Information Security – Telegram

Information Security

415 subscribers

157 photos

5 videos

9 files

2.28K links

Information Security News

we are @sec_nerd twin brother

Download Telegram

About

Blog

Apps

Platform

Information Security

415 subscribers

Information Security

internet of shit

71 views08:15

Information Security

This media is not supported in your browser

VIEW IN TELEGRAM

So, what's your password?

#Cybersecurity #cyber #hack #hacking #Hacked #hacker #informationsecurity #infosec #informationtechnology #infowars #socialengineering #cybersecurityawareness #cyberawareness #digitalsecurity #password

67 views19:38

Information Security

Lateral Movement using WSHController/WSHRemote objects (IWSHController and IWSHRemote interfaces)

http://www.hexacorn.com/blog/2018/08/18/lateral-movement-using-wshcontroller-wshremote-objects-iwshcontroller-and-iwshremote-interfaces/

55 views19:48

Information Security

56 views20:17

Information Security

https://saelo.github.io/presentations/blackhat_us_18_attacking_client_side_jit_compilers.pdf

55 views23:53

Information Security

https://blogs.securiteam.com/index.php/archives/3783

55 views23:53

Information Security

https://blogs.securiteam.com/index.php/archives/3786

58 views23:53

Information Security

https://www.zdnet.com/article/google-launches-recaptcha-v3-that-detects-bad-traffic-without-user-interaction/

Google launches reCAPTCHA v3 that detects bad traffic without user interaction

reCAPTCHA v3 assigns incoming site visitors a risk score and lets webmasters takes custom actions based on this score.

62 views00:11

Information Security

51 views19:21

Information Security

A website that helps to understand even the wildest C/C++ declarations :) https://cdecl.org

59 views19:25

Information Security

new phrack paper

http://phrack.org/papers/viewer_discretion_advised.html

53 views19:28

Information Security

hashcat-brain - A Docker container for running a hashcat brain server

https://hub.docker.com/r/singelet/hashcat-brain/

52 views19:30

Information Security

63 views19:40

Information Security

We just updated our fork of MSF to the latest version. Meterpreter with DNS tunnel transport. Still not integrated into main branch of Rapid7.... so only fork

https://github.com/defcon-russia/metasploit-framework
https://github.com/defcon-russia/metasploit-payloads
https://asintsov.blogspot.com/2017/12/data-exfiltration-in-metasploit.html

GitHub - defcon-russia/metasploit-framework: Metasploit Framework

Metasploit Framework. Contribute to defcon-russia/metasploit-framework development by creating an account on GitHub.

57 views18:30

Information Security

a Constrained Language Mode implementation of Base64 that can be used in WMI Implant.

https://github.com/FortyNorthSecurity/CLM-Base64/blob/master/CLM-Base64.ps1

CLM-Base64/CLM-Base64.ps1 at master · FortyNorthSecurity/CLM-Base64

This project provides Base64 encoding and decoding functionality to PowerShell within Constrained Language Mode - CLM-Base64/CLM-Base64.ps1 at master · FortyNorthSecurity/CLM-Base64

55 views19:01

Information Security

This media is not supported in your browser

VIEW IN TELEGRAM

Firefox RCE - Clickjacking feed reader alongside weird Windows file picker behavior.

PoC: https://pastebin.com/raw/hhx1CEm3

56 views19:10

Information Security

curl https://0w.nz/pumpkin

52 views19:24

Information Security

https://0x00-0x00.github.io/research/2018/10/31/How-to-bypass-UAC-in-newer-Windows-versions.html

How to bypass UAC in newer Windows versions

57 views00:09

Information Security

https://www.bleepingcomputer.com/news/security/new-stuxnet-variant-allegedly-struck-iran/

BleepingComputer

New Stuxnet Variant Allegedly Struck Iran

A malware similar in nature to Stuxnet but more aggressive and sophisticated allegedly hit the infrastructure and strategic networks in Iran.

67 views01:12

Information Security

Need an in-memory option for the Rotten Potato exploit? Created "Reflective Potato", simple port for use as a reflective DLL and run entirely in memory! Included Cobalt Strike script and Metasploit module

https://github.com/realoriginal/reflectivepotato

66 views18:59

Information Security

Attack Methods for Gaining Domain Admin Rights in Active Directory

https://adsecurity.org/?p=2362

Active Directory & Azure AD/Entra ID Security

Attack Methods for Gaining Domain Admin Rights in Active Directory

There are many ways an attacker can gain Domain Admin rights in Active Directory. This post is meant to describe some of the more popular ones in current use. The techniques described here "assume breach" where an attacker already has a foothold on an internal…

63 views19:07