A hidden feature of Metasploit, is the ability to add SMB Named Pipe listeners in a meterpreter session to pivot on an internal network…

What is Hyperlink Injection, its basically spoofing or injecting a link while sending an email…

**Summary:** com.twitter.android.lite.TwitterLiteActivity is set to exported and doesn't validate data pass to intent due to which this activity vulnerable to steal users local files, javascript...

Symbolic Link attacks can lead to the escalation of privilege. They are easy to execute and have the potential to cause some serious damage.

The security flaws were identified by a cybersecurity firm Check Point, which the company claims to have fixed

Active Directory Assessment and Privilege Escalation Script - hausec/ADAPE-Script

Product Version: Avira VPN Operating System tested on: Windows 10 1709 (x64) Vulnerability: Avira VPN Service Local Privilege Escalation Brief Description: When the Phantom VPN Service (Avira.VPNSe…

This post is a complete walkthrough for the process of writing an exploit for CVE 2019-18634. I will talk about the methodologies used and why is it such a good bug to begin your real world exploitation skills. This bug allows for Local Privilege Escalation…

The project contains multiple shell scripts for automating the tasks during recon. - GitHub - shiblisec/Rekon: The project contains multiple shell scripts for automating the tasks during recon.

Tool to crawl, visualize and interact with SQL server links in a d3 graph to help in your red/blue/purple/.../risk assessments pentest hacking team exercises. - GitHub - etlownoise/xolo: Tool to...

On September 22, 2019, at 11:30 pm, I was preparing for my board exam and I feel tired reading all those stuff. Then I think to open…

Lately, I’ve prepared some PowerPoint slides for the scripting module of a course for ongoing system engineers. Now it’s time to share my work with the PowerShell community. The slides …