoft
#vulnerability
@NetPentesters
CVE-2021-42287
Weaponisation - Active Directory
https://exploit.ph/cve-2021-42287-cve-2021-42278-weaponisation.html
#AD
#cve
@NetPentesters
Weaponisation - Active Directory
https://exploit.ph/cve-2021-42287-cve-2021-42278-weaponisation.html
#AD
#cve
@NetPentesters
Python implementation for CVE-2021-42278 (Active Directory Privilege Escalation)
https://github.com/ly4k/Pachine
#privilege
#CVE
#Python
#AD
@NetPentesters
https://github.com/ly4k/Pachine
#privilege
#CVE
#Python
#AD
@NetPentesters
Hypervisor compromises using Azure Run Command
https://www.mandiant.com/resources/azure-run-command-dummies
#Cloud
#Azure
@NetPentesters
https://www.mandiant.com/resources/azure-run-command-dummies
#Cloud
#Azure
@NetPentesters
Thirumalai_Khanna.pdf
3.6 MB
"Who Owns Your Hybrid Active Directory? Hunting for Adversary Techniques", 2021.
#cloud
#ad
@NetPentesters
#cloud
#ad
@NetPentesters
Active Directory Lateral Movement
https://research.splunk.com/stories/active_directory_lateral_movement
#Blue_Team
#AD
@NetPentesters
https://research.splunk.com/stories/active_directory_lateral_movement
#Blue_Team
#AD
@NetPentesters
Splunk Security Content
Analytics Story: Active Directory Lateral Movement
Date: 2021-12-09 ID: 399d65dc-1f08-499b-a259-aad9051f38ad Author: David Dorsey, Mauricio Velazco Splunk Product: Splunk Enterprise Security Denoscription Detect and investigate tactics, techniques, and procedures around how attackers move laterally within an…
Intruding 5G core networks from outside and inside
https://penthertz.com/blog/Intruding-5G-core-networks-from-outside-and_inside.html
#5G
#Network
@NetPentesters
https://penthertz.com/blog/Intruding-5G-core-networks-from-outside-and_inside.html
#5G
#Network
@NetPentesters
Powershell tool to automate Active Directory enumeration
https://github.com/61106960/adPEAS#simple-usage-with-generic-program-parameters
#PowerShell
#Redteam
#Ad
@NetPentesters
https://github.com/61106960/adPEAS#simple-usage-with-generic-program-parameters
#PowerShell
#Redteam
#Ad
@NetPentesters
GitHub
GitHub - 61106960/adPEAS: Powershell tool to automate Active Directory enumeration.
Powershell tool to automate Active Directory enumeration. - 61106960/adPEAS