Posted by James Forshaw, Project Zero And we’re back again for another blog in my series on Windows Exploitation tricks. This time I’ll...

A C# implementation of PrivExchange by @_dirkjan. Contribute to panagioto/SharpExchangePriv development by creating an account on GitHub.

AMSI bypass stager generator. Contribute to airman604/amsi_bypassr development by creating an account on GitHub.

Hook native API with C#. Contribute to citronneur/detours.net development by creating an account on GitHub.

UAC, specifically Admin-Approval mode, has been known to be broken ever since it was first released in Windows Vista. Most of the research of bypassing UAC has focused on abusing bad elevated application behavior, auto elevation or shared registry and file…

In this tutorial, I explain how to dynamically create a 1D array by passing the size in from the command line. Also I show how we can manipulate the dynamica...

CVE-2019-1003000-Jenkins-RCE-POC. GitHub Gist: instantly share code, notes, and snippets.

Parses Kerberos Keytab files. GitHub Gist: instantly share code, notes, and snippets.

Detecting remote service creation with 5145 - Logic: [EventID=5145 & ShareName=(\\*\ADMIN$ or \\*\C$)) followedby (EventID=5145 & ShareName='\\*\IPC$' and RelativeTargetName:'svcctl')] within 1min & Same [AccountName, SourceAddres,Port], example REMCOM (PsExec…

Jenkins RCE Proof-of-Concept: SECURITY-1266 / CVE-2019-1003000 (Script Security), CVE-2019-1003001 (Pipeline: Groovy), CVE-2019-1003002 (Pipeline: Declarative) - adamyordan/cve-2019-1003000-jenkins...

This is 🍊 speaking

  Introduction Over the past few weeks, we have been monitoring suspicious activity directed against Russian-based companies that exposed a predator-prey relationship that we had not seen before. For the first time we were observing what seemed to be a c…

Introduction The inspiration to the following research was a CTF task called namespaces by _tsuro from the 35C3 CTF . While solvin...