😈 [ Cx01N_, Cx01N ]
Here is the material from #defcon29 in case anyone missed last years.
https://t.co/4lk4Y6UWXe
🔗 https://github.com/BC-SECURITY/Beginners-Guide-to-Obfuscation
🐥 [ tweet ][ quote ]
Here is the material from #defcon29 in case anyone missed last years.
https://t.co/4lk4Y6UWXe
🔗 https://github.com/BC-SECURITY/Beginners-Guide-to-Obfuscation
🐥 [ tweet ][ quote ]
👍1
😈 [ _wald0, Andy Robbins ]
Today is Friday, which means it's #BloodHoundBasics day.
BloodHound collects user logons in a somewhat non-intuitive way. In this video I try my best explain exactly how BloodHound's logon session collection works: https://t.co/4XQqJ0Zulq
🔗 https://www.youtube.com/watch?v=q86VgM2Tafc
🐥 [ tweet ]
Today is Friday, which means it's #BloodHoundBasics day.
BloodHound collects user logons in a somewhat non-intuitive way. In this video I try my best explain exactly how BloodHound's logon session collection works: https://t.co/4XQqJ0Zulq
🔗 https://www.youtube.com/watch?v=q86VgM2Tafc
🐥 [ tweet ]
🔥2
😈 [ exploitph, Charlie Clark ]
Been working on some new features for PowerView, it's still a work in progress but just pushed a few, cert auth for LDAPS and StartTLS for Get-DomainObject, Get-DomainUser, Get-DomainComputer and Set-DomainObject 1/2
https://t.co/H9rrPiTZeD
🔗 https://github.com/0xe7/PowerSploit/blob/master/Recon/PowerView.ps1
🐥 [ tweet ]
Been working on some new features for PowerView, it's still a work in progress but just pushed a few, cert auth for LDAPS and StartTLS for Get-DomainObject, Get-DomainUser, Get-DomainComputer and Set-DomainObject 1/2
https://t.co/H9rrPiTZeD
🔗 https://github.com/0xe7/PowerSploit/blob/master/Recon/PowerView.ps1
🐥 [ tweet ]
😈 [ _RastaMouse, Rasta Mouse ]
[BLOG]
GPO WMI filters - how they can screw you over, and some ways to deal with them.
https://t.co/9kBZQlYw7D
🔗 https://rastamouse.me/ous-and-gpos-and-wmi-filters-oh-my/
🐥 [ tweet ]
[BLOG]
GPO WMI filters - how they can screw you over, and some ways to deal with them.
https://t.co/9kBZQlYw7D
🔗 https://rastamouse.me/ous-and-gpos-and-wmi-filters-oh-my/
🐥 [ tweet ]
😈 [ OscarAkaElvis, Óscar Alfonso Díaz ]
New Evil-WinRM release (v3.4). Released for the @uad360 cyber security event. C'mon @msftsecurity how about a new Defender signature? Let's dance 😁
https://t.co/PEwvSTxt8p
Thanks @CyberVaca_ @_Laox @arale61
#evilwinrm #winrm #hacking #pentesting
🔗 https://github.com/Hackplayers/evil-winrm
🐥 [ tweet ]
New Evil-WinRM release (v3.4). Released for the @uad360 cyber security event. C'mon @msftsecurity how about a new Defender signature? Let's dance 😁
https://t.co/PEwvSTxt8p
Thanks @CyberVaca_ @_Laox @arale61
#evilwinrm #winrm #hacking #pentesting
🔗 https://github.com/Hackplayers/evil-winrm
🐥 [ tweet ]
👍2
😈 [ 0xdf_, 0xdf ]
Meta is a fun box from @hackthebox_eu centered around image processing. There's exiftool and ImageMagick exploits, and then abusing environment variables with sudo neofetch.
https://t.co/dnavhTIrwF
🔗 https://0xdf.gitlab.io/2022/06/11/htb-meta.html
🐥 [ tweet ]
Meta is a fun box from @hackthebox_eu centered around image processing. There's exiftool and ImageMagick exploits, and then abusing environment variables with sudo neofetch.
