Pentester
@news4hack
2.94K subscribers
120 photos
3 videos
163 files
2.77K links
- Offensive Security (Red Teaming / PenTesting)
- BlueTeam (OperationSec, TreatHunting, DFIR)
- Reverse Engineering / Malware Analisys
- Web Security
Download Telegram
About
Blog
Apps
Platform
Join
Pentester
2.94K subscribers
Pentester
https://www.zdnet.com/google-amp/article/new-simjacker-attack-exploited-in-the-wild-to-track-users-for-at-least-two-years/?__twitter_impression=true
ZDNet
Simjacker attack exploited in the wild to track users for at least two years
Simjacker attack abuses STK and S@T Browser technologies installed on some SIM cards.
95 views
Pentester
https://github.com/p3n73st3r/Ghazi
GitHub
GitHub - p3n73st3r/Ghazi: Ghazi is a BurpSuite Plugins For Testing various PayLoads Like "XSS,SQLi,SSTI,SSRF,RCE and LFI" through…
Ghazi is a BurpSuite Plugins For Testing various PayLoads Like "XSS,SQLi,SSTI,SSRF,RCE and LFI" through Different tabs , Where Each Tab Will Replace Every GET or POST Parameters W...
96 views
Pentester
100 views
Pentester
SSH Mastery_ OpenSSH, PuTTY, Tunnels and Keys.epub
742.4 KB
191 views
Pentester
A collection of interesting, funny, and depressing Shodan search queries https://t.co/xG1rs5If5v
GitHub
jakejarvis/awesome-shodan-queries
🔍 A collection of interesting, funny, and depressing search queries to plug into https://shodan.io/ 👩‍💻 - jakejarvis/awesome-shodan-queries
92 views
Pentester
34 new articles about different fields of hacking as a pdf files
https://t.co/q2layzVpKz
GitHub
blaCCkHatHacEEkr/PENTESTING-BIBLE
Learn ethical hacking.Learn about reconnaissance,windows/linux hacking,attacking web technologies,and pen testing wireless networks.Resources for learning malware analysis and reverse engineering. ...
81 views
Pentester
https://www.zerodayinitiative.com/blog/2019/9/16/patch-analysis-examining-a-missing-dot-dot-in-oracle-weblogic
Zero Day Initiative
Zero Day Initiative — Patch Analysis: Examining a Missing Dot-Dot in Oracle WebLogic
Earlier this year, an Oracle WebLogic deserialization vulnerability was discovered and released as an 0day vulnerability. The bug was severe enough for Oracle to break their normal quarterly patch cadence and release an emergency update . Unfortunately…
84 views
Pentester
https://medium.com/@bilalmerokhel/recon-to-network-takeover-688309b17721
Medium
Recon To Network Takeover
Disclaimer
96 views
Pentester
Hacking-Security-Ebooks : Top 100 Hacking & Security E-Books (Free Download) : https://t.co/HeTqAK6Eyk
GitHub
yeahhub/Hacking-Security-Ebooks
Top 100 Hacking & Security E-Books (Free Download) - Powered by Yeahhub.com - yeahhub/Hacking-Security-Ebooks
121 views
Pentester
https://frida.re/news/2019/09/18/frida-12-7-released/
Frida • A world-class dynamic instrumentation toolkit
Frida 12.7 Released
Observe and reprogram running programs on Windows, macOS, GNU/Linux, iOS, watchOS, tvOS, Android, FreeBSD, and QNX
137 views
Pentester
https://anee.me/droidcon-sec-t-ctf-2019-d796be91bb3f
Medium
DroidCon, SEC-T CTF 2019
The ‘Night City’ blackmarket is powered by ‘Droidcoin’. An anonymous crypto-currency. The rogue androids seem to have hacked the ‘Nighty…
169 views
Pentester
https://m.youtube.com/watch?feature=youtu.be&v=6p5Qviusskk
YouTube
Reversing CrackMe with Ghidra (Part 1)
Reverse Engineer CrackMe0x00.exe with me using Ghidra! Fix .text functions names in Ghidra: https://youtu.be/WENXr6iDu8A Download CrackMe0x00 at: https://git...
154 views
Pentester
https://github.com/secrary/Andromeda
GitHub
GitHub - secrary/Andromeda: Andromeda - Interactive Reverse Engineering Tool for Android Applications
Andromeda - Interactive Reverse Engineering Tool for Android Applications - secrary/Andromeda
126 views
Pentester
Better API Penetration Testing with Postman:-

Part 1:-
https://t.co/Xeb5rT0pYW

Part 2:-
https://t.co/IXKVcK8HjY

Part 3:-
https://t.co/uUsDxNlsFi

Part 4:-
https://t.co/O0zlGzEF9v
115 views
Pentester
https://medium.com/@ryanwendel/https-medium-com-ryan-wendel-burp-suite-tips-volume-1-3a37f49f8931
Medium
Burp Suite Tips — Volume 1
Compilation of basic Burp Suite tips to utilize when assessing the security posture of web applications.
109 views
Pentester
More C# utility. WMI utility allow you to run WMI query directly in C#. Can be used with execute-assembly.

https://t.co/dU4XzZxGTS
GitHub
Mr-Un1k0d3r/RedTeamCSharpScripts
C# Script used for Red Team. Contribute to Mr-Un1k0d3r/RedTeamCSharpScripts development by creating an account on GitHub.
103 views
Pentester
https://www.bleepingcomputer.com/news/security/vbulletin-zero-day-exploited-for-years-gets-unofficial-patch/
BleepingComputer
vBulletin Zero-Day Exploited for Years, Gets Unofficial Patch
A zero-day exploit for the vBulletin forum platform was publicly disclosed and quickly used to attack affected versions of the forum software. It turns out, though, that this exploit has been known, utilized, and sold by researchers and attackers for years.
98 views
Pentester
https://github.com/Team-Firebugs/Burp-LFI-tests
GitHub
GitHub - Team-Firebugs/Burp-LFI-tests: Fuzzing for LFI using Burpsuite
Fuzzing for LFI using Burpsuite. Contribute to Team-Firebugs/Burp-LFI-tests development by creating an account on GitHub.
96 views
Pentester
http://verneet.com/fuzzing-77-till-p1/
{err0rr}
Fuzzing {{7*7}} Till {{P1}} | {err0rr}
In this methodology I've specified a way to exploit SSTI where traditional methods of exploitation failed.
93 views
Pentester
SSRF(Server Side Request Forgery) writeups:-

https://t.co/RQrtL8ls2L
https://t.co/mbK0sW69m8
https://t.co/XAhD0T5DEe
https://t.co/HucqY77XyQ
https://t.co/jCWXUIuAHi
https://t.co/458Z62gsOb
https://t.co/guRJy9rKwD
https://t.co/D0BsTYiupz https://t.co/7pUpI4aozV
Medium
SSRF(Server Side Request Forgery)
Server Side Request Forgery (SSRF) is a type of attack that can be carried out to compromise a server. The exploitation of an SSRF…
101 views
Pentester
https://vavkamil.cz/2019/09/15/how-to-bypass-android-certificate-pinning-and-intercept-ssl-traffic/
Kamil Vavra @vavkamil
How to bypass Android certificate pinning and intercept SSL traffic
Offensive website security Bug bounty Ethical hacking
111 views