We review the history of DNS vulnerabilities, particularly DNS cache poisoning, examining both past vulnerabilities and more advanced attacks.

Many of you may have known about the show Mr Robot and its unique connection to Kali Linux. But there is a little bit more that we have not talked about due to NDAs. But it appears the mystery is over, the red tape has been removed, and we now wanted to take…

Sparrow.ps1 was created by CISA's Cloud Forensics team to help detect possible compromised accounts and applications in the Azure/m365 environment. - cisagov/Sparrow

The description is at https://wizardzines.com/zines/bite-size-bash :)If you have questions, please email me at julia@wizardzines.com

Contact: CRT@crowdstrike.com. Contribute to CrowdStrike/CRT development by creating an account on GitHub.

Hello guys, It’s HolyBugx I started writing this after this tweet, as I saw many interested people wanted me to do it, So I decided to…

MEGA provides free cloud storage with convenient and powerful always-on privacy. Claim your free 20GB now

I’ve experienced a bit of trouble of late with both Empire and PoshC2_Python payloads failing to call back to their corresponding Empire and/or PoshC2 listener/server. This brief post detailing the…

The importance of XML based vulnerabilities in web application security has given prominence. Part-1 is XML Basics.

The latest version of our SunburstDomainDecoder (v1.7) can be used to reveal which endpoint protection applications that are installed on trojanized SolarWinds Orion deployments. The security application info is extracted from DNS queries for 'avsvmcloud.com'…

In this video walkthrough, we demonstrated the exploitation of Linux wildcards in file archiving tool 'tar' to achieve privilege escalation. We used The Terminal machine from tryhackme.
--
Receive video documentation
https://www.youtube.com/channel/UCNSd…

Breaking a WPS PIN

Work in progress... Contribute to ivan-sincek/wifi-penetration-testing-cheat-sheet development by creating an account on GitHub.