Just pushed another snippet to OffensiveNim implementing the token sandboxing technique discovered by @gabriellandau. gr33tz to @0xpwnisher for the C++ PoC. github.com/byt3bl33d3r/Of…

VIM Command Cheatsheet #infosec #cybersecurity #pentesting #oscp #informationsecurity #cissp #CyberSec #networking #networksecurity #Security #CheatSheet #infosecurity #linux #unix #vim

CVE-2022-20699: Cisco Anyconnect VPN unauth RCE (rwx stack) it is not well checked. cc @FlashbackPwn PoC github.com/Audiobahn/CVE-…

StackScraper - Capturing sensitive data using real-time stack scanning against a remote process HTTPS won't save you here! x86matthew.com/view_post?id=s…

#cybersecurity #github

youtu.be/inRofFqeoLI New video, using Mimikatz as a RAT. Hope you guys like it.

In this blog post, we’ll look at a Windows Print Spooler local privilege escalation vulnerability that I found and…

Windows 11. Not sure if I should be happy, or not... 🤔

📖 The Cyber Plumber's Handbook Useful book for understanding the basics of SSH tunneling, SOCKS proxies, port redirection, and how to utilise them with other tools like proxychains, nmap, Metasploit, etc. github.com/opsdisk/the_cy… #infosec #cybersecurity…

This person bought a pizza for 10,000 BTC in 2010, now that would be worth $443 million USD.

Instagram SSL pinning bypass: Frida okay = Module.getBaseAddress("FBSharedFramework").add(0x0a8b1c); patchsize=4; Memory.patchCode(okay,patchsize, code => {con st cw = new Arm64Writer(code, { pc: ayy });cw.putBytes([0x60,0x0D,0x00,0x54])}) *find the correct…

How can we run arbitrary code without allocating/overwriting executable memory? We "borrow" (abuse) instructions from ntdll.dll! x86matthew.com/view_post?id=w…

CVE-2022-0435: Linux Kernel Remote Stack Overflow @sam4k1 disclosed remotely and locally reachable stack overflow in Transparent Inter-Process Communication (TIPC). openwall.com/lists/oss-secu… [1/3]

CVE-2021-40443: oob write of NULL bytes and 1 QWORD (0xffffffff00000000) => LPE in clfs.sys

Mimikatz in JS Dropper. One Liner Should be detected. ymmv. gist.github.com/secdev-01/3edc…

CVE-2021-41773 POC 127.0.0.1/cgi-bin/.%2e/%2e%2e/%2e%2e/%2e%2e/etc/passwd

CVE-2021-40444 simple demonstration PoC Exploit: github.com/lockedbyte/CVE…

Found RCE Apache Druid(CVE-2021-25646) Nuclei Templates goes here @pdnuclei 🔥 Poc: gist.github.com/pikpikcu/d208f…

Exploit for CVE-2022-21999 - Windows Print Spooler Elevation of Privilege Vulnerability (LPE) - ly4k/SpoolFool

SpoolFool: Windows Print Spooler Privilege Escalation (CVE-2022-21999) PoC research.ifcr.dk/spoolfool-wind…

Introduction I played Hayyim CTF 2022 with keymoon, st98, and theoremoon. We solved all pwn tasks there and stood the 3rd place. *1 There was a pwn challenge to…