Pentester

This repository contains all the noise and artifacts surrounding the development of a new implementation of #Meterpreter that is intended to run on the CLR.

https://t.co/8qKOnis9N7

GitHub

OJ/clr-meterpreter

The full story of the CLR implementation of Meterpreter - OJ/clr-meterpreter

50 views05:32

Pentester

GitHub - Pure-L0G1C/Loki: Remote Access Tool/Botnet
https://github.com/Pure-L0G1C/Loki

GitHub

GitHub - Bitwise-01/Loki: Remote Access Tool

Remote Access Tool. Contribute to Bitwise-01/Loki development by creating an account on GitHub.

54 views05:33

Pentester

Building an Office macro to spoof parent processes and command line arguments - Christophe Tafani-Dereeper
https://blog.christophetd.fr/building-an-office-macro-to-spoof-process-parent-and-command-line/

50 views04:14

Pentester

Delivering Many a Payload via CSRF
https://blog.zsec.uk/csrf-2018/

ZeroSec - Adventures In Information Security

Delivering Many a Payload via CSRF

CSRF Is still an issue in 2018, with some interesting payload delivery methods. Chaining vulns and some more on CSV Injection too!

50 views05:27

Pentester

File Path Traversal and File Inclusions – Asfiya Shaikh – Medium
https://medium.com/@asfiyashaikh10/file-path-traversal-and-file-inclusions-7c567da9e226

Medium

File Path Traversal and File Inclusions(LFI / RFI)

There exist hell lot of information over internet that can help you understand these vulnerabilities, However i will also help you with…

46 views08:24

Pentester

Effective Python Penetration Testing.pdf

9.1 MB

134 views07:19

Pentester

How I hacked 50+ Companies in 6 hrs – Vignesh C – Medium
https://medium.com/@cvignesh28/how-i-hacked-50-companies-in-6-hrs-3866b61cfdcc

Medium

How I hacked 50+ Companies in 6 hrs

Long story short, I have created my Hackerone/Bugcrowd profiles a way back in 2016 but I have never reported a bug there. I have never…

46 views09:38

Pentester

Evil Clippy - A Cross-Platform Assistant For Creating Malicious MS Office Documents
http://amp.kitploit.com/2019/04/evil-clippy-cross-platform-assistant.html?amp=0

KitPloit - PenTest & Hacking Tools

Evil Clippy - A Cross-Platform Assistant For Creating Malicious MS Office Documents

43 views09:40

Pentester

The inception bar: a new phishing method
https://jameshfisher.com/2019/04/27/the-inception-bar-a-new-phishing-method/

jameshfisher.com

The inception bar: a new phishing method

A new phishing technique that displays a fake URL bar in Chrome for mobile. A key innovation is the "scroll jail" that traps the user in a fake browser.

49 views09:45

Pentester

Your nmap http scripts returning nothing? Might be because there's a block on nmap's default user agent. Either correct by modifying http.lua or use a script arg.

https://t.co/tvGiSmmGAc
https://t.co/g0K3L4CPwH

Here's my nmap alias: https://t.co/WtLBfp3Tm2

Kroosec

Making Nmap Scripting Engine stealthier

Nmap comes with NSE : a fully integrated scripting engine with many useful libraries. The http library is one I've come to use oftenbut I...

60 views09:49

Pentester

GitHub - sk3ptre/AndroidMalware_2019: Popular Android threats in 2019
https://github.com/sk3ptre/AndroidMalware_2019

GitHub

GitHub - sk3ptre/AndroidMalware_2019: Popular Android threats in 2019

61 views09:36

Pentester

Remote code execution On Microsoft edge URL Protocol
https://medium.com/@mattharr0ey/remote-code-execution-on-microsoft-edge-url-protocol-a67d0f96b32d

Medium