Hacking

193 bookmarks

Custom sorting

fatedier/frp: A fast reverse proxy to help you expose a local server behind a NAT or firewall to the internet.

A fast reverse proxy to help you expose a local server behind a NAT or firewall to the internet. - GitHub - fatedier/frp: A fast reverse proxy to help you expose a local server behind a NAT or fire...

·github.com·Apr 20, 2023

fatedier/frp: A fast reverse proxy to help you expose a local server behind a NAT or firewall to the internet.

Building a Budget Red Team Implant

Why Do I Need an Implant?

#physical-hacking #openvpn

·blog.devgenius.io·Apr 18, 2023

Building a Budget Red Team Implant

center-for-threat-informed-defense/adversary_emulation_library: An open library of adversary emulation plans designed to empower organizations to test their defenses based on real-world TTPs.

An open library of adversary emulation plans designed to empower organizations to test their defenses based on real-world TTPs. - GitHub - center-for-threat-informed-defense/adversary_emulation_li...

#threat-emulation

·github.com·Apr 18, 2023

center-for-threat-informed-defense/adversary_emulation_library: An open library of adversary emulation plans designed to empower organizations to test their defenses based on real-world TTPs.

trickest/cve

Gather and update all available and newest CVEs with their PoC.

#cve

·github.com·Apr 17, 2023

trickest/cve

LOLDrivers

LOLBins but Drivers

#windows-driver #vulnerable-driver

·loldrivers.io·Apr 5, 2023

LOLDrivers

GitHub - GoSecure/pyrdp: RDP monster-in-the-middle (mitm) and library for Python with the ability to watch connections live or after the fact

RDP monster-in-the-middle (mitm) and library for Python with the ability to watch connections live or after the fact - GitHub - GoSecure/pyrdp: RDP monster-in-the-middle (mitm) and library for Pyth...

#rdp #windows-hacking #windows

·github.com·Feb 23, 2023

GitHub - GoSecure/pyrdp: RDP monster-in-the-middle (mitm) and library for Python with the ability to watch connections live or after the fact

Rpc toolkit fantastic interfaces how to find

#windows-hacking #windows-rpc #windows

·akamai.com·Feb 22, 2023

Rpc toolkit fantastic interfaces how to find

Nightmare: One Byte to ROP // Deep Dive Edition - HackMD

# Nightmare: One Byte to ROP // Deep Dive Edition ## Introduction In this write-up, we'll discuss ho

·hackmd.io·Feb 20, 2023

Nightmare: One Byte to ROP // Deep Dive Edition - HackMD

Windows 10 Update Archive

null

·ms-vnext.net·Feb 14, 2023

Windows 10 Update Archive

GitHub - SafeBreach-Labs/Back2TheFuture: Find patterns of vulnerabilities on Windows in order to find 0-day and write exploits of 1-days. We use Microsoft security updates in order to find the patterns.

Find patterns of vulnerabilities on Windows in order to find 0-day and write exploits of 1-days. We use Microsoft security updates in order to find the patterns. - GitHub - SafeBreach-Labs/Back2The...

·github.com·Jan 27, 2023

Winbindex - The Windows Binaries Index

An index of Windows binaries, including download links for executables such as exe, dll and sys files

#exploits #windows-exploits

·winbindex.m417z.com·Jan 25, 2023

Winbindex - The Windows Binaries Index

GitHub - optiv/Ivy: Ivy is a payload creation framework for the execution of arbitrary VBA (macro) source code directly in memory. Ivy’s loader does this by utilizing programmatical access in the VBA object environment to load, decrypt and execute shellcode.

Ivy is a payload creation framework for the execution of arbitrary VBA (macro) source code directly in memory. Ivy’s loader does this by utilizing programmatical access in the VBA object environmen...

#vba #macros #malware-evasion

·github.com·Jan 24, 2023

GitHub - D1rkMtr/RecyclePersist: implementation of Persistence via Recycle Bin by adding "open\command" subkey to the "HKCR\CLSID\{645FF040-5081-101B-9F08-00AA002F954E}\shell" key and changing its value to the implant path

implementation of Persistence via Recycle Bin by adding "open\command" subkey to the "HKCR\CLSID\{645FF040-5081-101B-9F08-00AA002F954E}\shell" key and changing i...

#persistence #windows #windows-hacking

·github.com·Jan 24, 2023

GitHub - Aetsu/OffensivePipeline: OfensivePipeline allows you to download and build C# tools, applying certain modifications in order to improve their evasion for Red Team exercises.

OfensivePipeline allows you to download and build C# tools, applying certain modifications in order to improve their evasion for Red Team exercises. - GitHub - Aetsu/OffensivePipeline: OfensivePipe...

#devops #pipelines #ci

·github.com·Jan 24, 2023

GitHub - Aetsu/OffensivePipeline: OfensivePipeline allows you to download and build C# tools, applying certain modifications in order to improve their evasion for Red Team exercises.

All of the Best Links and Resources on Cyber Security.

null

#resources

·s0cm0nkey.gitbook.io·Jan 24, 2023

All of the Best Links and Resources on Cyber Security.

