Hejto.pl
Zdjęcie w tle
konik_polanowy

konik_polanowy

Osobistość
  • 937wpisy
  • 104komentarzy

https://lubimyczytac.pl/profil/127443/joker

konik_polanowy
konik_polanowy
Osobistość
w Ciekawostki
Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2021.12.09.md
Backdooring Rust crates for fun and profit - https://kerkour.com/rust-crate-backdoor/
REST APIs fuzzer and negative testing tooll - https://github.com/Endava/cats
Golden Certificate - https://pentestlab.blog/2021/11/15/golden-certificate/
Analyzing a watering hole campaign using macOS exploits - https://blog.google/threat-analysis-group/analyzing-watering-hole-campaign-using-macos-exploits/
The hidden side of Seclogon part 2: Abusing leaked handles to dump LSASS memory - https://splintercod3.blogspot.com/p/the-hidden-side-of-seclogon-part-2.html
news-and-links/2021.12.09.md at gh-pages · Nieuport/news-and-links

news-and-links/2021.12.09.md at gh-pages · Nieuport/news-and-links

Contribute to Nieuport/news-and-links development by creating an account on GitHub.

GitHub

Zaloguj się aby komentować

konik_polanowy
konik_polanowy
Osobistość
w Ciekawostki
Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2021.12.07.md
Go away BitLocker, you´re drunk- https://luemmelsec.github.io/Go-away-BitLocker-you-are-drunk/
Cobalt Strike: Using Known Private Keys To Decrypt Traffic – Part 1 - https://blog.nviso.eu/2021/10/21/cobalt-strike-using-known-private-keys-to-decrypt-traffic-part-1/
Popping iOS <=14.7 with IOMFB - https://jsherman212.github.io/2021/11/28/popping_ios14_with_iomfb.html
Reversing Engineering Syscalls To Evade Detection - https://www.youtube.com/watch?v=Uba3SQH2jNE
news-and-links/2021.12.07.md at gh-pages · Nieuport/news-and-links

news-and-links/2021.12.07.md at gh-pages · Nieuport/news-and-links

Contribute to Nieuport/news-and-links development by creating an account on GitHub.

GitHub

Zaloguj się aby komentować

konik_polanowy
konik_polanowy
Osobistość
w Ciekawostki
Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2021.12.04.md
Multi Domain DOM Cross Site Scripting - https://coffeejunkie.me//Multi-Domain-DOM-Cross-Site-Scripting/
Backup “Removal” Solutions - From Conti Ransomware With Love - https://www.advintel.io/post/backup-removal-solutions-from-conti-ransomware-with-love
Lateral Movement using DCOM Objects - How to do it the right way? - https://www.scorpiones.io/articles/lateral-movement-using-dcom-objects
Convolutional neural network for analyzing pentest screenshots - https://github.com/bishopfox/eyeballer
Bypassing Box’s Time-based One-Time Password MFA - https://www.varonis.com/blog/box-mfa-bypass-totp/
news-and-links/2021.12.04.md at gh-pages · Nieuport/news-and-links

news-and-links/2021.12.04.md at gh-pages · Nieuport/news-and-links

Contribute to Nieuport/news-and-links development by creating an account on GitHub.

GitHub

Zaloguj się aby komentować

Zostań Patronem Hejto i odblokuj dodatkowe korzyści tylko dla Patronów

  • Włączona możliwość zarabiania na swoich treściach
  • Całkowity brak reklam na każdym urządzeniu
  • Oznaczenie w postaci rogala , który świadczy o Twoim wsparciu
  • Wcześniejszy dostęp, do wybranych funkcji na Hejto
Zostań Patronem
konik_polanowy
konik_polanowy
Osobistość
w Ciekawostki
Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2021.12.02.md
Tools & Interesting Things for RedTeam Ops - https://github.com/bigb0sss/RedTeam-OffensiveSecurity
Phantom - A multi-platform HTTP(S) Reverse Shell Server and Client - https://github.com/EONRaider/BCA-Phantom
How to execute shellcodes from memory in Rust - https://kerkour.com/rust-execute-from-memory/
Avaddon Ransomware Analysis - https://atos.net/en/lp/securitydive/avaddon-ransomware-analysis
Automate Qbot Malware String Decryption With Ghidra Script - https://www.youtube.com/watch?v=4I0LF8Vm7SI
news-and-links/2021.12.02.md at gh-pages · Nieuport/news-and-links

news-and-links/2021.12.02.md at gh-pages · Nieuport/news-and-links

Contribute to Nieuport/news-and-links development by creating an account on GitHub.

