Rust for n00bs. Free price.

This course provides an overview of the Rust syntax and teaches the basics of reading and writing Rust code. It assumes no prior knowledge of Rust and covers everything you need to get started with your learning journey:

— https://training.zeropointsecurity.co.uk/courses/rust-for-n00bs

Установка Rust в macOS + Fish Shell

— https://sys-adm.in/systadm/1001-ustanovka-rust-v-macos-fish-shell.html

Nmap Cheat Sheet 2023

https://www.codelivly.com/nmap-cheat-sheet/

CVE-2023-21768 Local Privilege Escalation POC

For demonstration purposes only. Complete exploit works on vulnerable Windows 11 22H2 systems. Write primitive works on all vulnerable systems:

https://github.com/chompie1337/Windows_LPE_AFD_CVE-2023-21768

BlueHat 2023 security conference video

from Microsoft Security Response Center (MSRC)

— https://www.youtube.com/playlist?list=PLXkmvDo4MfusWp9f7IHT9xAPCkN2ZSm2L

GOAD (Game Of Active Directory) - version 2

GOAD is a pentest active directory LAB project. The purpose of this lab is to give pentesters a vulnerable Active directory environment ready to use to practice usual attack techniques:

-- https://github.com/Orange-Cyberdefense/GOAD

Mini Robot Enters Blood Vessels

Researchers demonstrate proof of concept in a pig’s artery:

— https://spectrum.ieee.org/mini-robot-surgeon

— https://www.vidarholen.net/contents/wordcount/

Active Directory Cheatsheet with code examples

- internal audit
- port forwarding
- bypass EP
- enumeration
- and etc…

— https://hideandsec.sh/books/cheatsheets-82c/page/active-directory

Debugging D-Link: Emulating firmware and hacking hardware

— https://www.greynoise.io/blog/debugging-d-link-emulating-firmware-and-hacking-hardware

Shells In Plain Sight – Storing Payloads In The Cloud

inside in a image…

— https://www.trustedsec.com/blog/shells-in-plain-sight-storing-payloads-in-the-cloud/

Abusing Microsoft Outlook 365 to Capture NTLM

— https://www.hackingarticles.in/abusing-microsoft-outlook-365-to-capture-ntlm/

How to Handle OS Signals in Go

— https://www.developer.com/languages/os-signals-go/

Bypass Windows Defender

— https://youtu.be/zOcl3o5lYYo

Needle (CVE-2023-0179) exploit

https://github.com/H4K6/CVE-2023-0179-PoC

Local privilege escalation via PetitPotam (perfectly on Windows 21H2 10.0.20348.1547)

https://github.com/wh0amitz/PetitPotato

Cross-site noscripting (XSS) cheat sheet

-- https://portswigger.net/web-security/cross-site-noscripting/cheat-sheet#assignable-protocol-with-location

CVE-2023-23397_EXPLOIT_0DAY

Exploit for the CVE-2023-23397 Credit to domchell

— https://github.com/sqrtZeroKnowledge/CVE-2023-23397_EXPLOIT_0DAY

Good News and New Changes in Sys-Admin Open BLD ecosystem
 
lab.sys-adm.in - it's AD/Malicious-free Open BLD DNS secure service, today I happy present for you/us few good news:

New security concepts
🐕 Security - Open BLD ecosystem fundamentally changed preventing/attacking mitigation mechanisms, now Sys-Admin Open BLD infrastructure has centralized automated hacking IP mitigation system
☀️ Updates - With open Sys-Admin activities now we are have two new instruments which can change security protection prism which based on open source tools/instruments…
🐌 Speed - Extremely improved speed for collecting/merging/compressing and deploying block/allow lists from Internet

Results
🌵 Cactusd Server, which writen from scratch on GoLang - fully replace BLD-Server update service
🧘 ip2drop replaced fail2ban in Open BLD ecosystem
🥋 All servers has new firewall settings and improvements

Deprecations
♻️ BLD-Server will deprecated and excluded from Sys-Admin activities/supporting in future (thanks nodejs which was foundament for this service) ⚰

Welcome
👋 I'm looking for talent, experts, programmers and just good and positive people for code-review, feedback, suggestions and etc - Welcome 🤜🤛

Hands-On SOC Analyst Training

quizes, practices..:

— https://app.letsdefend.io/training

#learn

Veeam Backup & Replication CVE-2023-27532 Response

PoC

— https://www.huntress.com/blog/veeam-backup-replication-cve-2023-27532-response