Forwarded from امنیت اطلاعات
Gerix WiFi Cracker 2018
https://github.com/kimocoder/gerix-wifi-cracker
#wifi
#network
#pentest
@sec_nerd
  https://github.com/kimocoder/gerix-wifi-cracker
#wifi
#network
#pentest
@sec_nerd
evil-ssdp. Spoof SSDP replies to phish for NTLM hashes on a network
https://gitlab.com/initstring/evil-ssdp
  
  https://gitlab.com/initstring/evil-ssdp
GitLab
  
  initstring / evil-ssdp · GitLab
  Spoof SSDP replies to phish for credentials and NetNTLM challenge/response. Creates a fake UPNP device, tricking users into visiting a malicious phishing page. Also detects and exploits XXE...
  A 9-step recipe to crack a NTLMv2 Hash from a freshly acquired .pcap
https://research.801labs.org/cracking-an-ntlmv2-hash/
  https://research.801labs.org/cracking-an-ntlmv2-hash/
Want to bypass Powershell/.Net AMSI, but don't want your bypass code to be inspected? .Net Profilers to the rescue! This nifty little feature allows you to inject a (native) dll into new .Net processes using an env variable.
https://github.com/djhohnstein/.NET-Profiler-DLL-Hijack
  
  https://github.com/djhohnstein/.NET-Profiler-DLL-Hijack
GitHub
  
  GitHub - djhohnstein/.NET-Profiler-DLL-Hijack: Implementation of the .NET Profiler DLL hijack in C#
  Implementation of the .NET Profiler DLL hijack in C# - djhohnstein/.NET-Profiler-DLL-Hijack
  Windows Kernel Exploitation Tutorial
https://rootkits.xyz/blog/2017/06/kernel-setting-up/
https://rootkits.xyz/blog/2017/08/kernel-stack-overflow/
https://rootkits.xyz/blog/2017/09/kernel-write-what-where/
https://rootkits.xyz/blog/2017/11/kernel-pool-overflow/
https://rootkits.xyz/blog/2018/01/kernel-null-pointer-dereference/
https://rootkits.xyz/blog/2018/01/kernel-uninitialized-stack-variable/
https://rootkits.xyz/blog/2018/03/kernel-uninitialized-heap-variable/
https://rootkits.xyz/blog/2018/04/kernel-use-after-free/
@sec_nerd_en
  
  https://rootkits.xyz/blog/2017/06/kernel-setting-up/
https://rootkits.xyz/blog/2017/08/kernel-stack-overflow/
https://rootkits.xyz/blog/2017/09/kernel-write-what-where/
https://rootkits.xyz/blog/2017/11/kernel-pool-overflow/
https://rootkits.xyz/blog/2018/01/kernel-null-pointer-dereference/
https://rootkits.xyz/blog/2018/01/kernel-uninitialized-stack-variable/
https://rootkits.xyz/blog/2018/03/kernel-uninitialized-heap-variable/
https://rootkits.xyz/blog/2018/04/kernel-use-after-free/
@sec_nerd_en
rootkit
  
  Windows Kernel Exploitation Tutorial Part 1: Setting up the Environment - rootkit
  Intro Recently, I had the pleasure to attend the training on Windows Kernel Exploitation at nullcon by the HackSysTeam. The training was well executed, and I got the intro into the world of kernel. But, as you know, nobody could teach you internals about…
  netstat -lepunt # Show the TCP and UDP ports being listened on and if you're root, also show the process associated, user, etc.
  Server-Side Spreadsheet Injection – Formula Injection to Remote Code Execution
https://www.bishopfox.com/blog/2018/06/server-side-spreadsheet-injections/
  https://www.bishopfox.com/blog/2018/06/server-side-spreadsheet-injections/
Bypass all anti-viruses by Encrypted Payloads with C#
https://www.peerlyst.com/posts/bypass-all-anti-viruses-by-encrypted-payloads-with-c-damon-mohammadbagher-1
  
  https://www.peerlyst.com/posts/bypass-all-anti-viruses-by-encrypted-payloads-with-c-damon-mohammadbagher-1
Peerlyst
  
  Bypass all anti-viruses by Encrypted Payloads with C#
  Some people asked me about how you can bypass all AV anti-viruses?My answer is: very simple. But this is Secretly Technique and the most pentester or hackers never share that for other people. They have their reason for that like me and I can tell yo
  Merry Christmas. I hope nobody buys you a spy device this year. (they probably did)
  echo -e 'MERRY\n CHRISTMAS!' | toilet -w130 | boxes -d santa | grep --color .
  