Information Security

https://0day.today/exploit/33166

WordPress #GoURL.io Plugin < 1.4.14 - File Upload Exploit

94 views07:53

https://www.youtube.com/watch?v=kjVtEfT36oc

Confluence Server and Confluence Data Center Local File Disclosure(CVE-2019-3394)

Confluence Server and Confluence Data Center Local File Disclosure(CVE-2019-3394) with Pocsuite3 by Knownsec 404 Team. https://www.seebug.org/vuldb/ssvid-98064

89 views17:05

Information Security

Updated TikiLateral to use .NET WMI stuff instead of wmic on the command line

https://rastamouse.me/2019/06/the-return-of-aggressor/

86 views17:05

Information Security

Cheatsheet containing various Kerberos attacks and PoCs

-ASREPRoast
-Kerberoasting
-Pass The Ticket (PTT)
-Silver ticket
-Golden ticket

https://gist.github.com/TarlogicSecurity/2f221924fef8c14a1d8e29f3cb5c5c4a

Gist

A cheatsheet with commands that can be used to perform kerberos attacks

A cheatsheet with commands that can be used to perform kerberos attacks - kerberos_attacks_cheatsheet.md

79 views17:10

Information Security

Rooting RouterOS with a USB Drive

https://medium.com/tenable-techblog/rooting-routeros-with-a-usb-drive-16d7b8665f90

Medium

Rooting RouterOS with a USB Drive

Putting CVE-2019–15055 to Work

83 views17:17

Information Security

https://cccsecuritycenter.org/remediation/llmnr-nbt-ns

89 views17:22

Information Security

https://medium.com/think-stack/preventing-lateral-movement-using-network-access-groups-7e8d539a9029

Medium

Preventing Lateral Movement Using Network Access Groups

At least once a week I get on a rant about network segmentation. After all, it is one of the NSA Top Ten Cybersecurity Mitigation…

102 views17:22

Information Security

On modern #Windows systems one can capture traffic without sniffer, just by "netsh trace start capture=yes" command => ETL file created.

91 views18:52

Information Security

Exploit of the day Bluekeep CVE-2019-0708

https://blog.firosolutions.com/exploits/bluekeep/

Firosolutions

Bluekeep CVE-2019-0708

107 views18:53

Information Security

nmap-bootstrap-xsl

A Nmap XSL implementation with Bootstrap.

https://github.com/honze-net/nmap-bootstrap-xsl/

GitHub

GitHub - honze-net/nmap-bootstrap-xsl: A Nmap XSL implementation with Bootstrap.

A Nmap XSL implementation with Bootstrap. Contribute to honze-net/nmap-bootstrap-xsl development by creating an account on GitHub.

95 views19:06

Information Security

Pass-The-Hash with RDP in 2019

https://shellz.club/pass-the-hash-with-rdp-in-2019/

94 views19:06

Information Security

https://osint.support/

88 views19:08

Information Security

This media is not supported in your browser

VIEW IN TELEGRAM

Technical Advisory: Bypassing Workflows Protection Mechanisms - Remote Code Execution on SharePoint

bit.ly/2PoFU0H

90 views19:11

Information Security

87 views19:12

Information Security

https://github.com/staz0t/hashcatch

83 views19:16

Information Security

GUI_UAC_bypassX
https://github.com/sailay1996/GUI_UAC_bypassX/blob/master/README.md

GitHub

sailay1996/GUI_UAC_bypassX

gui uac bypass (netplwiz.exe). Contribute to sailay1996/GUI_UAC_bypassX development by creating an account on GitHub.

88 views19:19

Information Security

PAExec is a free, redistributable and open source equivalent to Microsoft's popular PsExec application:

https://github.com/poweradminllc/PAExec

GitHub

GitHub - poweradminllc/PAExec: Remote execution, like PsExec

Remote execution, like PsExec. Contribute to poweradminllc/PAExec development by creating an account on GitHub.

86 views19:08

Information Security

https://zerodium.com/program.html#changelog

93 views19:38

Information Security

Lateral Movement Using internetexplorer.Application Object ( COM )

https://homjxi0e.wordpress.com/2018/02/15/lateral-movement-using-internetexplorer-application-object-com/

matthomjxi0e

Lateral Movement Using internetexplorer.Application Object ( COM )

introduction Use Object COM ( InternetExplorer.Application ) For Execute using Types Exploit-internet Explorer For Execute ==> in Add On Internet Explorer For Get Execute Code using Lateral Move…

89 views08:29

Information Security

https://medium.com/@markmotig/command-prompt-with-system-rights-using-schtasks-ncat-and-metame-d2d333a710aa

Medium

Command prompt with System rights using Schtasks, Ncat and Metame

This is nothing new, but it might be new to someone. Sometimes I just want to run a command prompt as system. There is always “psexec -i…

88 views19:40

Information Security

https://rastamouse.me/2019/09/mwr-labs-c3-first-look/

93 views19:43

About

Blog

Apps

Platform