Hacking

PHP Object Injection on the main website for The OWASP Foundation. OWASP is a nonprofit foundation that works to improve the security of software.

eBPF Port Knocking Tool. Contribute to eeriedusk/knockles development by creating an account on GitHub.

Contribute to Markakd/DirtyCred development by creating an account on GitHub.

Joff Thyer // I was recently working on a Red Team for a customer that was very much up to date with their defenses. This customer had tight egress controls, […]

These best practices will help ensure a successful red team exercise by getting all the stakeholders on the same page.

This blog contains write-ups of the things that I researched, learned, and wanted to share to others.

pre.empt.dev is a group of people working on making Windows fun.

Welcome to a tutorial on building your first LLVM based obfuscator. In this post we will list the advantages of using LLVM tools, briefly…

byt3bl33d3r, /dev/random blog.py

This repository is focused on cybersecurity in the industrial world. Many industrial communication protocols and equipment is investigated and pentested - GitHub - miguelob/ICS-Hacking: This reposi...

We discovered an application with "new $a($b)" and no user-defined classes. We turned it to RCE.

Defeating Windows User Account Control. Contribute to hfiref0x/UACME development by creating an account on GitHub.

Fileless UAC bypass via COM hijack using sdtlc.exe auto-elevated process.

log4j rce test environment and poc. Contribute to leonjza/log4jpwn development by creating an account on GitHub.

Commit for pwnkit fix

Contribute to mandiant/ADFSpoof development by creating an account on GitHub.

A crappy LSASS dumper with no ASCII art. Contribute to helpsystems/nanodump development by creating an account on GitHub.

Manipulating and Abusing Windows Access Tokens. Contribute to S1ckB0y1337/TokenPlayer development by creating an account on GitHub.

As we head into 2022, ransomware groups continue to plague our digital environment with new and interesting techniques to bypass Antivirus (AV) and Endpoint Detection and Response (EDR) solutions and ensuring the successful execution of their ransomware payloads.   In December 2021, Stroz Friedberg’s Incident Response Services team engaged in a Digital Forensics and Incident […]

UAC Bypass via DLL hijacking of Microsoft Support Diagnostic Tool (MSDT). The UAC bypass method described here is based on DLL hijacking which happens when loading the Bluetooth diagnostic package.

Lateral movement is the process of moving from one compromised host to another. Penetration testers and red teamers alike commonly used to…

You can think about the post-exploitation part of penetration testing as an army or rebel force living off the land. You’re scrounging around the victim’s website using what’s available —...

:arrow_up: :skull_and_crossbones: :fire: Automatic Linux privesc via exploitation of low-hanging fruit e.g. gtfobins, pwnkit, dirty pipe, +w docker.sock - GitHub - liamg/traitor: Automatic Linux pr...

Platform for emulation and dynamic analysis of Linux-based firmware - GitHub - firmadyne/firmadyne: Platform for emulation and dynamic analysis of Linux-based firmware