The toddler’s introduction to Heap exploitation (Part 1)

In my introductory post I had been talking about dynamic memory allocation and I referenced various solutions that are used to tackle this…

#exploits #heap-exploits

·infosecwriteups.com·Jan 24, 2023

The toddler’s introduction to Heap exploitation (Part 1)

Dissecting and Exploiting TCP/IP RCE Vulnerability “EvilESP”

See how one IBM X-Force researcher reverse engineered the patch for CVE-2022-34718, and unpack the affected protocols, how the bug was identified, and how it was reproduced.

·securityintelligence.com·Jan 20, 2023

Dissecting and Exploiting TCP/IP RCE Vulnerability “EvilESP”

FuzzySecurity | Windows Hacking Tutorials

null

#binary-exploits #windows-exploits #exploits

·fuzzysecurity.com·Jan 20, 2023

FuzzySecurity | Windows Hacking Tutorials

Heap Overflow Exploitation on Windows 10 Explained | Rapid7 Blog

Heap corruption can be a scary topic. In this post, we go through a basic example of a heap overflow on Windows 10.

#binary-exploits #windows-exploits #exploits

·rapid7.com·Jan 20, 2023

Heap Overflow Exploitation on Windows 10 Explained | Rapid7 Blog

Smbleedingghost writeup chaining smbleed cve 2020 1206 with smbghost

#binary-exploits #windows-exploits #exploits

·blog.zecops.com·Jan 19, 2023

Smbleedingghost writeup chaining smbleed cve 2020 1206 with smbghost

CVE-2021-31985: Exploiting the Windows Defender AsProtect Heap Overflow Vulnerability

#binary-exploits #windows-exploits #exploits

·pixiepointsecurity.com·Jan 19, 2023

CVE-2021-31985: Exploiting the Windows Defender AsProtect Heap Overflow Vulnerability

"I'll ask your body": SMBGhost pre-auth RCE abusing Direct Memory Access structs

Posted by hugeh0ge, Ricerca Security NOTE: We have decided to make our PoC exclusively available to our customers to avoid abuse by scr...

#binary-exploits #windows-exploits #exploits

·ricercasecurity.blogspot.com·Jan 19, 2023

"I'll ask your body": SMBGhost pre-auth RCE abusing Direct Memory Access structs

GitHub - mgeeky/Penetration-Testing-Tools: A collection of more than 170+ tools, scripts, cheatsheets and other loots that I've developed over years for Red Teaming/Pentesting/IT Security audits purposes.

A collection of more than 170+ tools, scripts, cheatsheets and other loots that I've developed over years for Red Teaming/Pentesting/IT Security audits purposes. - GitHub - mgeeky/Penetrati...

#red-team-tools #red-team-lists

·github.com·Dec 27, 2022

Lord Of The Ring0 - Part 1 | Introduction - Ido Veltzman - Security Blog

IntroductionThis blog post series isn’t a thing I normally do, this will be more like a journey that I document during the development of my project Nidhogg....

#windows-driver #windows

·idov31.github.io·Dec 27, 2022

Lord Of The Ring0 - Part 1 | Introduction - Ido Veltzman - Security Blog

GitHub - JohnTroony/php-webshells: Common PHP webshells you might need for your Penetration Testing assignments or CTF challenges. Do not host the file(s) on your server!

Common PHP webshells you might need for your Penetration Testing assignments or CTF challenges. Do not host the file(s) on your server! - GitHub - JohnTroony/php-webshells: Common PHP webshells you...

#php

·github.com·Dec 16, 2022

GitHub - JohnTroony/php-webshells: Common PHP webshells you might need for your Penetration Testing assignments or CTF challenges. Do not host the file(s) on your server!

GitHub - wader/fq: jq for binary formats

jq for binary formats. Contribute to wader/fq development by creating an account on GitHub.

·github.com·Nov 28, 2022

GitHub - wader/fq: jq for binary formats

What is Phar Deserialization

Last week a new exploitation technique for PHP applications was announced at the BlackHat USA conference. Find out everything you need to know in this blog post.

#php

·blog.sonarsource.com·Nov 10, 2022

What is Phar Deserialization

Attacking Active Directory: 0 to 0.9 | zer1t0

#ad-hacking

·zer1t0.gitlab.io·Oct 3, 2022

Attacking Active Directory: 0 to 0.9 | zer1t0

GitHub - h3xduck/TripleCross: A Linux eBPF rootkit with a backdoor, C2, library injection, execution hijacking, persistence and stealth capabilities.

A Linux eBPF rootkit with a backdoor, C2, library injection, execution hijacking, persistence and stealth capabilities. - GitHub - h3xduck/TripleCross: A Linux eBPF rootkit with a backdoor, C2, lib...

#linux-rootkit #linux-hacking

·github.com·Sep 21, 2022

GitHub - h3xduck/TripleCross: A Linux eBPF rootkit with a backdoor, C2, library injection, execution hijacking, persistence and stealth capabilities.

PHP Object Injection | OWASP Foundation

PHP Object Injection on the main website for The OWASP Foundation. OWASP is a nonprofit foundation that works to improve the security of software.

#php

·owasp.org·Sep 5, 2022

PHP Object Injection | OWASP Foundation