Windows ZIP extraction bug (CVE-2022-41049) lets attackers craft ZIP files, which evade warnings on attempts to execute packaged files, even if ZIP file was downloaded from the Internet.

In the past couple of weeks, OpenAI’s ChatGPT has dominated the internet.

How OpenAI’s ChatGPT can be used for Cyber Security (For Red Teaming and Blue Teaming)

IntroductionWhen I first heard about Rust, my first reaction was “Why?”. The language looked to me as a “wannabe” to C and I didn’t understand why it is so p...

A python script to automatically coerce a Windows server to authenticate on an arbitrary machine through 12 methods. - p0dalirius/Coercer

Golang reverse proxy with CobaltStrike malleable profile validation. - GitHub - nopbrick/SeeProxy: Golang reverse proxy with CobaltStrike malleable profile validation.

In this blog post, we’ll answer the question, “If I compromise a Read-Only Domain Controller, can I compromise the domain?” or, “Do RODCs belong in Tier Zero?”

linWinPwn is a bash script that streamlines the use of a number of Active Directory tools - lefayjey/linWinPwn

Ressources for bug bounty hunting. Contribute to sehno/Bug-bounty development by creating an account on GitHub.

The ultimate SOC-in-a-box community project

A Stealthy Lsass Dumper - can abuse ProcExp152.sys driver to dump PPL Lsass, no dbghelp.lib calls. - GitHub - OmriBaso/RToolZ: A Stealthy Lsass Dumper - can abuse ProcExp152.sys driver to dump PPL ...

Privileger is a tool to work with Windows Privileges - MzHmO/Privileger

Dump NTDS with golden certificates and UnPAC the hash - zblurx/certsync

Full Nuclei automation script with logic explanation. - GitHub - iamthefrogy/nerdbug: Full Nuclei automation script with logic explanation.