Hack with Github: Hacking Lists Index
http://ift.tt/2frLQHm
Submitted August 07, 2017 at 06:41AM by mathmare
via reddit http://ift.tt/2vDIUj4
http://ift.tt/2frLQHm
Submitted August 07, 2017 at 06:41AM by mathmare
via reddit http://ift.tt/2vDIUj4
GitHub
Hack-with-Github/Awesome-Hacking
Awesome-Hacking - A collection of various awesome lists for hackers, pentesters and security researchers
WSH Injection: A Case Study
http://ift.tt/2v0u59u
Submitted August 07, 2017 at 04:51PM by maxxori
via reddit http://ift.tt/2vHub7z
http://ift.tt/2v0u59u
Submitted August 07, 2017 at 04:51PM by maxxori
via reddit http://ift.tt/2vHub7z
Posts By SpecterOps Team Members
WSH Injection: A Case Study
At BSides Nashville 2017, Casey Smith (@SubTee) and I gave a talk noscriptd Windows Operating System Archaeology. At this talk, we released a…
New Variants of Agent.BTZ Found: The Threat That Hit The Pentagon Still Evolving Part 1/2
http://ift.tt/2vFjiCs
Submitted August 07, 2017 at 06:02PM by 0xbaadf00dsec
via reddit http://ift.tt/2uitiCc
http://ift.tt/2vFjiCs
Submitted August 07, 2017 at 06:02PM by 0xbaadf00dsec
via reddit http://ift.tt/2uitiCc
reddit
New Variants of Agent.BTZ Found: The Threat That Hit... • r/netsec
6 points and 0 comments so far on reddit
Riscure HackMe 3 Hardware CTF
http://ift.tt/2toOdmt
Submitted August 07, 2017 at 05:12PM by alegen
via reddit http://ift.tt/2fma1c2
http://ift.tt/2toOdmt
Submitted August 07, 2017 at 05:12PM by alegen
via reddit http://ift.tt/2fma1c2
Riscure
News - RHme3
Welcome to RHme3, the world’s first automotive CTF
Abusing GDI objects for ring0 primitives revolution
http://ift.tt/2vV7bPo
Submitted August 07, 2017 at 05:06PM by maxxori
via reddit http://ift.tt/2hBY9Ue
http://ift.tt/2vV7bPo
Submitted August 07, 2017 at 05:06PM by maxxori
via reddit http://ift.tt/2hBY9Ue
Sensepost
SensePost | Abusing gdi objects for ring0 primitives revolution
Leaders in Information Security
Horus Scenario – Exploiting a weak spot in the power grid
http://ift.tt/2u7GWDP
Submitted August 07, 2017 at 05:00PM by campuscodi
via reddit http://ift.tt/2flt5r8
http://ift.tt/2u7GWDP
Submitted August 07, 2017 at 05:00PM by campuscodi
via reddit http://ift.tt/2flt5r8
reddit
Horus Scenario – Exploiting a weak spot in the power grid • r/netsec
1 points and 0 comments so far on reddit
Shellcode: Windows API hashing with block ciphers (Maru Hash)
http://ift.tt/2va62VJ
Submitted August 07, 2017 at 09:52PM by maxxori
via reddit http://ift.tt/2vcaZx4
http://ift.tt/2va62VJ
Submitted August 07, 2017 at 09:52PM by maxxori
via reddit http://ift.tt/2vcaZx4
modexp
Shellcode: Windows API hashing with block ciphers ( Maru Hash )
Introduction String/Pattern Matching Algorithms are by far the most popular and easy way to detect a shellcode. The principle is simple: all codes have unique characteristics that can be used as si…
Week of Evading Microsoft ATA - Announcement and Day 1
http://ift.tt/2wAR1Kd
Submitted August 07, 2017 at 09:14PM by SamratAsh0k
via reddit http://ift.tt/2uhJPSF
http://ift.tt/2wAR1Kd
Submitted August 07, 2017 at 09:14PM by SamratAsh0k
via reddit http://ift.tt/2uhJPSF
Labofapenetrationtester
Week of Evading Microsoft ATA - Announcement and Day 1
Home of Nikhil SamratAshok Mittal. Posts about Pen Testing.
A Burp Suite Automation Tool with Slack Integration
http://ift.tt/2uhtptl
Submitted August 07, 2017 at 08:36PM by netw0rm
via reddit http://ift.tt/2uiI8Z5
http://ift.tt/2uhtptl
Submitted August 07, 2017 at 08:36PM by netw0rm
via reddit http://ift.tt/2uiI8Z5
GitHub
0x4D31/burpa
burpa - A Burp Suite Automation Tool with Slack Integration
Dridex AtomBombing in Detail
http://ift.tt/2vx7fHA
Submitted August 07, 2017 at 10:08PM by maxxori
via reddit http://ift.tt/2ui0l4V
http://ift.tt/2vx7fHA
Submitted August 07, 2017 at 10:08PM by maxxori
via reddit http://ift.tt/2ui0l4V
Logdown
Dridex AtomBombing in detail « reversingminds's Blog
Dridex has evolved, and now Dridex V4 uses Atom Bombing to perform process injection.
This metho...
This metho...
A public default on Rsync exposed sensitive electrical information and inspector data.
http://ift.tt/2vf2Oi1
Submitted August 08, 2017 at 02:03AM by laurasmith909
via reddit http://ift.tt/2vfGipn
http://ift.tt/2vf2Oi1
Submitted August 08, 2017 at 02:03AM by laurasmith909
via reddit http://ift.tt/2vfGipn
Upguard
Blackout: Engineering Firm Exposes Critical Infrastructure Data
An unprotected backup at a Texas engineering firm exposes critical infrastructure data and information on sensitive clients serving the state.
