Learn how to detect the use of credential theft attacks such as Pass-the-Hash within your environment through the use of honeypots.

The final part of the series about learning Linux kernel exploitation through hxpCTF2020 kernel-rop: Full protection

.NET for post-exploitation is here to stay. It has been bundled with most C2 frameworks, common tools have been ported, AMSI has been added (then bypassed) and new and clever ways have been found to launch unmanaged code. The process of loading a .NET assembly…

Introduction

1.3K votes, 158 comments. 853K subscribers in the sysadmin community. A reddit dedicated to the profession of Computer System Administration.

From Initial Access To Credential Dumping And More

Deobfuscation is an important part of malware analysis. Many malware currently uses obfuscation to hide from analysts but also to avoid…

PowerShell payload generator. Contribute to postrequest/xeca development by creating an account on GitHub.

Hello fellas, or as we say in Germany: “Hallo Freunde der fettfreien Leberwurst.”

In today’s blog-post we´ll be talking about relaying attacks, or more precisely about NTLM relaying attacks. So let´s get started.

As you already know I am new to the pentest…

Dridex “also know as Bugat and Cridex” is a form of malware banking trojan and infostealer that operated by criminal group referred to as “Indrik Spider”. Dridex specializes in stealing banking cre…

In this video tutorial, we went through the commands and syntaxes used to encrypt and decrypt files with openSSL and gpg. Part of Advent of cyber 1 Day 12.
----
Receive video documentation
https://www.youtube.com/channel/UCNSdU_1ehXtGclimTVckHmQ/join
---…

This post covers a shellcode execution technique that leverages the UuidFromStringA and EnumSystemLocalA APIs to load and execute shellcode

RAT-el is an open source penetration test tool that allows you to take control of a windows machine. It works on the client-server model, the server sends commands and the client executes the comma...

Here is an introduction to the command line for absolute beginners - what it is, how to navigate it and how to start using it!

Ένα σύνολο ενεργειών που θα σας βοηθήσουν να εκτελέσετε μια επίθεση brute force με dictionary σε ένα σημείο πρόσβασης WPA3. Το Wacker αξιοποιεί τη διεπαφή ελέγχου wpa_supplicant  για τον έλεγχο των λειτουργιών του daemon και για να συλλέξει πληροφορίες σχετικά…