Pentester – Telegram

Pentester

2.8K subscribers

117 photos

3 videos

163 files

2.76K links

- Offensive Security (Red Teaming / PenTesting)
- BlueTeam (OperationSec, TreatHunting, DFIR)
- Reverse Engineering / Malware Analisys
- Web Security

Download Telegram

About

Blog

Apps

Platform

2.8K subscribers

Nightmangle is post-exploitation Telegram Command and Control (C2/C&C) Agent

https://github.com/1N73LL1G3NC3x/Nightmangle

GitHub - 1N73LL1G3NC3x/Nightmangle

Contribute to 1N73LL1G3NC3x/Nightmangle development by creating an account on GitHub.

🔥2

1.33K views10:37

Coerced Potato New tool for local privilege escalation on a Windows machine, from a service account to NT SYSTEM. Should work on any recent versions of Windows.

https://github.com/hackvens/CoercedPotato

Research:
https://blog.hackvens.fr/articles/CoercedPotato.html

GitHub - hackvens/CoercedPotato

Contribute to hackvens/CoercedPotato development by creating an account on GitHub.

👎1

1.22K views20:57

CVE-2023-22515: Confluence Broken Access Control

https://github.com/Chocapikk/CVE-2023-22515

GitHub - Chocapikk/CVE-2023-22515: CVE-2023-22515: Confluence Broken Access Control Exploit

CVE-2023-22515: Confluence Broken Access Control Exploit - Chocapikk/CVE-2023-22515

1.25K views21:10

A repository of telemetry domains and URLs used by mobile location tracking and analytics libraries.

https://github.com/craiu/mobiletrackers

GitHub - craiu/mobiletrackers: A repository of telemetry domains and URLs used by mobile location tracking, user profiling, targeted…

A repository of telemetry domains and URLs used by mobile location tracking, user profiling, targeted marketing and aggressive ads libraries. - craiu/mobiletrackers

1.2K views04:26

Attacking the Android kernel using the Qualcomm TrustZone

https://tamirzb.com/attacking-android-kernel-using-qualcomm-trustzone

Tamir Zahavi-Brunner’s Blog

Attacking the Android kernel using the Qualcomm TrustZone

In this post I describe a somewhat unique Android kernel exploit, which utilizes the TrustZone in order to compromise the kernel.

1.23K views04:26

Advanced Frida Usage Part 1 – iOS Encryption Libraries

https://8ksec.io/advanced-frida-usage-part-1-ios-encryption-libraries-8ksec-blogs/

1.48K views05:13

Perfect DLL Hijacking
https://elliotonsecurity.com/perfect-dll-hijacking/

Elliot on Security

Elliot on Security - Perfect DLL Hijacking

Disengaging Loader Lock to do anything directly from DLLMain...

🔥1😱1

1.27K views18:50

LocalPotato HTTP edition
https://decoder.cloud/2023/11/03/localpotato-http-edition/

https://github.com/decoder-it/LocalPotato

LocalPotato HTTP edition

Microsoft addressed our LocalPotato vulnerability in the SMB scenario with CVE-2023-21746 during the January 2023 Patch Tuesday. However, the HTTP scenario remains unpatched, as per Microsoft&#8217…

1.1K views16:25

Abusing microsoft access “LINKED TABLE” feature to perform NTLM forced authentication attacks
https://research.checkpoint.com/2023/abusing-microsoft-access-linked-table-feature-to-perform-ntlm-forced-authentication-attacks/

Check Point Research

Abusing Microsoft Access "Linked Table" Feature to Perform NTLM Forced Authentication Attacks - Check Point Research

What is NTLM? What common attacks exist against it? NTLM is an extremely deprecated authentication protocol introduced by Microsoft in 1993. It is a challenge-response protocol: the server keeps a secret called an “NTLM hash” derived from the user’s password…

1.26K views16:28

CVE-2023-46214: Splunk RCE

https://github.com/nathan31337/Splunk-RCE-poc

#git #exploit #pentest #redteam

GitHub - nathan31337/Splunk-RCE-poc

Contribute to nathan31337/Splunk-RCE-poc development by creating an account on GitHub.

