OSINT for Windows
http://bit.ly/2HYKiUc
Submitted April 06, 2019 at 02:29AM by endless
via reddit http://bit.ly/2WJBXXK
http://bit.ly/2HYKiUc
Submitted April 06, 2019 at 02:29AM by endless
via reddit http://bit.ly/2WJBXXK
GitHub
visualbasic6/chatter
internet monitoring osint tool for windows. Contribute to visualbasic6/chatter development by creating an account on GitHub.
Microsoft discovers Huawei's PC drivers are using an unnecessary watchdog, apparently structured to provide privilege escalations.
http://bit.ly/2HZFVIy
Submitted April 06, 2019 at 10:35AM by alirobe
via reddit http://bit.ly/2G25arq
http://bit.ly/2HZFVIy
Submitted April 06, 2019 at 10:35AM by alirobe
via reddit http://bit.ly/2G25arq
Microsoft Security
From alert to driver vulnerability: Microsoft Defender ATP investigation unearths privilege escalation flaw - Microsoft Security
Our discovery of two privilege escalation vulnerabilities in a driver highlights the strength of Microsoft Defender ATP’s sensors. These sensors expose anomalous behavior and give SecOps personnel the intelligence and tools to investigate threats, as we did.
From alert to driver vulnerability: Microsoft Defender ATP investigation unearths privilege escalation flaw - Microsoft Security
http://bit.ly/2HZFVIy
Submitted April 06, 2019 at 02:46PM by alirobe
via reddit http://bit.ly/2WJsNuq
http://bit.ly/2HZFVIy
Submitted April 06, 2019 at 02:46PM by alirobe
via reddit http://bit.ly/2WJsNuq
Microsoft Security
From alert to driver vulnerability: Microsoft Defender ATP investigation unearths privilege escalation flaw - Microsoft Security
Our discovery of two privilege escalation vulnerabilities in a driver highlights the strength of Microsoft Defender ATP’s sensors. These sensors expose anomalous behavior and give SecOps personnel the intelligence and tools to investigate threats, as we did.
Fracker – PHP function tracker
http://bit.ly/2D0QNSu
Submitted April 06, 2019 at 06:16PM by cyrus-and
via reddit http://bit.ly/2ImhTGW
http://bit.ly/2D0QNSu
Submitted April 06, 2019 at 06:16PM by cyrus-and
via reddit http://bit.ly/2ImhTGW
GitHub
cyrus-and/fracker
PHP function tracker. Contribute to cyrus-and/fracker development by creating an account on GitHub.
Hack The Box - Vault Write-up by 0xRick
http://bit.ly/2OV3Yca
Submitted April 06, 2019 at 08:34PM by Ahm3d_H3sham
via reddit http://bit.ly/2YVywzp
http://bit.ly/2OV3Yca
Submitted April 06, 2019 at 08:34PM by Ahm3d_H3sham
via reddit http://bit.ly/2YVywzp
0xRick Owned Root !
Hack The Box - Vault
Quick Summary Hey guys today Vault retired and here is my write-up about it. Vault was a fun box and it’s absolutely one of my favorites. Starting with an insecure file upload functionality to escaping from a host to another and getting a reverse shell with…
Multi-threaded Port Scanner Implemented in Python
http://bit.ly/2BBa2RO
Submitted April 06, 2019 at 07:48PM by woahdotcom
via reddit http://bit.ly/2VrD2n3
http://bit.ly/2BBa2RO
Submitted April 06, 2019 at 07:48PM by woahdotcom
via reddit http://bit.ly/2VrD2n3
zeroequalsfalse.press
How to Optimise Port-Scanning with a Multi-threaded approach
System Admins, here is a way to optimise your port scanning.
SharpExec - Lateral Movement With Your Favorite .NET Bling
http://bit.ly/2UwDeEk
Submitted April 07, 2019 at 10:33AM by fuckup1337
via reddit http://bit.ly/2KilUPs
http://bit.ly/2UwDeEk
Submitted April 07, 2019 at 10:33AM by fuckup1337
via reddit http://bit.ly/2KilUPs
Redxorblue
SharpExec - Lateral Movement With Your Favorite .NET Bling
TL;DR: SharpExec is an offensive security C# tool designed to aid with lateral movement. While the techniques used are not groundbreaking ...
