Information Security
414 subscribers
157 photos
5 videos
9 files
2.28K links
Information Security News

we are @sec_nerd twin brother
Download Telegram
A 9-step recipe to crack a NTLMv2 Hash from a freshly acquired .pcap


https://research.801labs.org/cracking-an-ntlmv2-hash/
Want to bypass Powershell/.Net AMSI, but don't want your bypass code to be inspected? .Net Profilers to the rescue! This nifty little feature allows you to inject a (native) dll into new .Net processes using an env variable.


https://github.com/djhohnstein/.NET-Profiler-DLL-Hijack
0day in forticlient 6.0.3.0155

https://blog.secu.dk/blog/Forticlient/
netstat -lepunt # Show the TCP and UDP ports being listened on and if you're root, also show the process associated, user, etc.
Server-Side Spreadsheet Injection – Formula Injection to Remote Code Execution

https://www.bishopfox.com/blog/2018/06/server-side-spreadsheet-injections/
Merry Christmas. I hope nobody buys you a spy device this year. (they probably did)
echo -e 'MERRY\n CHRISTMAS!' | toilet -w130 | boxes -d santa | grep --color .