This release comes with a whole heap of bugfixes.
Big thanks to everyone who submitted PRs and fixes (@cnotin @jtothef @nheineger @Scoubi)

C2/post-exploitation framework. Contribute to loseys/BlackMamba development by creating an account on GitHub.

fw extraction to rce

Digital Forensics and Threat Hunting for Artifacts In Obscure Windows Event Logs

Alternative ways to copy your shellcode to memory in your VBA macros

About The Project Continuing from the last blog post that discussed malicious Linux Cryptocurrency miners, I have discovered new activity that blends two of my previous Cryptocurrency mining malware (aka Cryptojacking) blog posts.
By taking a deeper look…

A few days ago, I released Perfusion, an exploit tool for the RpcEptMapper registry key vulnerability that I discussed in my previous post. Here, I want to discuss the strategy I opted for when I developed the exploit. Although it is not as technical as a…

Investigate malicious Windows logon by visualizing and analyzing Windows event log - JPCERTCC/LogonTracer

Overview In the ActiveBreach red team, we’re always looking for innovative approaches for lateral movement and privilege escalation. For many of the environments we operate in, focusing on the classic...

Demon Pentest Shell. Contribute to RackunSec/dps development by creating an account on GitHub.

A collection of scripts for assessing Microsoft Azure security - NetSPI/MicroBurst

Multi-Cloud Security Auditing Tool. Contribute to nccgroup/ScoutSuite development by creating an account on GitHub.

 SEH tricks is not a new Anti-Debugging trick. So many malware already used this to make the manual debugging of its code time consuming and...

:arrow_up: :skull_and_crossbones: :fire: Automatic Linux privesc via exploitation of low-hanging fruit e.g. gtfobins, pwnkit, dirty pipe, +w docker.sock - GitHub - liamg/traitor: :arrow_up: :fire: ...