InvisiblePersistence - Persisting in the Windows registry "invisibly"

2 votes and 1 comment so far on Reddit

Telewreck - A Burp extension to detect and exploit versions of Telerik Web UI vulnerable to CVE-2017-9248.

This blog contains write-ups of the things that I researched, learned, and wanted to share to others.

As a vulnerability analyst at the CERT Coordination Center, I am interested not only in software vulnerabilities themselves, but also exploits and exploit mitigations. Working in this field, it doesn't take too long to realize that there will never be...

4 votes and 0 comments so far on Reddit

Hello members of the InfoSec Community!

3 votes and 1 comment so far on Reddit

This meaty post covers the CoreDNS + Gravwell integration for DNS security auditing. Walk through using DNS threat lists to identify malicious activity and create an orchestration noscript to automatically perform the first few threat hunting steps. Gravwell…

31 votes and 1 comment so far on Reddit

Hi Guys,

TL;DR Summary Developed a malware sample that leverages Twitter direct messaging as a channel for command and control. Background Web Service Command and Control Have recently been structuring a lot of my penetration testing efforts around the MITRE ATT&CK…

Team Page

TL;DR An Office XML (.xml) document can call a remote XSL stylesheet over SMB.  If this occurs against an attacker controlled server, the net-NTLM authentication hash (challenge/response) of that u…

Contribute to Bashark development by creating an account on GitHub.

At work, most of our virtual machines run Linux. Being able to SSH into our servers in order to develop, automate, or troubleshoot…