SMTP Smuggling - Spoofing E-Mails Worldwide


https://sec-consult.com/blog/detail/smtp-smuggling-spoofing-e-mails-worldwide/

#smtp , #spoofing , #smuggling

Cobalt Strike Aggressor Callbacks

https://rastamouse.me/cobalt-strike-aggressor-callbacks/

#Cobalt_Strike ,

Windows CLFS and five exploits used by ransomware operators

https://securelist.com/windows-clfs-exploits-ransomware/111560/

#windows_internls , #CLFS

Name: Shellcoder's Handbook
Requirements: C, C++, Assembly
Level: Basics to Intermediate
Authors: Chris Anley, John Heasman, Felix "FX" Lindner, Gerardo Richarte

Chapters:
1- Before You Begin
2- Stack Overflows
3- Shellcode
4- Introduction to Format String Bugs
5- Introduction to Heap Overflows
6- The Wild World of Windows
7- Windows Shellcode
8- Windows Overflows
9- Overcoming Filters
10- Introduction to Solaris Exploitation
11- Advanced Solaris Exploitation
12- OS X Shellcode
13- Cisco IOS Exploitation
14- Protection Mechanisms
15- Establishing a Working Environment
16- Fault Injection
17- The Art of Fuzzing
18- Source Code Auditing
19- Instrumented Investigation: A Manual Approach
20- Tracing for Vulnerabilities
21- Binary Auditing
22- Alternative Payload Strategies
23- Writing Exploits that Work in the Wild
24- Attacking Database Software
25- Unix Kernel Overflows
26- Exploiting Unix Kernel Vulnerabilities
27- Hacking the Windows Kernel

#binary #exploitation #book #resource

Name: Portable Format Specification (ELF32)
Requirements: Compiling Steps, C Programming
Level: Intermediate
Author: Tools Interface Standards (TIS)

Chapters:

1- Object Files
1- Introduction
2- ELF Header
3- Sections
4- String Table
5- Symbol Table
6- Relocation

2- Program Loading and Dynamic Linking
1- Introduction
2- Program Header
3- Program Loading
4- Dynamic Linking

3- C Library
1- C Library

#elf #reverse_engineering #binary #paper #resource

Name: Portable Format Specification (PE/EXE)
Requirements: Compiling Steps, C Programming
Level: Intermediate
Author: Tools Interface Standards (TIS)

Chapters:

1 - Overview
2 - PE Header
3 - Object Table
4 - Image Pages
5 - Exports
6 - Imports
7 - Thread Local Storage
8 - Resources
9 - Fixup Table
10 - Debug Information

#pe #exe #reverse_engineering #binary #paper #resource

Interesting writeup on how to increase the chances to hit a race condition window in Linux kernel
Credits Google Project Zero

googleprojectzero.blogspot.c…

#linux , #race_condition , #white_paper

let him cook 😁

#meme

🔴 گزارش شرکت امن پرداز، در خصوص کشف اولین روت کیت در فریمورهای ILO سرورهای HP در شبکه ی ایران

🆔 @onhex_ir
➡️ ALL Link

Take the lights-out Implant.ARM.iLOBleed.a

The first rootkit discovered infecting HP iLO firmware


English Version

*from vx-underground *

How to Write Shellcode for Shellcode Injection and Simplify Assembly Code Development

https://medium.com/@muchiemma/how-to-write-shellcode-for-shellcode-injection-and-simplify-assembly-code-development-703c3f214c46

#malware_dev #shellcode

Shellcoding for Linux and Windows Tutorial

https://www.vividmachines.com/shellcode/shellcode.html

manual-shellcode.pdf
#shellcode

Basics of Windows shellcode writing

https://idafchev.github.io/exploit/2017/09/26/writing_windows_shellcode.html

#shellcode

Writing shellcode for Windows in assembler

https://habr.com/en/articles/522966/
#shellcode

The path from a C project and assembler to shellcode

https://www.orderofsixangles.com/translations/2021/06/12/shellcoding.html

#shellcode

New PoolParty Process Injection Techniques Outsmart Top EDR Solutions
thehackernews.com/2023/12/ne…

#EDR , #process_injection