We wrote an intro to AI/ML for Security Pros and aren't selling it, so here it is for free
http://ift.tt/2uBtWWv
Submitted August 08, 2017 at 10:53AM by bwall9809
via reddit http://ift.tt/2hEB4jH
http://ift.tt/2uBtWWv
Submitted August 08, 2017 at 10:53AM by bwall9809
via reddit http://ift.tt/2hEB4jH
Creating Real Looking User Accounts in AD Lab (by DarkOperator)
http://ift.tt/2vfkBHA
Submitted August 08, 2017 at 03:17PM by BaconZombie
via reddit http://ift.tt/2ulaPVv
http://ift.tt/2vfkBHA
Submitted August 08, 2017 at 03:17PM by BaconZombie
via reddit http://ift.tt/2ulaPVv
Shell is Only the Beginning
Creating Real Looking User Accounts in AD Lab
As I write my own tools for IR Hunting and Post-Expoitation I like to have
a large realistic set of AD accounts and also accounts with accentuated and
not english characters to make sure my tools will work in large
environments and also simulate multiple…
a large realistic set of AD accounts and also accounts with accentuated and
not english characters to make sure my tools will work in large
environments and also simulate multiple…
Smuggling HTA files in Internet Explorer/Edge
http://ift.tt/2ukhbQV
Submitted August 08, 2017 at 03:50PM by digicat
via reddit http://ift.tt/2vfR7cB
http://ift.tt/2ukhbQV
Submitted August 08, 2017 at 03:50PM by digicat
via reddit http://ift.tt/2vfR7cB
reddit
Smuggling HTA files in Internet Explorer/Edge • r/netsec
1 points and 0 comments so far on reddit
A New Nmap Cheat Sheet
http://ift.tt/2fq3vB5
Submitted August 08, 2017 at 06:30PM by GoldFishGenocide
via reddit http://ift.tt/2fpkVOr
http://ift.tt/2fq3vB5
Submitted August 08, 2017 at 06:30PM by GoldFishGenocide
via reddit http://ift.tt/2fpkVOr
Station X
Nmap Cheat Sheet
Target Specification Switch Example Denoscription nmap 192.168.1.1 Scan a single IP nmap 192.168.1.1 192.168.2.1 Scan specific IPs nmap 192.168.1.1-254 Scan a range nmap scanme.nmap.org Scan a domain nmap 192.168.1.0/24 Scan using CIDR notation -iL nmap -iL…
F-Secure Anti-Virus: Arbitrary Free Vulnerability via TNEF
http://ift.tt/2ulFou9
Submitted August 08, 2017 at 06:17PM by landave
via reddit http://ift.tt/2ukOcfT
http://ift.tt/2ulFou9
Submitted August 08, 2017 at 06:17PM by landave
via reddit http://ift.tt/2ukOcfT
landave's blog
F-Secure Anti-Virus: Arbitrary Free Vulnerability via TNEF
Blog about anti-virus software and its issues.
Hunting for Malicious npm Packages
http://ift.tt/2ulbS7S
Submitted August 08, 2017 at 06:04PM by jwcrux
via reddit http://ift.tt/2vAsY1q
http://ift.tt/2ulbS7S
Submitted August 08, 2017 at 06:04PM by jwcrux
via reddit http://ift.tt/2vAsY1q
The Duo Security Bulletin
Hunting Malicious npm Packages
Duo Labs analyzes npm packages and how attackers can use malicious packages to gain access to and control over systems.
Week of Evading Microsoft ATA - Day 2 - OverPTH and Golden ticket
http://ift.tt/2viwR8C
Submitted August 08, 2017 at 09:12PM by SamratAsh0k
via reddit http://ift.tt/2vgJiU1
http://ift.tt/2viwR8C
Submitted August 08, 2017 at 09:12PM by SamratAsh0k
via reddit http://ift.tt/2vgJiU1
Labofapenetrationtester
Week of Evading Microsoft ATA - Day 2
Home of Nikhil SamratAshok Mittal. Posts about Pen Testing.
Windows Exploitation Tricks: Arbitrary Directory Creation to Arbitrary File Read
http://ift.tt/2umrKak
Submitted August 08, 2017 at 10:03PM by Extremite
via reddit http://ift.tt/2umqOyu
http://ift.tt/2umrKak
Submitted August 08, 2017 at 10:03PM by Extremite
via reddit http://ift.tt/2umqOyu
googleprojectzero.blogspot.co.uk
Windows Exploitation Tricks: Arbitrary Directory Creation to Arbitrary File Read
Posted by James Forshaw, Project Zero For the past couple of months I’ve been presenting my “Introduction to Windows Logical Privilege ...
Identity and authentication are becoming synonymous in infosec and people on blockchain are breaking new ground
http://ift.tt/2fbOXoA
Submitted August 08, 2017 at 11:03PM by Ricmerrifield
via reddit http://ift.tt/2umvV5O
http://ift.tt/2fbOXoA
Submitted August 08, 2017 at 11:03PM by Ricmerrifield
via reddit http://ift.tt/2umvV5O
Ric Merrifield
Identity on the blockchain - big companies enter the conversation - Ric Merrifield
http://id2020.org With companies already spending tens of billions of dollars authenticating identities for everything from bank transactions to car rentals and peer-to-peer boat sales – off chain, it’s no surprise big companies are seeing the enormity of…
New RCE in Windows Search
http://ift.tt/2vLXOV8
Submitted August 09, 2017 at 01:41AM by mave_of_wutilation
via reddit http://ift.tt/2uDL8KW
http://ift.tt/2vLXOV8
Submitted August 09, 2017 at 01:41AM by mave_of_wutilation
via reddit http://ift.tt/2uDL8KW
Microsoft
{{windowTitle}}
Security guidance articles