GitHub

Zaloguj się aby komentować

konik_polanowy
konik_polanowy
Osobistość
w Ciekawostki
Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2021.11.30.md
A detailed analysis of the STOP/Djvu Ransomware - https://cybergeeks.tech/a-detailed-analysis-of-the-stop-djvu-ransomware/
AT&T Alien Labs finds new Golang malware (BotenaGo) - https://cybersecurity.att.com/blogs/labs-research/att-alien-labs-finds-new-golang-malwarebotenago-targeting-millions-of-routers-and-iot-devices-with-more-than-30-exploits
The Ultimate Game Hacking Resource - https://github.com/dsasmblr/game-hacking
Blind Server Side Request Forgery (SSRF) Chains - https://blog.assetnote.io/2021/01/13/blind-ssrf-chains/
How to Detect Azure Active Directory Backdoors: Identity Federation - https://www.inversecos.com/2021/11/how-to-detect-azure-active-directory.html
news-and-links/2021.11.30.md at gh-pages · Nieuport/news-and-links

news-and-links/2021.11.30.md at gh-pages · Nieuport/news-and-links

Contribute to Nieuport/news-and-links development by creating an account on GitHub.

GitHub

Zaloguj się aby komentować

konik_polanowy
konik_polanowy
Osobistość
w Ciekawostki
Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2021.11.28.md
PAN-OS GlobalProtect Portal Scanner - https://github.com/noperator/panos-scanner#usage
Building a Basic C2 - https://0xrick.github.io/misc/c2/
CronRAT malware hides behind February 31st - https://sansec.io/research/cronrat
GraphQL Introspection - https://hasura.io/learn/graphql/intro-graphql/introspection/
Applied Purple Teaming - https://github.com/DefensiveOrigins/APT06202001
Data Exfiltration via CSS + SVG Font - https://mksben.l0.cm/2021/11/css-exfiltration-svg-font.html
news-and-links/2021.11.28.md at gh-pages · Nieuport/news-and-links

news-and-links/2021.11.28.md at gh-pages · Nieuport/news-and-links

Contribute to Nieuport/news-and-links development by creating an account on GitHub.

GitHub

Zaloguj się aby komentować

konik_polanowy
konik_polanowy
Osobistość
w Ciekawostki
Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2021.11.26.md
Exploiting CSP in Webkit to Break Authentication & Authorization -https://threatnix.io/blog/exploiting-csp-in-webkit-to-break-authentication-authorization/
Obfuscating Malicious, Macro-Enabled Word Docs - https://depthsecurity.com/blog/obfuscating-malicious-macro-enabled-word-docs
Excel-Phish - Phish protected Excel-file passwords - https://s3cur3th1ssh1t.github.io/Phish-password-protected-Excel-files/
Je Ne Sais Quoi - Falcons over the Horizon - https://hexkyz.blogspot.com/2021/11/je-ne-sais-quoi-falcons-over-horizon.html#
Picky PPID Spoofing - https://captmeelo.com/redteam/maldev/2021/11/22/picky-ppid-spoofing.html
news-and-links/2021.11.26.md at gh-pages · Nieuport/news-and-links

news-and-links/2021.11.26.md at gh-pages · Nieuport/news-and-links

Contribute to Nieuport/news-and-links development by creating an account on GitHub.

GitHub

Zaloguj się aby komentować

konik_polanowy
konik_polanowy
Osobistość
w Ciekawostki
Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2021.11.24.md
Program for determining types of files for Windows, Linux and MacOS - https://github.com/horsicq/Detect-It-Easy
TensorFlow Python Code Injection: More eval() Woes - https://jfrog.com/blog/tensorflow-python-code-injection-more-eval-woes/
Driftwood: Know if Private Keys are Sensitive - https://trufflesecurity.com/blog/driftwood
SQL Injection Exploitation Tool - https://github.com/CiscoCXSecurity/bbqsql
List of Awesome Asset Discovery Resources - https://github.com/redhuntlabs/Awesome-Asset-Discovery
news-and-links/2021.11.24.md at gh-pages · Nieuport/news-and-links

news-and-links/2021.11.24.md at gh-pages · Nieuport/news-and-links

Contribute to Nieuport/news-and-links development by creating an account on GitHub.

