Pentester

Today I'm releasing a novel DNS covert channel implant.

Everything is done over encoded AAAA requests (hostnames) and responses (IPv6 addresses) so it evades existing DNS detections.

Low bandwidth, 100% Python3 with no dependencies, run it anywhere

https://t.co/DQl7vqhJ50

GitHub

facebookincubator/WEASEL

DNS covert channel implant for Red Teams. Contribute to facebookincubator/WEASEL development by creating an account on GitHub.

113 views05:19

Pentester

Windows for Pentester: Certutil https://t.co/mtBqTPR0EB

Hacking Articles

Windows for Pentester: Certutil

In this article, we are going to describe the utility of Certutil tool and how vital it is in Windows Penetration Testing. TL; DR Certutil is a preinstalled tool on Windows OS that can be used to download malicious files and evade Antivirus. It is one of…

112 views05:21

Pentester

https://amp.kitploit.com/2019/11/atfuzzer-dynamic-analysis-of-at.html?amp=1&m=1

KitPloit ☣

ATFuzzer - Dynamic Analysis Of AT Interface For Android Smartphones

125 views05:31

Pentester

https://akijosberryblog.wordpress.com/2018/03/17/active-directory-as-a-c2-command-control/amp/?__twitter_impression=true

Akijosberry

Active Directory as a C2 (Command & Control)

Active Directory as a C2 Really ? I was amazed when i read a blog post on AD as a C2 on @Harmj0y’s blog. Curiosity grew into me and wanted to explore it in my lab setup. Why AD as a C2? Activ…

124 views19:38

Pentester

https://medium.com/swlh/hacking-xml-data-a64c870b0988

Medium

Hacking XML Data

Obtaining illegal data access using XPATH injections

120 views04:48

Pentester

https://maddiestone.github.io/AndroidAppRE/

113 views20:00

Pentester

Just released subfinder v2.0. It's now faster, better and more clean. Get it now at https://t.co/gHGXx7xM7T

GitHub

projectdiscovery/subfinder

Subfinder is a subdomain discovery tool that discovers valid subdomains for websites. Designed as a passive framework to be useful for bug bounties and safe for penetration testing. - projectdiscov...

141 views20:21

Pentester

https://h0mbre.github.io/Learn-C-By-Creating-A-Rootkit/#

The Human Machine Interface

Creating a Rootkit to Learn C

Background Information This post is my solution for the last assignment in my Learning-C repository. I thought a good way to cap off a repo designed to introduce people to very basic C programming would be to take those very basic techinques and make a simple…

166 views20:28

Pentester

Fast DNS servers:

64.6.64.6 - verisign
1.1.1.1 - cloudflare
9.9.9.9 - quad9
84.200.69.80 - dnswatch
94.247.43.254 - opennic
89.233.43.71 - censurfridns
94.130.110.185 - dnsprivacy
208.67.222.222 - opendns

134 views08:56

Pentester

https://github.com/0vercl0k/CVE-2019-11708/

GitHub

GitHub - 0vercl0k/CVE-2019-11708: Full exploit chain (CVE-2019-11708 & CVE-2019-9810) against Firefox on Windows 64-bit.

Full exploit chain (CVE-2019-11708 & CVE-2019-9810) against Firefox on Windows 64-bit. - 0vercl0k/CVE-2019-11708

138 views13:44

Pentester

i have finished building my github repository which talk about #OSINT.a very important repository for ethical hackers and and #BugBounty hunters and of course #OSINT lovers
the repository for now contain 100 tips and it will get daily updates
https://t.co/gNMSDGULS6

GitHub

blaCCkHatHacEEkr/OSINT_TIPS

This repository was created and developed by Ammar Amer @cry__pto Only. Updates to this repository will continue to arrive until the number of TIPS reach 1000 TIPS .Learn Ethical Hacking and penetr...

134 views16:16

Pentester

Repo for learning HTTP-Smuggling. https://t.co/46QigLEevo

GitHub

ZeddYu/HTTP-Smuggling-Lab

Use HTTP Smuggling Lab to learn HTTP Smuggling. Contribute to ZeddYu/HTTP-Smuggling-Lab development by creating an account on GitHub.

132 views16:36

Pentester

144 views16:40