Linux Sockets and Python
http://bit.ly/2G3Oobs
Submitted April 07, 2019 at 08:30AM by lawandordercandidate
via reddit http://bit.ly/2UnqFfa
http://bit.ly/2G3Oobs
Submitted April 07, 2019 at 08:30AM by lawandordercandidate
via reddit http://bit.ly/2UnqFfa
menz-o-matic.com
Linux Sockets and Python
Discovering New And Open-Source Software.
[Github] Fast Multi-threaded FTP Scanner
http://bit.ly/2D3Pdz4
Submitted April 07, 2019 at 03:30PM by Quick_Stick
via reddit http://bit.ly/2VoXVzi
http://bit.ly/2D3Pdz4
Submitted April 07, 2019 at 03:30PM by Quick_Stick
via reddit http://bit.ly/2VoXVzi
Gist
Fast Multi-threaded FTP Scanner
Fast Multi-threaded FTP Scanner. GitHub Gist: instantly share code, notes, and snippets.
Tricks used in Anubis Malware
http://bit.ly/2KfNEEu
Submitted April 07, 2019 at 08:13PM by eybisi_
via reddit http://bit.ly/2UEXmnG
http://bit.ly/2KfNEEu
Submitted April 07, 2019 at 08:13PM by eybisi_
via reddit http://bit.ly/2UEXmnG
Ahmet Bilal Can
Mobile Malware Analysis : Tricks used in Anubis
Anubis Anubis is my first case of complicated android malware and taught me so much about android malware. I want to share these learnings in this post. Anubis is almost one year old but its impact is
On Eggs and Egg-hunters (Linux/x64) - @syscall59
http://bit.ly/2I5Q5Hy
Submitted April 07, 2019 at 09:16PM by h41zum
via reddit http://bit.ly/2D1YyaV
http://bit.ly/2I5Q5Hy
Submitted April 07, 2019 at 09:16PM by h41zum
via reddit http://bit.ly/2D1YyaV
Medium
On Eggs and Egg-hunters (Linux/x64)
Writing and testing of an egg-hunter shellcode for Linux/x64
GitHub - PowerShell based Active Directory Honey User Account Management with Universal Dashboards
http://bit.ly/2G2pR5E
Submitted April 07, 2019 at 09:52PM by l33t_d0nut
via reddit http://bit.ly/2UnH6rK
http://bit.ly/2G2pR5E
Submitted April 07, 2019 at 09:52PM by l33t_d0nut
via reddit http://bit.ly/2UnH6rK
GitHub
leeberg/BlueHive
PowerShell based Active Directory Honey User Account Management with Universal Dashboards - leeberg/BlueHive
My first POC: Gaining root access to a kubernetes node with a "bad" container. Comments welcome
http://bit.ly/2VnvDFb
Submitted April 07, 2019 at 09:49PM by audscias
via reddit http://bit.ly/2G5F07g
http://bit.ly/2VnvDFb
Submitted April 07, 2019 at 09:49PM by audscias
via reddit http://bit.ly/2G5F07g
GitHub
jmg87/redteam-gkpown
Reverse shell container for k8s deployments. Contribute to jmg87/redteam-gkpown development by creating an account on GitHub.
Funnel: a lightweight yara-based feed scraper
http://bit.ly/2IhZUlh
Submitted April 08, 2019 at 11:34AM by amusciano
via reddit http://bit.ly/2CX8bYj
http://bit.ly/2IhZUlh
Submitted April 08, 2019 at 11:34AM by amusciano
via reddit http://bit.ly/2CX8bYj
GitHub
needmorecowbell/Funnel
Funnel is a lightweight yara-based feed scraper. Contribute to needmorecowbell/Funnel development by creating an account on GitHub.
