Information Security

UAC Bypass using SystemPropertiesAdvanced.exe and DLL Hijacking (Server 2019)

https://egre55.github.io/system-properties-uac-bypass/

egre55.github.io

SystemPropertiesAdvanced.exe DLL Hijacking UAC Bypass

99 views18:18

Information Security

A short write up about a PDF callback request, which can also be used steal NTMLv2 hashes

https://insert-script.blogspot.com/2019/01/adobe-reader-pdf-callback-via-xslt.html

Blogspot

Adobe Reader - PDF callback via XSLT stylesheet in XFA

I have seen on twitter that there is use for another PDF callback Proof-of-Concept in Adobe Reader. Last year a PDF file called " BadPDF "...

109 views19:02

Information Security

Server Tailgating – A Chosen Plaintext Attack on RDP

https://www.blackhat.com/docs/asia-18/asia-18-Karni-Zinar-Blachman-Server-Tailgating-A-Chosen-Plaintext-Attack-on-RDP.pdf

131 views19:11

Information Security

How to Hack an Expensive Camera and Not Get Killed by Your Wife

https://alexhude.github.io/2019/01/24/hacking-leica-m240.html

Focusing on different bits

How to Hack an Expensive Camera and Not Get Killed by Your Wife

Disclaimer

145 views19:24

Information Security

inurl:"/secure/attachment/" jira intext:password

146 views18:58

Information Security

Red Team Nightmare (AV Bypass)

https://techryptic.github.io/2018/07/17/Red-Team-Nightmare-(AV-Bypass)/

107 views18:24

Information Security

https://www.fireeye.com/blog/threat-research/2019/01/apt39-iranian-cyber-espionage-group-focused-on-personal-information.html

Mandiant

APT39 | Iranian Threat Group Focused on Personal Information

APT39 is an Iranian cyber espionage group responsible for the widespread theft of personal information, setting it apart from other Iranian threat groups.

99 views13:43

Information Security

Mimikatz HashClash

https://github.com/caseysmithrc/MimkatzCollider

GitHub

caseysmithrc/MimkatzCollider

Mimikatz HashClash. Contribute to caseysmithrc/MimkatzCollider development by creating an account on GitHub.

98 views18:56

Information Security

https://searchsecurity.techtarget.com/answer/How-can-attacks-bypass-Windows-Driver-Signature-Enforcement?utm_campaign=ssec_security&utm_content=1548362474&utm_medium=social&utm_source=twitter

SearchSecurity

How can attacks bypass Windows Driver Signature Enforcement?

Endgame security researchers demonstrated a new fileless attack technique at Black Hat 2018. Learn from Nick Lewis how this attack can bypass Windows Driver Signature Enforcement.

109 views22:02

Information Security

Writeup – Samsung Galaxy Apps Store RCE via MITM

https://www.adyta.pt/2019/01/29/writeup-samsung-app-store-rce-via-mitm/

105 views18:24

Information Security

Amazing number of potential execution paths within a standard Windows folder! #LOLBINs #DFIR #WSL

84 views17:58

Information Security

Exploiting SSRF in AWS Elastic Beanstalk

https://www.notsosecure.com/exploiting-ssrf-in-aws-elastic-beanstalk/

NotSoSecure

Exploiting SSRF in AWS Elastic Beanstalk

In this blog, Sunil Yadav, our lead trainer for "Advanced Web Hacking " training class, will discuss a case study where a Server-Side Request Forgery (SSRF) vulnerability was identified and exploited

87 views18:02

Information Security

ActiveX Exploitation in 2019 :: Instantiation is not Scripting

https://srcincite.io/blog/2019/02/01/activex-exploitation-in-2018-instantiation-is-not-scripting.html

92 views18:07

Information Security

Extracting hard-coded credentials using managed code debugging techniques in Windbg (2012)

http://www.exploit-monday.com/2012/05/extracting-hard-coded-credentials-using.html

Exploit-Monday

Extracting hard-coded credentials using managed code debugging techniques in Windbg

tl;dr version Using some simple managed code debugging techniques, you can easily pull out hard-coded credentials from a binary claiming t...

111 views18:11

Information Security

RemoteRecon

https://github.com/xorrior/RemoteRecon

94 views18:31

Information Security

Windows Exploitation Tricks: Exploiting Arbitrary Object Directory Creation for Local Elevation of Privilege

https://googleprojectzero.blogspot.com/2018/08/windows-exploitation-tricks-exploiting.html

Blogspot

Windows Exploitation Tricks: Exploiting Arbitrary Object Directory Creation for Local Elevation of Privilege

Posted by James Forshaw, Project Zero And we’re back again for another blog in my series on Windows Exploitation tricks. This time I’ll...

129 views18:34

Information Security

SharpExchangePriv

https://github.com/panagioto/SharpExchangePriv

GitHub

GitHub - panagioto/SharpExchangePriv: A C# implementation of PrivExchange by @_dirkjan.

A C# implementation of PrivExchange by @_dirkjan. Contribute to panagioto/SharpExchangePriv development by creating an account on GitHub.

113 views18:35

Information Security

Script to generate #AMSI bypass stager

https://github.com/airman604/amsi_bypassr

GitHub

airman604/amsi_bypassr

AMSI bypass stager generator. Contribute to airman604/amsi_bypassr development by creating an account on GitHub.

96 views19:33

Information Security

proxysocks

https://github.com/citronneur/detours.net/tree/master/plugins/proxysocks

GitHub

detours.net/plugins/proxysocks at master · citronneur/detours.net

Hook native API with C#. Contribute to citronneur/detours.net development by creating an account on GitHub.

102 views19:45

Information Security

https://go.recordedfuture.com/hubfs/reports/cta-2019-0206.pdf

130 views22:12

About

Blog

Apps

Platform