https://t.co/dnavhTIrwF
🔗 https://0xdf.gitlab.io/2022/06/11/htb-meta.html
🐥 [ tweet ]
🔥2👍1
😈 [ ShitSecure, S3cur3Th1sSh1t ]
Made a short Video regarding to usage && feature denoscription for my Packer. Mostly for my Sponsors but maybe others will also find some interesting things in it as inspiration:
https://t.co/MsJ1sP0ZPt
🔗 https://www.youtube.com/watch?v=UHaIgdzqHDA
🐥 [ tweet ]
Made a short Video regarding to usage && feature denoscription for my Packer. Mostly for my Sponsors but maybe others will also find some interesting things in it as inspiration:
https://t.co/MsJ1sP0ZPt
🔗 https://www.youtube.com/watch?v=UHaIgdzqHDA
🐥 [ tweet ]
👍1🔥1
😈 [ ReconOne_, ReconOne ]
Want to quickly find publicly exposed MySql backup files? Try this 👇
Credits: @_bughunter
#recontips #AttackSurface #bugbountytips #mysql #reconone
🐥 [ tweet ]
Want to quickly find publicly exposed MySql backup files? Try this 👇
Credits: @_bughunter
#recontips #AttackSurface #bugbountytips #mysql #reconone
🐥 [ tweet ]
👹 [ snovvcrash, sn🥶vvcr💥sh ]
[#Tooling ⚔️] 🧵 (1/6) A thread of integrating #shellcode #fluctuation technique into DInjector: https://t.co/4VLQkuXO4q
Main credits to @mariuszbit, @_RastaMouse and @ShitSecure for their great tools and blogs which I heavily relied on here.
#redteam #maldev
🔗 https://github.com/snovvcrash/DInjector/blob/0ed4182035f9dcd15cf987519e5f1320f669e962/DInjector/Modules/CurrentThread.cs#L233-L458
🐥 [ tweet ]
[#Tooling ⚔️] 🧵 (1/6) A thread of integrating #shellcode #fluctuation technique into DInjector: https://t.co/4VLQkuXO4q
Main credits to @mariuszbit, @_RastaMouse and @ShitSecure for their great tools and blogs which I heavily relied on here.
#redteam #maldev
🔗 https://github.com/snovvcrash/DInjector/blob/0ed4182035f9dcd15cf987519e5f1320f669e962/DInjector/Modules/CurrentThread.cs#L233-L458
🐥 [ tweet ]
🔥3
😈 [ DirectoryRanger, DirectoryRanger ]
SharpWSUS. CSharp tool for lateral movement through WSUS
https://t.co/0hDHe6ePZs
🔗 https://github.com/nettitude/SharpWSUS
🐥 [ tweet ]
SharpWSUS. CSharp tool for lateral movement through WSUS
https://t.co/0hDHe6ePZs
🔗 https://github.com/nettitude/SharpWSUS
🐥 [ tweet ]
👍1
😈 [ ORCA10K, ORCA ]
it's been a while since the last time I played with some c code, so I had to publish something:
https://t.co/LtYkuL2mtq
🔗 https://gitlab.com/ORCA666/kcthijacklib
🐥 [ tweet ]
it's been a while since the last time I played with some c code, so I had to publish something:
https://t.co/LtYkuL2mtq
🔗 https://gitlab.com/ORCA666/kcthijacklib
🐥 [ tweet ]
🔥1
😈 [ 0gtweet, Grzegorz Tworek ]
The only difference between DnsGetCacheDataTable() and DnsGetCacheDataTableEx() is the first one returns only 15000 entries, while the second one allows you to raise such limit to MAXDWORD by specifying 1 as a parameter.
I need to disappoint you if you expect any documentation 🙄
🐥 [ tweet ]
The only difference between DnsGetCacheDataTable() and DnsGetCacheDataTableEx() is the first one returns only 15000 entries, while the second one allows you to raise such limit to MAXDWORD by specifying 1 as a parameter.
I need to disappoint you if you expect any documentation 🙄
🐥 [ tweet ]
👍2
😈 [ DirectoryRanger, DirectoryRanger ]
From RPE to RCE - Workstation Takeover via RBCD and MR-RPC, by @gladiatx0r
https://t.co/k6JZznbLke
🔗 https://gist.github.com/gladiatx0r/1ffe59031d42c08603a3bde0ff678feb
🐥 [ tweet ]
From RPE to RCE - Workstation Takeover via RBCD and MR-RPC, by @gladiatx0r
https://t.co/k6JZznbLke
🔗 https://gist.github.com/gladiatx0r/1ffe59031d42c08603a3bde0ff678feb
🐥 [ tweet ]
👍1
😈 [ last0x00, last ]
I wrote a non technical post on my blog regarding cybersecurity, nihilistic behavior, and how to stay positive. Sometimes we need a reminder that, after all, things are not that bad.