Computer Security Materials
http://bit.ly/2X1VCDc
Submitted April 08, 2019 at 09:28AM by gabrielfelippe90
via reddit http://bit.ly/2Im24QH
http://bit.ly/2X1VCDc
Submitted April 08, 2019 at 09:28AM by gabrielfelippe90
via reddit http://bit.ly/2Im24QH
GitHub
the-akira/Computer_Science_Web_Resources
A curated list of important computer science multi-languages resources found on the Web. - the-akira/Computer_Science_Web_Resources
EXPLOIT for CVE-2019-0211 Apache Root Privilege Escalation
http://bit.ly/2FWwlCR
Submitted April 08, 2019 at 03:49PM by cfambionics
via reddit http://bit.ly/2Umkk3D
http://bit.ly/2FWwlCR
Submitted April 08, 2019 at 03:49PM by cfambionics
via reddit http://bit.ly/2Umkk3D
GitHub
cfreal/exploits
Some of my exploits. Contribute to cfreal/exploits development by creating an account on GitHub.
Why We Use Crypto When Generating Coupon Codes At Scale
http://bit.ly/2KhNP1T
Submitted April 08, 2019 at 10:09PM by honoredb
via reddit http://bit.ly/2Ik8z6x
http://bit.ly/2KhNP1T
Submitted April 08, 2019 at 10:09PM by honoredb
via reddit http://bit.ly/2Ik8z6x
Grubhub Bytes
Why Grubhub uses crypto when generating coupon codes at scale
There’s usually no need to get fancy when implementing discount codes, but Grubhub’s scale has pushed us to go beyond random strings.
BSidesSF - Getting shells from Javanoscript: How Dangerous can clicking a Link be in 2019?
https://www.youtube.com/watch?v=HfpnloZM61I
Submitted April 08, 2019 at 09:11PM by wifihack
via reddit http://bit.ly/2I7XJkW
https://www.youtube.com/watch?v=HfpnloZM61I
Submitted April 08, 2019 at 09:11PM by wifihack
via reddit http://bit.ly/2I7XJkW
YouTube
BSidesSF 2019 - Offensive Javanoscript Techniques for Red Teamers (Dylan Ayrey • Christian Frichot)
AppSec is often very heavily focused on pre-exploitation. Frameworks like BeEF break this norm a little and can be used as tools to move laterally from the browser, to implant malware on adjacent machines. Unfortunately, performing network reconnaissance…
Scripts to execute enumeration via LFI
http://bit.ly/2VzSGNa
Submitted April 09, 2019 at 03:47AM by mthbernardes
via reddit http://bit.ly/2D4mKcK
http://bit.ly/2VzSGNa
Submitted April 09, 2019 at 03:47AM by mthbernardes
via reddit http://bit.ly/2D4mKcK
GitHub
mthbernardes/LFI-Enum
Scripts to execute enumeration via LFI. Contribute to mthbernardes/LFI-Enum development by creating an account on GitHub.
[oss-security] DLL injection in Go < 1.12.2 [CVE-2019-9634]
http://bit.ly/2KmImqF
Submitted April 09, 2019 at 04:26PM by the_gnarts
via reddit http://bit.ly/2WXwRYi
http://bit.ly/2KmImqF
Submitted April 09, 2019 at 04:26PM by the_gnarts
via reddit http://bit.ly/2WXwRYi
reddit
r/netsec - [oss-security] DLL injection in Go < 1.12.2 [CVE-2019-9634]
0 votes and 0 comments so far on Reddit
Intro into abusing and identifying WMI Event Subnoscriptions for persistence
http://bit.ly/2Z0oAVe
Submitted April 09, 2019 at 04:44PM by Griffnut
via reddit http://bit.ly/2U7Yfki
http://bit.ly/2Z0oAVe
Submitted April 09, 2019 at 04:44PM by Griffnut
via reddit http://bit.ly/2U7Yfki
In.security Cyber Security Technical Services & Training
An intro into abusing and identifying WMI Event Subnoscriptions for persistence | In.security Cyber Security Technical Services &…