GitHub

Zaloguj się aby komentować

konik_polanowy
konik_polanowy
Osobistość
w Ciekawostki
Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2021.11.22.md
TPM sniffing - https://blog.scrt.ch/2021/11/15/tpm-sniffing/
Fall of the machines: Exploiting the Qualcomm NPU - https://securitylab.github.com/research/qualcomm_npu/
Your Car Is Recording: Metadata-Driven Dashcam Analysis System - https://www.forensicfocus.com/webinars/your-car-is-recording-metadata-driven-dashcam-analysis-system/
Building WireGate: A WireGuard front to detect compromised keys - https://blog.thinkst.com/2021/11/building-wiregate-wireguard-front-to.html
Fall of the machines: Exploiting the Qualcomm NPUBroken Access Control: Pentester's Gold Mine - https://payatu.com/blog/prateek.thakare/broken-access-control
news-and-links/2021.11.22.md at gh-pages · Nieuport/news-and-links

news-and-links/2021.11.22.md at gh-pages · Nieuport/news-and-links

Contribute to Nieuport/news-and-links development by creating an account on GitHub.

GitHub

Zaloguj się aby komentować

konik_polanowy
konik_polanowy
Osobistość
w Ciekawostki
Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2021.11.20.md
VBA RunPE - https://github.com/itm4n/VBA-RunPE
Windows & Active Directory Exploitation Cheat Sheet and Command Reference - https://casvancooten.com/posts/2020/11/windows-active-directory-exploitation-cheat-sheet-and-command-reference/
New ransomware actor uses password-protected archives to bypass encryption protection - https://news.sophos.com/en-us/2021/11/18/new-ransomware-actor-uses-password-protected-archives-to-bypass-encryption-protection/
All Roads Lead to OpenVPN: Pwning Industrial Remote Access Clients - https://claroty.com/2021/11/19/blog-research-all-roads-lead-to-openvpn-pwning-industrial-remote-access-clients/
Ploutus ATM Malware Case Study: Automated Deobfuscation of a Strongly Obfuscated .NET Binary - https://www.crowdstrike.com/blog/ploutus-atm-malware-deobfuscation-case-study/
news-and-links/2021.11.20.md at gh-pages · Nieuport/news-and-links

news-and-links/2021.11.20.md at gh-pages · Nieuport/news-and-links

Contribute to Nieuport/news-and-links development by creating an account on GitHub.

GitHub

Zaloguj się aby komentować

konik_polanowy
konik_polanowy
Osobistość
w Ciekawostki
Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2021.11.18.md
Run in Sandbox: a quick way to run/extract files in Windows Sandbox - https://www.systanddeploy.com/2021/11/run-in-sandbox-quick-way-to-runextract.html
LinkedIn Fakes: A Wolf in Business Casual Clothing - https://hatless1der.com/linkedin-fakes-a-wolf-in-business-casual-clothing/
Encrypted exploit delivery for the masses - https://github.com/MRGEffitas/Ironsquirrel
All about bug bounty - https://github.com/daffainfo/AllAboutBugBounty
AFL++ on Android with QEMU support - https://alephsecurity.com/2021/11/16/fuzzing-qemu-android/
news-and-links/2021.11.18.md at gh-pages · Nieuport/news-and-links

news-and-links/2021.11.18.md at gh-pages · Nieuport/news-and-links

Contribute to Nieuport/news-and-links development by creating an account on GitHub.

GitHub

Zaloguj się aby komentować

konik_polanowy
konik_polanowy
Osobistość
w Ciekawostki
Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2021.11.14.md
The Invisible JavaScript Backdor - https://certitude.consulting/blog/en/invisible-backdoor/
Extracting the config from Blackmatter ESXi ELF Encryptors - https://michaelgoodman.co.uk/extracting-the-config-from-blackmatter-esxi-elf-encryptors
Exploiting CSP in Webkit to Break Authentication & Authorization - https://threatnix.io/blog/exploiting-csp-in-webkit-to-break-authentication-authorization/
TP-Link TL-WR840N EU v5 Remote Code Execution - https://k4m1ll0.com/cve-2021-41653.html
Playstation 5 hacked—twice! - https://blog.malwarebytes.com/hacking-2/2021/11/playstation-5-hacked-twice/
news-and-links/2021.11.14.md at gh-pages · Nieuport/news-and-links

news-and-links/2021.11.14.md at gh-pages · Nieuport/news-and-links

Contribute to Nieuport/news-and-links development by creating an account on GitHub.

