You might like
Have creds to a network? Need help finding sensitive files and passwords? 1) git clone github.com/SpiderLabs/sca… 2) python3 ./scavenger.py smb -t 10.0.0.10 -u administrator -p Password123 -d test.local trustwave.com/en-us/resource…
Short blog and POC code for CVE-2019-1040 (patched last Tuesday). Combining this vulnerability with the SpoolService bug and Kerberos delegation means: any AD user to Domain Admin; RCE on unpatched hosts; possible over Forest trusts. dirkjanm.io/exploiting-CVE… TL;DR: GO PATCH!
API Penetration Testing:- blog.secureideas.com/2019/03/better… blog.cobalt.io/pen-testing-in… redteamsecure.com/api-enumeratio… rarefied.co/api-penetratio… peerlyst.com/posts/resource… youtube.com/watch?v=43G_nS… pentestgeek.com/burp-suite/pla… github.com/mingrammer/api… soapui.org/rest-testing/g… templarbit.com/blog/2018/01/1…
Do you want to #exploit misconfigured #Splunk Universal Forwarders (HTTPS/8089)? 💣 I offer you two tools for Remote Code Execution #RCE and Local Privilege Escalation #LPE. Python and C# 😎 📄 clement.notin.org/blog/2019/02/2… 👨💻 github.com/cnotin/SplunkW…
Get a list of IPs connected via #RDP so far PS C:\> Get-WinEvent -Log 'Microsoft-Windows-TerminalServices-LocalSessionManager/Operational' | select -exp Properties | where {$_.Value -like '*.*.*.*' } | sort Value -u #sysadmin #PowerShell #audit #blueteam
Have you checked your PSReadline history lately? Do you know it stores the commands in clear-text and is persistent across reboots? This is on a Domain Controller. #PowerShell #RedTeam
Slides from my #DerbyCon talk "From Workstation to Domain Admin..." are now on ADSecurity.org. Slides: adsecurity.org/?page_id=1352 Talk Video: youtube.com/watch?v=Wdbm2_…
Well said :D
If you are a vendor that has a public bug bounty program on BugCrowd or HackerOne, and you require researchers to purchase your products in order to find bugs for you, you suck.
CVE-2018-17182 - PoC New Linux Kernel ( 3.16 - 4.18.8.) - Privilege Escalation #infosec #pentest #vulnerability #exploitDev bugs.chromium.org/p/project-zero…
Blogpost about a new #persistence technique I discovered abusing the Appx/UWP debugger. Technique is not shown by #Autoruns and runs commands at logon of the user. A simple registry key is all that is needed. Enjoy! #RedTeam #DFIR #Pentest #Blogpost oddvar.moe/2018/09/06/per…
Here is my write up on how I discovered and exploited a privilege escalation bug affecting Windows 10, Server 2016, and Visual Studio (CVE-2018-0952): atredis.com/blog/cve-2018-…
This is going to be some great insight into getting a handle on your AD security posture.
This Thursday: @CptJesus and I present, "How To Build Adversary Resilience Into Your Active Directory Environment". Register here: brighttalk.com/webcast/15713/…
Stack Based Buffer Overflows on x64 (Windows) #exploitdev #infosec #pentest nytrosecurity.com/2018/01/24/sta…
GPO Vs Applocker Restrictions goo.gl/qdB7Z5 presented at @nullDubai Jan’18 Meet. Learnt lot from @Oddvarmoe @netbiosX @redcanaryco blogs.
speakerdeck.com
GPO Vs Applocker Restrictions
Presented at null Dubai Meet 26 January 2018 Monthly Meet
Good current overview of Sysmon and the SysmonView 3rd-party log analysis/visualization tool
This article did a better job describing #Sysmon View than I did fwhibbit.es/sysmon-the-big…
This post on Event forwarding was really useful - blogs.technet.microsoft.com/jepayne/2015/1… - Thanks @jepayneMSFT for sharing - Was not aware of NetworkSvc
The updated 1-page Malware Analysis Cheat Sheet is now available, including the latest tools and techniques: zeltser.com/malware-analys…
Jumping Network Segregation with RDP rastamouse.me/2017/08/jumpin… Shout-out to @gentilkiwi for DPAPI magic
United States Trends
- 1. National Guard 263K posts
- 2. Thanksgiving 483K posts
- 3. Cease 16.9K posts
- 4. Arsenal 489K posts
- 5. Liverpool 156K posts
- 6. Blue Jays 5,309 posts
- 7. Blood 178K posts
- 8. Slot 128K posts
- 9. Bayern 252K posts
- 10. Frank Ragnow 8,691 posts
- 11. Neuer 25.6K posts
- 12. Martinelli 33.4K posts
- 13. Seditious Six 130K posts
- 14. Declan Rice 30.9K posts
- 15. Anfield 28.4K posts
- 16. Konate 18.9K posts
- 17. Al Sharpton 2,899 posts
- 18. Afghan 21.4K posts
- 19. Insurrection Act 7,401 posts
- 20. #triplegobble N/A
Something went wrong.
Something went wrong.