Pentester – Telegram

Pentester

2.92K subscribers

119 photos

3 videos

163 files

2.77K links

- Offensive Security (Red Teaming / PenTesting)
- BlueTeam (OperationSec, TreatHunting, DFIR)
- Reverse Engineering / Malware Analisys
- Web Security

Download Telegram

About

Blog

Apps

Platform

2.92K subscribers

https://lab.wallarm.com/owasp-top-10-2017-is-released-98e31dfeef92

OWASP Top 10 2017 is Released

The Journey to the New and Improved Ten Most Critical Web Application Security Risks

49 views04:29

https://github.com/r00t-3xp10it

r00t-3xp10it - Overview

"Be a hacker not a criminal"... Pentester | IT enthusiastic | blogger - r00t-3xp10it

48 views19:00

https://gbhackers.com/top-500-important-xss-cheat-sheet/

GBHackers Security | #1 Globally Trusted Cyber Security News Platform

Top 500 Most Important XSS Script Cheat Sheet for Web Application Penetration Testing

XSS is a very commonly exploited vulnerability type which is very widely spread. Here we are going to see about most important XSS Cheat sheet.

57 views04:50

https://github.com/l0ss/Grouper

GitHub - l0ss/Grouper: A PowerShell script for helping to find vulnerable settings in AD Group Policy. (deprecated, use Grouper2…

A PowerShell script for helping to find vulnerable settings in AD Group Policy. (deprecated, use Grouper2 instead!) - l0ss/Grouper

39 views04:33

http://www.johnscottrailton.com/fit-leaking/

44 views04:58

https://1337red.wordpress.com/building-and-attacking-an-active-directory-lab-with-powershell/

Building and Attacking an Active Directory lab with PowerShell

Let me open this with a few questions Do you have your own penetration testing lab? Have you installed Windows Server 2016 before? Do you have Active Directory at home? What version of PowerShell a…

59 views05:01

https://blog.netspi.com/four-ways-bypass-android-ssl-verification-certificate-pinning/

Four Ways to Bypass Android SSL Verification and Certificate Pinning

Explore four techniques to bypass SSL certificate checks on Android in our Four Ways to Bypass Android SSL Verification and Certificate Pinning blog.

56 views04:38

https://medium.com/@0xdeadbeefJERKY/the-current-state-of-dde-a62fd3277e9

52 views05:08

Channel photo updated

09:07

https://posts.specterops.io/reviving-dde-using-onenote-and-excel-for-code-execution-d7226864caee

Reviving DDE: Using OneNote and Excel for Code Execution

TL;DR: You can achieve DDE execution with Excel SpreadSheets embedded within OneNote. This bypasses the original Excel mitigation ruleset…

47 views04:08

https://halcyon-ide.org/

halcyon-ide.org

Halcyon IDE :: An IDE for Nmap Script Developers

Halcyon IDE, An IDE for Nmap Script Development, Nmap Script Engine, NSE, Integrated Development Environment, Nmap, Network Mapping, Network Security, Port scanning, Script Development, IDE

48 views04:12

https://medium.com/0xcc/electrons-bug-shellexecute-to-blame-cacb433d0d62

43 views04:18

https://injectify.js.org/

injectify.js.org

Injectify Documentation

Perform advanced MiTM attacks on websites with ease.

46 views04:42

https://embedi.com/blog/grim-iot-reaper-1-and-0-day-vulnerabilities-at-the-service-of-botnets/

Grim IoT Reaper: 1- and 0-day vulnerabilities at the service of botnets

On the 19th of October, 2017, the world of IoT shuddered, facing a new enemy – a huge botnet that would be later called Reaper. Reaper is grim and is by far grimmer than the notorious Mirai botnet. According to the data provided by 360 Netlab, it has already…

53 views04:45

http://www.sploitspren.com/2018-01-26-Windows-Privilege-Escalation-Guide/

Windows Privilege Escalation Guide

Privilege escalation always comes down to proper enumeration. But to accomplish proper enumeration you need to know what to check and look for. This takes familiarity with systems that normally comes along with experience. At first privilege escalation can…

54 views05:29

Посмотрите, о чем твитнул(а) @NahamSec: https://twitter.com/NahamSec/status/958042761357217792?s=09

Ben Sadeghipour

30 views05:36

https://astr0baby.wordpress.com/2018/01/30/running-latest-x64-mimikatz-on-windows-10/amp/?__twitter_impression=true

Astr0baby's not so random thoughts _____ rand() % 100;

Running latest x64 Mimikatz on Windows 10

I have been keeping this journal for 7 years now and I guess this is a reason to add some interesting stuff (lately I have been busy in the compiler world on various architectures and different de…

55 views05:09

https://securityonline.info/top-7-nmap-nse-scripts-for-reconnmap-scannmap-tutorialnmap-download/?utm_source=ReviveOldPost&utm_medium=social&utm_campaign=ReviveOldPost

Penetration Testing

Top 7 Nmap NSE Scripts Recon,nmap nse,nmap tutorial,nmap scan

Top 7 Nmap NSE Scripts Recon,nmap nse,nmap tutorial,nmap scan,nmap download,advance nmap tutorial,nmap script nse,zmap nmap tutorial

55 views05:08

https://github.com/k0keoyo/kDriver-Fuzzer

GitHub - k0keoyo/kDriver-Fuzzer

Contribute to k0keoyo/kDriver-Fuzzer development by creating an account on GitHub.

40 views05:13

https://github.com/L3cr0f/DccwBypassUAC

GitHub - L3cr0f/DccwBypassUAC: Windows 8.1 and 10 UAC bypass abusing WinSxS in "dccw.exe".

Windows 8.1 and 10 UAC bypass abusing WinSxS in "dccw.exe". - L3cr0f/DccwBypassUAC

41 views18:24

https://github.com/samdenty99/injectify

GitHub - samdenty/injectify: Perform advanced MiTM attacks on websites with ease 💉

Perform advanced MiTM attacks on websites with ease 💉 - samdenty/injectify

53 views05:41