voidMOSity
@voidMOSity
Offensive Security Aficionado, Metal Head, Red Teamer, OSCP | OSCE
You might like
Container Security 101 I wrote a complete Docker security hardening guide covering: - Running as non-root user - Using minimal base images - Scanning for vulnerabilities - Handling secrets properly - Read-only filesystems - Dropping unnecessary capabilities - Setting resource
Build your own Operating System from this playlist
Voidmaw: A new bypass technique for memory scanners meterpreter.org/voidmaw-a-new-…
meterpreter.org
Voidmaw: A new bypass technique for memory scanners
voidmaw is a new bypass technique for memory scanners. It is useful in hiding problematic code that will be flagged by the antivirus vendors.
I published an introductory post on how to use return-oriented programming (ROP) to bypass security mechanisms, like ASLR, W^X, and stack canaries 👾 oliviagallucci.com/how-to-use-rop… #OffensiveSecurity #InfoSec #ROP
Process Injection Techniques, a useful synthesis offensive-panda.github.io/ProcessInjecti…
How have I not heard this absolute fire before? @amiraelfekyy you have a new fan! youtu.be/v5U3Ypxtr4o?si…
youtube.com
YouTube
Amira Elfeky - Coming Down (Official Video)
Complete free university course materials on program analysis, featuring symbolic execution. Includes lecture notes, slides, exercises, solutions and videos: buff.ly/3uscg4s #reversing #vulndev
GitHub - cyb3rxp/awesome-soc: A collection of sources of documentation, as well as field best practices, to build/run a SOC github.com/cyb3rxp/awesom…
After years of work, I am proud to announce the release of ROPfuscator, an obfuscation framework for LLVM-supported languages! The paper will appear at WOOT '23. Pre-print: pepe.runas.rocks/papers/ROPfusc… Code: github.com/ropfuscator/ro…
Releasing a Windows 11 LPE exploit by @FuzzySec and I. Exploits CVE-2023-21768, a vuln in afd.sys. Blog post soon! github.com/xforcered/Wind…
I learned about Kerberos Armoring today. It's cool! Kerberos armoring are features of the Kerberos authentication protocol that help prevent: - replay attacks - man-in-the-middle attacks - tampering with ticket contents - information disclosure attacks learn.microsoft.com/en-us/previous…
Platforms to learn to hack... ⚡️ → Hackthebox → Hacxpert → Tryhackme → Pentester Lab → Vulnhub → Cybrary → CybersecLabs → Root Me → OverTheWire → Vulnmachines → RangeForce → certifiedsecure → EchoCTF → Try2Hack #cybersecurity #bugbountytip #infosec #hacking
certsync. new technique in order to dump NTDS remotely, but this time without DRSUAP github.com/zblurx/certsync
github.com/OmriBaso/RToolZ Stealthy Lsass Dumper - can abuse ProcExp152.sys driver to dump PPL Lsass, no dbghelp.lib calls.
github.com
GitHub - OmriBaso/RToolZ: A Stealthy Lsass Dumper - can abuse ProcExp152.sys driver to dump PPL...
A Stealthy Lsass Dumper - can abuse ProcExp152.sys driver to dump PPL Lsass, no dbghelp.lib calls. - OmriBaso/RToolZ
BypassCredGuard Credential Guard Bypass Via Patching Wdigest Memory. github.com/wh0nsq/BypassC… t.me/hackgit/7336
New research 👉 Exception Oriented Programming, Part 2: Weaponizing Fundamental Weaknesses in Exception Unwinding to Gain Code Execution billdemirkapi.me/abusing-except…
GitHub - In4n1s357/Linux-Security-and-Hardening-Security-Guide: Linux Security and Hardening Security Guide github.com/In4n1s357/Linu…
United States Trends
- 1. Alysa Liu N/A
- 2. Bloomington N/A
- 3. Punch N/A
- 4. Cade N/A
- 5. Aliens N/A
- 6. Ley de Amnistía N/A
- 7. Canada N/A
- 8. #LCDLF6 N/A
- 9. Bears N/A
- 10. #PremioLoNuestro N/A
- 11. Toy Story 5 N/A
- 12. UFOs N/A
- 13. Bluepoint N/A
- 14. Sony N/A
- 15. Brunson N/A
- 16. Megan Keller N/A
- 17. #djbattle4 N/A
- 18. Tobias Harris N/A
- 19. ariana N/A
- 20. #BrokenOfLoveTheSeries N/A
Something went wrong.
Something went wrong.