NEW BOT Телеграм, страница

Exploit Development: No Code Execution? No Problem! Living The Age of VBS, HVCI, and Kernel CFG

🔗 Link

#binary
#exploitation
#windows
#hvci
———
🆔 @Infosec_Fortress

👍3🤣1

2.2K views13:49

Source Byte

NanoDump: How I Reinvented SafetyKatz to Dump LSASS with NanoDump

https://xakep.ru/2024/11/13/lsass-nanodump/

👍3

2.67K views13:58

Source Byte

WTSRM-SLIDES.pdf

3.6 MB

WTSRM-SLIDES.pdf

👍2

2.15K views16:48

Source Byte

WTSRM-SLIDES.pdf

WTSRM - Writing Tiny Small Reliable Malware demo repository for my corresponding talk.

Unhooks all Windows Dlls with \KnownDlls\
No CRT dependencies
Small size
Low entropy
Random string encryption key (thus no plaintext strings)
API hashing
Hook detection
Walks around hooks for initial unhooking on ntdll

https://github.com/rad9800/WTSRM

👍3👀2

2.71K viewsedited 16:49

Source Byte

Forwarded from Хтонь

❤27🤣7👍2😁1👾1

2.75K viewsAnastasia 🐞, 16:03

Source Byte

Photo

cute 🥰

2.72K viewsAnastasia 🐞, 16:04

Source Byte

Forwarded from Infosec Fortress

Happy New Year 2025! Wishing you a year filled with joy, health, and success. 🎉🎄

🔥10🍾2

2.48K viewsAnastasia 🐞, 07:33

Source Byte

www.securitylab.ru

Новая особенность «Restricted Admin» RDP 8.1 позволяет осуществлять хэш-аутентификацию

Данная статья описывает новшество RDP 8.1 – «Restricted Admin», его потенциальные выгоды и угрозы (аутентификация через передачу хэша) с точки зрения безопасности. Мы вкратце вспомним, что представляют собой атаки через передачу хэша, а также продемонстрируем…

https://www.securitylab.ru/analytics/450325.php

3.06K views19:39

Source Byte

Forwarded from /mdre/

✨

Windows Authentication - Credential Providers - Part 1.
A primer on writing a credential provider in Windows.

✨

Windows Authentication - Credential Providers - Part 2.
Sequence of calls to a credential provider in Windows.

Please open Telegram to view this post

VIEW IN TELEGRAM

🤓5❤2👍2

3.35K viewsAnastasia 🐞, 07:49

Source Byte

Forwarded from CyberSecurity Shield (Pouyan Zamani)

SANS SEC 450-Full Course-2023 (1).pdf

74.1 MB

#SEC450 #FULL_COURSE
#PERSIAN

❤2👍2🔥2🗿2

3.55K views14:21

Source Byte

Jonathan Reiter is the Authors of sans SEC670 (Red Teaming Tools - Developing Windows Implants, Shellcode, Command and Control) so don't miss this one ! https://www.sans.org/webcasts/intro-c-windows-devs/ --> LINK @islemolecule_SOURCE

Mastering PE Parsing with WinDbg
Speaker: Jonathan Reiter , 13 Jan

Register :
https://www.sans.org/webcasts/mastering-pe-parsing-windbg/

👍3❤1

3.04K viewsAnastasia 🐞, 06:44

Source Byte

SANS_Cheat-Sheet_windbg-pe-parsing.pdf

632.2 KB

👍4

3.16K viewsAnastasia 🐞, 06:44

Source Byte

0:15

This media is not supported in your browser

VIEW IN TELEGRAM

😁13👾4🔥3🤡2👍1

3.23K viewsAnastasia 🐞, 07:19

Source Byte

Pure PowerShell HTTP Server (no dependencies)
Invoke-HttpServer

👍4

2.93K viewsedited 19:14

Source Byte

PowerShellHttpServer.psm1

6.3 KB

With thanks to ZH54321

👍4

3.01K viewsedited 19:15

Source Byte

https://0xpat.github.io/Vuln_discovery_Java/
0xpat 👌🏽

0xpat.github.io

Vulnerability discovery in Java applications

Intro
Something different this time. This post is based on a speech I’m giving on June 24th at Ya!vaConf in Poland. So, we will analyze WebGoat application which is written in Java to discover some vulnerabilities in the source code and then write an exploit…

2.71K views13:03

Source Byte

Database Viewer and Exporter

This is a Python tool for viewing and exporting data from various databases and JSON files. It supports SQLite, MySQL, PostgreSQL, MSSQL, and JSON files. Users can also export query results in CSV or JSON formats. The tool is designed to handle encrypted data using multiple encryption algorithms and can decrypt data that has been encrypted with a combination of algorithms.

https://github.com/MrAmirRezaie/readDatabase

2.54K viewsedited 10:13

About

Blog

Apps

Platform