https://t.co/OGl17xTwco
🔗 https://blog.notso.pro/2022-06-12-avoiding-cyber-nihilism/
🐥 [ tweet ]
I wrote a non technical post on my blog regarding cybersecurity, nihilistic behavior, and how to stay positive. Sometimes we need a reminder that, after all, things are not that bad.
https://t.co/OGl17xTwco
🔗 https://blog.notso.pro/2022-06-12-avoiding-cyber-nihilism/
🐥 [ tweet ]
🔥1
😈 [ NandanLohitaksh, Lohitaksh Nandan ]
Best ever Tools 🔧 for Bug Bounty Hunters...
→Amass
→Sublister
→Gauplus
→HTTPX
→Gf tool
→Kxss
→Sqlmap
→Commix
→Tplmap
→HYDRA
→John the ripper
→Burpsuite
→Arjun
→Paramspider
→NoSQLmap
→NMAP
→Nikto
→FFUF
→403-Bypass
→Gobuster
#bugbounty #cybersecurity
🐥 [ tweet ]
Best ever Tools 🔧 for Bug Bounty Hunters...
→Amass
→Sublister
→Gauplus
→HTTPX
→Gf tool
→Kxss
→Sqlmap
→Commix
→Tplmap
→HYDRA
→John the ripper
→Burpsuite
→Arjun
→Paramspider
→NoSQLmap
→NMAP
→Nikto
→FFUF
→403-Bypass
→Gobuster
#bugbounty #cybersecurity
🐥 [ tweet ]
👍2
😈 [ nas_bench, Nasreddine Bencherchali ]
In addition to the documented "-e/--exec" flag in #lolbas about the "wsl.exe" binary (https://t.co/OrgJ7c7o9N). We can also use the "--system" flag to run Linux (as root) /Windows commands.
wsl --system [Command]
🔗 https://lolbas-project.github.io/lolbas/OtherMSBinaries/Wsl/
🐥 [ tweet ]
In addition to the documented "-e/--exec" flag in #lolbas about the "wsl.exe" binary (https://t.co/OrgJ7c7o9N). We can also use the "--system" flag to run Linux (as root) /Windows commands.
wsl --system [Command]
🔗 https://lolbas-project.github.io/lolbas/OtherMSBinaries/Wsl/
🐥 [ tweet ]
😈 [ Flangvik, Melvin langvik ]
👀👀 @_RastaMouse https://t.co/QIeLHNngVz
🔗 https://training.zeropointsecurity.co.uk/courses/red-team-ops-II
🐥 [ tweet ]
👀👀 @_RastaMouse https://t.co/QIeLHNngVz
🔗 https://training.zeropointsecurity.co.uk/courses/red-team-ops-II
🐥 [ tweet ]
👍1
😈 [ reverseame, reverseame ]
The curious case of mavinject.exe https://t.co/UcUjZ2wsFR
🔗 https://fourcore.io/blogs/mavinject-curious-process-injection
🐥 [ tweet ]
The curious case of mavinject.exe https://t.co/UcUjZ2wsFR
🔗 https://fourcore.io/blogs/mavinject-curious-process-injection
🐥 [ tweet ]
👍1
😈 [ elkement, elkement ]
One more post about Microsoft's recent security updates - re changes to Kerberos and the new certificate extension containing the requester's SID: https://t.co/TbACZaFARl
🔗 https://elkement.blog/2022/06/13/defused-that-san-flag/
🐥 [ tweet ]
One more post about Microsoft's recent security updates - re changes to Kerberos and the new certificate extension containing the requester's SID: https://t.co/TbACZaFARl
🔗 https://elkement.blog/2022/06/13/defused-that-san-flag/
🐥 [ tweet ]
👍1
😈 [ ORCA10K, ORCA ]
just published "RelocAlloc", a poc to allocate memory for your shellcode, using .reloc section(s), avoiding VirtualAlloc and others
https://t.co/9UNT0aDnJJ
🔗 https://gitlab.com/ORCA666/relocalloc
🐥 [ tweet ]
just published "RelocAlloc", a poc to allocate memory for your shellcode, using .reloc section(s), avoiding VirtualAlloc and others
https://t.co/9UNT0aDnJJ
🔗 https://gitlab.com/ORCA666/relocalloc
🐥 [ tweet ]
👍1