PrivateLoader spreads Smokeloader, Redline, Vidar malware
https://intel471.com/blog/privateloader-malware
https://intel471.com/blog/privateloader-malware
PoC CVE-2022-22718 Windows Print Spooler Elevation of Privilege Vulnerability LPE
https://github.com/ly4k/SpoolFool
https://github.com/ly4k/SpoolFool
CVE-2022-20699 Cisco Anyconnect VPN unauth RCE (rwx stack)
https://github.com/Audiobahn/CVE-2022-20699
PoC CVE-2022-21241 CSV+ 0.8.0 - Arbitrary Code Execution
https://github.com/satoki/csv-plus_vulnerability
PoC CVE-2022-21877 information leak inside the spaceport.sys driver
https://github.com/Big5-sec/cve-2022-21877
https://github.com/Audiobahn/CVE-2022-20699
PoC CVE-2022-21241 CSV+ 0.8.0 - Arbitrary Code Execution
https://github.com/satoki/csv-plus_vulnerability
PoC CVE-2022-21877 information leak inside the spaceport.sys driver
https://github.com/Big5-sec/cve-2022-21877
An analysis of CVE-2022-21877
https://big5-sec.github.io/posts/an-analysis-of-cve-2022-21877
Exploring Windows UAC Bypasses
https://elastic.github.io/security-research/whitepapers/2022/02/03.exploring-windows-uac-bypass-techniques-detection-strategies/article
https://big5-sec.github.io/posts/an-analysis-of-cve-2022-21877
Exploring Windows UAC Bypasses
https://elastic.github.io/security-research/whitepapers/2022/02/03.exploring-windows-uac-bypass-techniques-detection-strategies/article
PPE - Poisoned Pipeline Execution
Running malicious code in your CI, without access to your CI
https://medium.com/cider-sec/ppe-poisoned-pipeline-execution-34f4e8d0d4e9
How Docker Made Me More Capable and the Host Less Secure
https://www.cyberark.com/resources/threat-research-blog/how-docker-made-me-more-capable-and-the-host-less-secure
Running malicious code in your CI, without access to your CI
https://medium.com/cider-sec/ppe-poisoned-pipeline-execution-34f4e8d0d4e9
How Docker Made Me More Capable and the Host Less Secure
https://www.cyberark.com/resources/threat-research-blog/how-docker-made-me-more-capable-and-the-host-less-secure
Bypass Windows Defender, Using ThreadStackSpoofer, TDP && KCTHijack
https://gitlab.com/ORCA666/3in1
Injecting shellcode into 'ntdll.dll' address space in target process, and hijacking its thread without calling GetThreadContext, evading memory scanners
https://gitlab.com/ORCA666/snaploader
https://gitlab.com/ORCA666/3in1
Injecting shellcode into 'ntdll.dll' address space in target process, and hijacking its thread without calling GetThreadContext, evading memory scanners
https://gitlab.com/ORCA666/snaploader
Real World 0-days.pdf
2 MB
0-days Detected In-the-Wild in 2021
https://github.com/maddiestone/ConPresentations/raw/master/OffensiveCon2022.RealWorld0days.pdf
https://github.com/maddiestone/ConPresentations/raw/master/OffensiveCon2022.RealWorld0days.pdf
OnlyRAT to remotely command and control windows computers
https://github.com/CosmodiumCS/OnlyRAT
Anonymously Reverse shell over Tor Network using Hidden Services without portfortwarding
https://github.com/samet-g/tornado
Rat tool coded in python with C&C which can accept multiple connections from clients
https://github.com/youhacker55/jarbou3
https://github.com/CosmodiumCS/OnlyRAT
Anonymously Reverse shell over Tor Network using Hidden Services without portfortwarding
https://github.com/samet-g/tornado
Rat tool coded in python with C&C which can accept multiple connections from clients
https://github.com/youhacker55/jarbou3
A Ruby GUI based on advanced rogue AP attack
https://github.com/Koala633/hostbase
Search WiFi geolocation data by BSSID and SSID on different public databases
https://github.com/GONZOsint/geowifi
https://github.com/Koala633/hostbase
Search WiFi geolocation data by BSSID and SSID on different public databases
https://github.com/GONZOsint/geowifi
Top 10 Web Hacking Techniques of 2021
https://portswigger.net/research/top-10-web-hacking-techniques-of-2021
https://portswigger.net/research/top-10-web-hacking-techniques-of-2021
Simple Process Injection in C#
https://github.com/sbasu7241/HellsGate
Interactive Binary Patching Plugin for IDA Pro
https://github.com/gaasedelen/patching
https://github.com/sbasu7241/HellsGate
Interactive Binary Patching Plugin for IDA Pro
https://github.com/gaasedelen/patching
CVE-2022-0435: Remote Stack Overflow in Linux Kernel TIPC Module since 4.8 (net/tipc)
https://www.openwall.com/lists/oss-security/2022/02/10/1
When MYSQL Cluster Encounters Taint Analysis
https://www.zerodayinitiative.com/blog/2022/2/10/mindshare-when-mysql-cluster-encounters-taint-analysis
https://www.openwall.com/lists/oss-security/2022/02/10/1
When MYSQL Cluster Encounters Taint Analysis
https://www.zerodayinitiative.com/blog/2022/2/10/mindshare-when-mysql-cluster-encounters-taint-analysis
Attacking an Ethereum L2 with Unbridled Optimism
https://www.saurik.com/optimism.html
https://www.saurik.com/optimism.html
Mars_Stealer_v6.1.zip
7.1 MB
MarsStealer v6.1
to steal data from all web browsers, 2FA components, cryptocurrency wallets
to steal data from all web browsers, 2FA components, cryptocurrency wallets
Sn1per Pro_v9.2.7z
238.3 KB
Sn1per Professional v9.2
to detect the attack surface
to detect the attack surface
to get Cobalt Strike BOFs
https://github.com/EspressoCake
Cobalt Strike External C2 Integration With Azure Servicebus, C2 traffic via Azure Servicebus
https://github.com/Flangvik/CobaltBus
https://github.com/EspressoCake
Cobalt Strike External C2 Integration With Azure Servicebus, C2 traffic via Azure Servicebus
https://github.com/Flangvik/CobaltBus
C# code to Sandbox Defender and most probably other AV/EDRs
https://github.com/plackyhacker/SandboxDefender
netspy is a tool for quickly detecting reachable network segments in the intranet
https://github.com/shmilylty/netspy
https://github.com/plackyhacker/SandboxDefender
netspy is a tool for quickly detecting reachable network segments in the intranet
https://github.com/shmilylty/netspy