Information Security – Telegram

Information Security

420 subscribers

157 photos

5 videos

9 files

2.28K links

Information Security News

we are @sec_nerd twin brother

Download Telegram

About

Blog

Apps

Platform

Information Security

420 subscribers

Information Security

EDM proxy for infecting files on-the-fly

Offensive Proxy server

POC for infecting PE files, ZIP files, Office documents on the fly during a HTTP MitM.

https://github.com/LeonardoNve/edm

#wtf
#mitm
#windows

@sec_nerd_en

LeonardoNve/edm

Encima De la Mosca HTTP proxy POC for infecting files on-the-fly and SSLstrip2 - LeonardoNve/edm

278 views17:57

Information Security

https://twitter.com/SwiftOnSecurity/status/1030193315948453889

#windows
#fun

@sec_nerd_en

SwiftOnSecurity

When the Windows Server comes back up after patching https://t.co/MI2ebE16lw

46 views18:07

Information Security

Use PowerShell to Find the History of USB Flash Drive Usage

https://blogs.technet.microsoft.com/heyscriptingguy/2012/05/18/use-powershell-to-find-the-history-of-usb-flash-drive-usage/

#windows
#ps
#enum

@sec_nerd_en

48 views18:37

Information Security

https://www.youtube.com/watch?v=b1ahj347pDc

#Windows_API_Hooking
#Malware_Detection

How Function Hooking / Detouring Works

Get My Visual Studio Theme! https://www.patreon.com/posts/how-to-get-and-8806134

• Support me on Patreon: http://www.patreon.com/Zer0Mem0ry
• Donate Bitcoin: 1JhSKGgRQmir8rRF4Sm5CP4fDDofKFAypd
• Facebook: https://www.facebook.com/Zer0Mem0ry
• Twitter: h…

43 views20:15

Information Security

https://www.malwaretech.com/2015/01/inline-hooking-for-programmers-part-2.html

#Windows_API_Hooking
#Malware
#PoC

Inline Hooking for Programmers (Part 2: Writing a Hooking Engine)

We’ll be writing a hooking engine using trampoline based hooks as explained in the previous article (we don’t handle relative instructions as they’re very rare, but we do use atomic write operations to prevent race conditions).

First things first, we need…

48 views20:15

Information Security

https://msdn.microsoft.com/en-us/library/ms809762.aspx

#PE_File_Mapping
#Windows_Internals
#Malware_Detection

46 views11:48

Information Security

Windows Process Injection: PROPagate

https://modexp.wordpress.com/2018/08/23/process-injection-propagate/

#windows
#exploit

@sec_nerd_en

Windows Process Injection: PROPagate

Introduction In October 2017, Adam at Hexacorn published details of a process injection technique called PROPagate. In his post, he describes how any process that uses subclassed windows has the po…

44 views17:57

Information Security

Attack Methods for Gaining Domain Admin Rights in Active Directory

https://adsecurity.org/?p=2362

#windows
#ad

@sec_nerd_en

41 views19:34

Information Security

Backdooring PE-File (with ASLR)

https://hansesecure.de/backdooring-pe-file-with-aslr/

#windows

74 views19:07

Information Security

Just released a new #mimikatz version to support Windows 10 1803 to bypass the Credential Guard authentication chain

https://github.com/gentilkiwi/mimikatz/releases

#windows
#mimikatz

44 views19:28