GitHub

Zaloguj się aby komentować

konik_polanowy
konik_polanowy
Osobistość
w Ciekawostki
Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2021.11.10.md
Igor: Crash Deduplication Through Root-Cause Clustering (CCS'21) - https://www.youtube.com/watch?v=V06x1Ad5dRo
Beg Bounties - https://www.troyhunt.com/beg-bounties/
Privilege Escalation Enumeration Script for Windows - https://github.com/itm4n/PrivescCheck
Discovering goroutine leaks with Semgrep - https://blog.trailofbits.com/2021/11/08/discovering-goroutine-leaks-with-semgrep/
Threat Hunting Certificate Account Persistence - https://pentestlaboratories.com/2021/11/08/threat-hunting-certificate-account-persistence/
news-and-links/2021.11.10.md at gh-pages · Nieuport/news-and-links

news-and-links/2021.11.10.md at gh-pages · Nieuport/news-and-links

Contribute to Nieuport/news-and-links development by creating an account on GitHub.

GitHub

Zaloguj się aby komentować

konik_polanowy
konik_polanowy
Osobistość
w Ciekawostki
Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2021.11.12.md
Performing Domain Reconnaissance Using PowerShell - https://stealthbits.com/blog/performing-domain-reconnaissance-using-powershell/
Create a proxy DLL with artifact kit - https://blog.cobaltstrike.com/2021/10/29/create-a-proxy-dll-with-artifact-kit/
Practical HTTP Header Smuggling: Sneaking Past Reverse Proxies to Attack AWS and Beyond - https://www.intruder.io/research/practical-http-header-smuggling
Lesser Known PostgreSQL Features - https://hakibenita.com/postgresql-unknown-features
A Formal Analysis of The Average (Detected) Fortnite Cheat - https://github.com/0dayatday0/BattleFN-cheat-analysis
news-and-links/2021.11.12.md at gh-pages · Nieuport/news-and-links

news-and-links/2021.11.12.md at gh-pages · Nieuport/news-and-links

Contribute to Nieuport/news-and-links development by creating an account on GitHub.

GitHub

Zaloguj się aby komentować

konik_polanowy
konik_polanowy
Osobistość
w Ciekawostki
Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2021.11.08.md
Zero Day Zen Garden: Windows Exploit Development - Part 4 https://www.shogunlab.com/blog/2017/11/06/zdzg-windows-exploit-4.html
Sitecore Experience Platform Pre-Auth RCE - https://blog.assetnote.io/2021/11/02/sitecore-rce/
Analysis of Bot Protection systems with available countermeasures - https://github.com/niespodd/browser-fingerprinting
I Like to Move It: Windows Lateral Movement Part 1 – WMI Event Subscription - https://www.mdsec.co.uk/2020/09/i-like-to-move-it-windows-lateral-movement-part-1-wmi-event-subscription/
AppDomainManager Injection - https://www.youtube.com/watch?v=1TkK8lfu0NQ
news-and-links/2021.11.08.md at gh-pages · Nieuport/news-and-links

news-and-links/2021.11.08.md at gh-pages · Nieuport/news-and-links

Contribute to Nieuport/news-and-links development by creating an account on GitHub.

GitHub

Zaloguj się aby komentować

konik_polanowy
konik_polanowy
Osobistość
w Ciekawostki
Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2021.11.06.md
Some Vulnerabilities are Invisible - https://trojansource.codes/
Killing bugs ... one vulnerability report at a time - https://www.rtcsec.com/article/killing-bugs-one-vulnerability-report-at-a-time/
Vulnerability scanner for Linux/FreeBSD, agent-less, written in Go - https://github.com/future-architect/vuls
Kernel Karnage – Part 2 (Back to Basics) - https://blog.nviso.eu/2021/10/29/kernel-karnage-part-2-back-to-basics/
Bypassing Credential Guard - https://teamhydra.blog/2020/08/25/bypassing-credential-guard/
news-and-links/2021.11.06.md at gh-pages · Nieuport/news-and-links

news-and-links/2021.11.06.md at gh-pages · Nieuport/news-and-links

Contribute to Nieuport/news-and-links development by creating an account on GitHub.