1.44K views12:33

CVE-2023-36745: Microsoft Exchange Server RCE

https://securityonline.info/microsoft-exchange-server-rce-cve-2023-36745-flaw-gets-poc-exploit/

PoC: https://github.com/N1k0la-T/CVE-2023-36745

Daily CyberSecurity

Microsoft Exchange Server RCE (CVE-2023-36745) Flaw Gets PoC Exploit

Proof-of-concept (PoC) exploit code has been published for a Microsoft Exchange Server vulnerability tracked as CVE-2023-36745

1.91K views12:37

Beginners Guide to Building a Hardware Hacking Lab

https://voidstarsec.com/hw-hacking-lab/vss-lab-guide

VoidStar Security Wiki

VSS Hardware Hacking Wiki and Blog Entries

🔥3

1.27K views05:59

Secret Handshake A Mutual TLS Based C2 Communication Channel - John Conwell | CypherCon 6.0

https://www.youtube.com/watch?v=AOWFM-JhW3g&list=PLUC_sTnMl8NxZqs4b2Rt8VygLaquV5vY_

Secret Handshake A Mutual TLS Based C2 Communication Channel - John Conwell | CypherCon 6.0

(S6:E57) Secret Handshake A Mutual TLS Based C2 Communication Channel - John Conwell - CypherCon 6.0 - Wisconsin

Secret Handshake A Mutual TLS Based C2 Communication Channel

One of the goals of malware command & control (C2) communication is to blend into…

1.09K views19:31

Obfuscating native code for fun: Part 1 - Introduction

https://blog.es3n1n.eu/posts/obfuscator-pt-1/

https://github.com/es3n1n/obfuscator

Obfuscating native code for fun: Part 1 - Introduction

In this series of posts, I will try to cover all the common knowledge you would need to create your PE bin2bin obfuscator. This year I saw a rise of interest in the topics of software obfuscation and deobfuscation, yet I didn’t see any new open-source projects…

897 views08:19

Ghidra Basics - Identifying, Decoding and Fixing Encrypted Strings

https://embee-research.ghost.io/ghidra-basics-identifying-and-decoding-encrypted-strings/

How To Use Ghidra For Malware Analysis - Identifying, Decoding and Fixing Encrypted Strings

Manual identification, decryption and fixing of encrypted strings using Ghidra and x32dbg.

1.01K views08:20

Bypassing UAC via COM component IARPUninstallStringLauncher
https://3gstudent.github.io/通过COM组件IARPUninstallStringLauncher绕过UAC

通过COM组件IARPUninstallStringLauncher绕过UAC

919 views20:25

Reverse engineering Android 2FA OTP application

https://marcoguerri.github.io/2023/09/09/android-home-banking.html

Reverse engineering Android 2FA OTP application

As part of my disaster recovery plan, I want to have offline backup of 2FA codes for online banking to generate OTPs without my phone in case of emergency. This required reverse engineering my bank’s Android OTP application, that I expected would reveal some…

924 views12:07

#BlackHat Europe 2023 slides

https://github.com/onhexgroup/Conferences

GitHub - onhexgroup/Conferences: Conference presentation slides

Conference presentation slides. Contribute to onhexgroup/Conferences development by creating an account on GitHub.

962 views12:08

CVE-2023-30547
Exploit for VM2 Sandbox Escape Vulnerability

https://github.com/rvizx/CVE-2023-30547

GitHub - rvizx/CVE-2023-30547: PoC Exploit for VM2 Sandbox Escape Vulnerability

PoC Exploit for VM2 Sandbox Escape Vulnerability. Contribute to rvizx/CVE-2023-30547 development by creating an account on GitHub.

🔥3

949 views12:09

Powershell Tips & Tricks(RTC0024)
https://redteamrecipe.com/powershell-tips-tricks/

ExpiredDomains.com

redteamrecipe.com is for sale! Check it out on ExpiredDomains.com

Buy redteamrecipe.com for 195 on GoDaddy via ExpiredDomains.com. This premium expired .com domain is ideal for establishing a strong online identity.

🔥3

1.05K views15:04

Whatsapp Exploit to spoofing impersonate of reply message

https://github.com/lichti/whats-spoofing

👍4

1.18K views18:51