canyoupwn.me:
.NET Just-In-Time (JIT) Compiler Hooking
https://rhotav.github.io/jithooking-tr
Sailing Past Security Measures In AD
https://luemmelsec.github.io/Circumventing-Countermeasures-In-AD/
LazyWeb - Vulnerable Web Application
https://github.com/RamadhanAmizudin/lazyweb
A Simpler Way of Finding 0day
https://www.blackhat.com/presentations/bh-usa-07/Maynor_and_Graham/Whitepaper/bh-usa-07-maynor_and_graham-WP.pdf
Charming Kitten’s Christmas Gift
https://blog.certfa.com/posts/charming-kitten-christmas-gift/
.NET Just-In-Time (JIT) Compiler Hooking
https://rhotav.github.io/jithooking-tr
Sailing Past Security Measures In AD
https://luemmelsec.github.io/Circumventing-Countermeasures-In-AD/
LazyWeb - Vulnerable Web Application
https://github.com/RamadhanAmizudin/lazyweb
A Simpler Way of Finding 0day
https://www.blackhat.com/presentations/bh-usa-07/Maynor_and_Graham/Whitepaper/bh-usa-07-maynor_and_graham-WP.pdf
Charming Kitten’s Christmas Gift
https://blog.certfa.com/posts/charming-kitten-christmas-gift/
polynomen’s Blog
.NET Just-In-Time (JIT) Compiler Hooking
Selamlar. Uzun zamandır yazı yazmamamın(writeuplar hariç) nedeni aslında bu yazıydı. Bir süredir .NET Framework ile yazılmış bir yazılımın JIT ile iletişime geçişini ve bunun “hooklanması” hakkında çalışıyordum. Sonunda bu yazı ortaya çıktı.
Charming Kitten’s Christmas Gift
https://blog.certfa.com/posts/charming-kitten-christmas-gift/
https://blog.certfa.com/posts/charming-kitten-christmas-gift/
Certfa
Charming Kitten’s Christmas Gift - Certfa Lab
During the Christmas holidays and the beginning of the new year, the Charming Kitten group, the Iranian state-backed hackers, have begun a targeted phishing campaign of espionage against different individuals to collect information.
token-hunter
https://github.com/codeEmitter/token-hunter
https://github.com/codeEmitter/token-hunter
Building an RDP Credential Catcher for Threat Intelligence
https://research.nccgroup.com/2021/01/10/building-an-rdp-credential-catcher-for-threat-intelligence/
https://research.nccgroup.com/2021/01/10/building-an-rdp-credential-catcher-for-threat-intelligence/