GitHub

Zaloguj się aby komentować

konik_polanowy
konik_polanowy
Osobistość
w Ciekawostki
Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2021.11.04.md
Driver Buddy Reloaded - https://voidsec.com/driver-buddy-reloaded/
5 Ways to Exploit a Domain Takeover Vulnerability - https://redhuntlabs.com/blog/5-ways-to-exploit-a-domain-takeover-vulnerability.html
From Zero to Domain Admin - https://thedfirreport.com/2021/11/01/from-zero-to-domain-admin/
Build your own Command Line with ANSI escape codes - https://www.lihaoyi.com/post/BuildyourownCommandLinewithANSIescapecodes.html
Evading Detection with Excel 4.0 Macros and the BIFF8 XLS Format - https://malware.pizza/2020/05/12/evading-av-with-excel-macros-and-biff8-xls/
news-and-links/2021.11.04.md at gh-pages · Nieuport/news-and-links

news-and-links/2021.11.04.md at gh-pages · Nieuport/news-and-links

Contribute to Nieuport/news-and-links development by creating an account on GitHub.

GitHub

Zaloguj się aby komentować

konik_polanowy
konik_polanowy
Osobistość
w Ciekawostki
Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2021.11.02.md
Arkime (formerly Moloch) is an open source, large scale - https://github.com/arkime/arkime
What is Ransomulator? - https://github.com/zeronetworks/BloodHound-Tools/tree/main/Ransomulator
Anatomy of a Terminal Emulator - https://www.poor.dev/blog/terminal-anatomy/
Pixel 6: Setting a new standard for mobile security - https://security.googleblog.com/2021/10/pixel-6-setting-new-standard-for-mobile.html
Create a proxy DLL with artifact kit - https://blog.cobaltstrike.com/2021/10/29/create-a-proxy-dll-with-artifact-kit/
news-and-links/2021.11.02.md at gh-pages · Nieuport/news-and-links

news-and-links/2021.11.02.md at gh-pages · Nieuport/news-and-links

Contribute to Nieuport/news-and-links development by creating an account on GitHub.

GitHub

Zaloguj się aby komentować

konik_polanowy
konik_polanowy
Osobistość
w Ciekawostki
Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2021.10.31.md
HAT (Hashcat Automation Tool) - An Automated Hashcat Tool - https://github.com/sp00ks-git/hat
Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management - https://github.com/OWASP/Nettacker
Car hijacking swapping a single bit - https://www.synacktiv.com/publications/car-hijacking-swapping-a-single-bit.html
One day short of a full chain: Part 2 - Chrome sandbox escape - https://securitylab.github.com/research/one_day_short_of_a_fullchain_sbx/
Tortellini in Brodobuf - https://aptw.tf/2021/10/27/exploiting-protobuf-webapps.html
news-and-links/2021.10.31.md at gh-pages · Nieuport/news-and-links

news-and-links/2021.10.31.md at gh-pages · Nieuport/news-and-links

Contribute to Nieuport/news-and-links development by creating an account on GitHub.

GitHub

Zaloguj się aby komentować

konik_polanowy
konik_polanowy
Osobistość
w Ciekawostki
Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2021.10.29.md
GitLab CE CVE-2021-22205 in the wild - https://security.humanativaspa.it/gitlab-ce-cve-2021-22205-in-the-wild/
Hacking Unifi Controller Passwords for Fun and WIFI - https://www.blackhillsinfosec.com/hacking-unifi-controller-passwords-for-fun-and-wifi/
OffensiveVBA - https://github.com/S3cur3Th1sSh1t/OffensiveVBA
Skeletons in the IT Closet: Seven Common Microsoft Active Directory Misconfigurations that Adversaries Abuse - https://www.crowdstrike.com/blog/seven-common-microsoft-ad-misconfigurations-that-adversaries-abuse/
A 32-bit RISC-V emulator in a shader (and C) - https://github.com/pimaker/rvc
news-and-links/2021.10.29.md at gh-pages · Nieuport/news-and-links

news-and-links/2021.10.29.md at gh-pages · Nieuport/news-and-links

Contribute to Nieuport/news-and-links development by creating an account on GitHub.

GitHub

Zaloguj się aby komentować

Poprzednia
394041
Następna