Bypass Windows Defender, Using ThreadStackSpoofer, TDP && KCTHijack
https://gitlab.com/ORCA666/3in1
Injecting shellcode into 'ntdll.dll' address space in target process, and hijacking its thread without calling GetThreadContext, evading memory scanners
https://gitlab.com/ORCA666/snaploader
https://gitlab.com/ORCA666/3in1
Injecting shellcode into 'ntdll.dll' address space in target process, and hijacking its thread without calling GetThreadContext, evading memory scanners
https://gitlab.com/ORCA666/snaploader
Real World 0-days.pdf
2 MB
0-days Detected In-the-Wild in 2021
https://github.com/maddiestone/ConPresentations/raw/master/OffensiveCon2022.RealWorld0days.pdf
https://github.com/maddiestone/ConPresentations/raw/master/OffensiveCon2022.RealWorld0days.pdf
OnlyRAT to remotely command and control windows computers
https://github.com/CosmodiumCS/OnlyRAT
Anonymously Reverse shell over Tor Network using Hidden Services without portfortwarding
https://github.com/samet-g/tornado
Rat tool coded in python with C&C which can accept multiple connections from clients
https://github.com/youhacker55/jarbou3
https://github.com/CosmodiumCS/OnlyRAT
Anonymously Reverse shell over Tor Network using Hidden Services without portfortwarding
https://github.com/samet-g/tornado
Rat tool coded in python with C&C which can accept multiple connections from clients
https://github.com/youhacker55/jarbou3
A Ruby GUI based on advanced rogue AP attack
https://github.com/Koala633/hostbase
Search WiFi geolocation data by BSSID and SSID on different public databases
https://github.com/GONZOsint/geowifi
https://github.com/Koala633/hostbase
Search WiFi geolocation data by BSSID and SSID on different public databases
https://github.com/GONZOsint/geowifi
Top 10 Web Hacking Techniques of 2021
https://portswigger.net/research/top-10-web-hacking-techniques-of-2021
https://portswigger.net/research/top-10-web-hacking-techniques-of-2021
Simple Process Injection in C#
https://github.com/sbasu7241/HellsGate
Interactive Binary Patching Plugin for IDA Pro
https://github.com/gaasedelen/patching
https://github.com/sbasu7241/HellsGate
Interactive Binary Patching Plugin for IDA Pro
https://github.com/gaasedelen/patching
CVE-2022-0435: Remote Stack Overflow in Linux Kernel TIPC Module since 4.8 (net/tipc)
https://www.openwall.com/lists/oss-security/2022/02/10/1
When MYSQL Cluster Encounters Taint Analysis
https://www.zerodayinitiative.com/blog/2022/2/10/mindshare-when-mysql-cluster-encounters-taint-analysis
https://www.openwall.com/lists/oss-security/2022/02/10/1
When MYSQL Cluster Encounters Taint Analysis
https://www.zerodayinitiative.com/blog/2022/2/10/mindshare-when-mysql-cluster-encounters-taint-analysis
Attacking an Ethereum L2 with Unbridled Optimism
https://www.saurik.com/optimism.html
https://www.saurik.com/optimism.html
Mars_Stealer_v6.1.zip
7.1 MB
MarsStealer v6.1
to steal data from all web browsers, 2FA components, cryptocurrency wallets
to steal data from all web browsers, 2FA components, cryptocurrency wallets
Sn1per Pro_v9.2.7z
238.3 KB
Sn1per Professional v9.2
to detect the attack surface
to detect the attack surface
to get Cobalt Strike BOFs
https://github.com/EspressoCake
Cobalt Strike External C2 Integration With Azure Servicebus, C2 traffic via Azure Servicebus
https://github.com/Flangvik/CobaltBus
https://github.com/EspressoCake
Cobalt Strike External C2 Integration With Azure Servicebus, C2 traffic via Azure Servicebus
https://github.com/Flangvik/CobaltBus
C# code to Sandbox Defender and most probably other AV/EDRs
https://github.com/plackyhacker/SandboxDefender
netspy is a tool for quickly detecting reachable network segments in the intranet
https://github.com/shmilylty/netspy
https://github.com/plackyhacker/SandboxDefender
netspy is a tool for quickly detecting reachable network segments in the intranet
https://github.com/shmilylty/netspy
Attacking kerberos unconstrained delegation
https://medium.com/r3d-buck3t/attacking-kerberos-unconstrained-delegation-ef77e1fb7203
https://medium.com/r3d-buck3t/attacking-kerberos-unconstrained-delegation-ef77e1fb7203
Collection of Facebook Bug Bounty Writeups
https://github.com/jaiswalakshansh/Facebook-BugBounty-Writeups
L.O.C extension: this extension will automatically grant a third-party server access to some of the user's Facebook data
https://github.com/brave/extension-whitelist/issues/48
https://github.com/jaiswalakshansh/Facebook-BugBounty-Writeups
L.O.C extension: this extension will automatically grant a third-party server access to some of the user's Facebook data
https://github.com/brave/extension-whitelist/issues/48
Mimikatz in JS Oneliner
https://gist.github.com/secdev-01/3edc6283bce6b5848a10b7001e030037
The Derby of Static Software Testing:
Joern vs CodeQl
https://elmanto.github.io/posts/sast_derby_joern_vs_codeql
https://gist.github.com/secdev-01/3edc6283bce6b5848a10b7001e030037
The Derby of Static Software Testing:
Joern vs CodeQl
https://elmanto.github.io/posts/sast_derby_joern_vs_codeql
Cisco RV340 SSL VPN Unauthenticated Remote Code Execution as root
https://github.com/pedrib/PoC/blob/master/advisories/Pwn2Own/Austin_2021/flashback_connects/flashback_connects.md
https://github.com/pedrib/PoC/blob/master/advisories/Pwn2Own/Austin_2021/flashback_connects/flashback_connects.md