π [ an0n_r0, an0n ]
Sliver setup is effortless. Just tried it, currently the default config (without customization) works well against simple Defender. I think it's worth further playing. I don't think we should say goodbye to CS, but as an alternative, (not just because of this) it is promising.
π₯ [ tweet ][ quote ]
Sliver setup is effortless. Just tried it, currently the default config (without customization) works well against simple Defender. I think it's worth further playing. I don't think we should say goodbye to CS, but as an alternative, (not just because of this) it is promising.
π₯ [ tweet ][ quote ]
π2
π [ BCSecurity1, BC Security ]
A wave of Malicious Doc exploits
has been released over the last year.
Our newest blog from @_Hubbl3
discusses one of the most recent attacks,#Follina, which was only just patched by @Microsoft this week.
https://t.co/HX3TxFZhJ6
π https://www.bc-security.org/post/maldocs-are-evolving/
π₯ [ tweet ]
A wave of Malicious Doc exploits
has been released over the last year.
Our newest blog from @_Hubbl3
discusses one of the most recent attacks,#Follina, which was only just patched by @Microsoft this week.
https://t.co/HX3TxFZhJ6
π https://www.bc-security.org/post/maldocs-are-evolving/
π₯ [ tweet ]
π1
π [ ReconOne_, ReconOne ]
Do you want to focus on "Interesting" subdomains only? Try this π
#recontips #bugbountytips #recon #AttackSurface #subdomains #reconone
π₯ [ tweet ]
Do you want to focus on "Interesting" subdomains only? Try this π
#recontips #bugbountytips #recon #AttackSurface #subdomains #reconone
π₯ [ tweet ]
π [ praetorianlabs, Praetorian ]
Check out our latest blog post where we discuss how we discovered a novel privilege escalation attack path and worked with AWS to clarify inaccuracies regarding IAM permissions
https://t.co/de5gIMPgfK
π https://www.praetorian.com/blog/stsgetsessiontoken-role-chaining-in-aws/
π₯ [ tweet ]
Check out our latest blog post where we discuss how we discovered a novel privilege escalation attack path and worked with AWS to clarify inaccuracies regarding IAM permissions
https://t.co/de5gIMPgfK
π https://www.praetorian.com/blog/stsgetsessiontoken-role-chaining-in-aws/
π₯ [ tweet ]
π2
π [ N4k3dTurtl3, NA ]
"Don't try to prevent the breach, that is impossible. Instead, only try to realize the truth. There is no breach" -- Every bloody CISO
π₯ [ tweet ]
"Don't try to prevent the breach, that is impossible. Instead, only try to realize the truth. There is no breach" -- Every bloody CISO
π₯ [ tweet ]
π1π₯1
π [ NinjaParanoid, Paranoid Ninja (Brute Ratel C4) ]
Apparently these dumbfucks @GeKarantzas @kpatsak joined my BRc4 channel and started falsifying bug-reports/detections after impersonating one of my clients under the handle redteamdaddy. I feel seriously sorry for anyone who hires this guy. What kind of Uni-Professor does that?
π₯ [ tweet ]
Apparently these dumbfucks @GeKarantzas @kpatsak joined my BRc4 channel and started falsifying bug-reports/detections after impersonating one of my clients under the handle redteamdaddy. I feel seriously sorry for anyone who hires this guy. What kind of Uni-Professor does that?
π₯ [ tweet ]
π [ VirtualAllocEx, Daniel Feichter ]
Sliver is a nice C2, but I personally can't understand why many people do compare or mess it with Cobalt Strike. Besides Brutel Ratel (BRc4), Cobalt Strike is in my opionion still the C2 leader with the strongest community in the background.
#redteam #itsecurity #pentest
π₯ [ tweet ][ quote ]
Sliver is a nice C2, but I personally can't understand why many people do compare or mess it with Cobalt Strike. Besides Brutel Ratel (BRc4), Cobalt Strike is in my opionion still the C2 leader with the strongest community in the background.
#redteam #itsecurity #pentest
π₯ [ tweet ][ quote ]
π [ an0n_r0, an0n ]
some kind of staging: easily injecting a Sliver beacon shellcode (pulled from an http url) into a running process using the ProcessInjection tool by @chiragsavla94 :) https://t.co/L29GbRHkdJ
π https://github.com/3xpl01tc0d3r/ProcessInjection
π₯ [ tweet ][ quote ]
some kind of staging: easily injecting a Sliver beacon shellcode (pulled from an http url) into a running process using the ProcessInjection tool by @chiragsavla94 :) https://t.co/L29GbRHkdJ
π https://github.com/3xpl01tc0d3r/ProcessInjection
π₯ [ tweet ][ quote ]
π₯1
π [ _RastaMouse, Rasta Mouse ]
[BLOG]
Short post on how to use Firefox to access internal web apps over SOCKS using NTLM authentication.
https://t.co/8jpKGfWiZW
π https://offensivedefence.co.uk/posts/ntlm-auth-firefox/
π₯ [ tweet ]
[BLOG]
Short post on how to use Firefox to access internal web apps over SOCKS using NTLM authentication.
https://t.co/8jpKGfWiZW
π https://offensivedefence.co.uk/posts/ntlm-auth-firefox/
π₯ [ tweet ]
π1π₯1
π [ ippsec, ippsec ]
I really hated Linux auditing until I found this. Couple it with Laurel and it becomes really easy to ingest these types of logs. Best of all, logging on linux is so rare most adversaries won't see it coming and get caught instantly. Demo here: https://t.co/G29XsbulRm
π https://www.youtube.com/watch?v=lc1i9h1GyMA
π₯ [ tweet ][ quote ]
I really hated Linux auditing until I found this. Couple it with Laurel and it becomes really easy to ingest these types of logs. Best of all, logging on linux is so rare most adversaries won't see it coming and get caught instantly. Demo here: https://t.co/G29XsbulRm
π https://www.youtube.com/watch?v=lc1i9h1GyMA
π₯ [ tweet ][ quote ]
π2
π [ N4k3dTurtl3, NA ]
The possibility of prison time for illegal hacking seems less serious when faced with writing a report for a 9 week assessment.
π₯ [ tweet ]
The possibility of prison time for illegal hacking seems less serious when faced with writing a report for a 9 week assessment.
π₯ [ tweet ]
π [ m3g9tr0n, Spiros Fraganastasis ]
I really can't understand why there is so much ego in infosec. Relax, life is short to be pissed off all the time. If you think you are too special just consider there are people out there researching on nuclear physics, applied mathematics, beating diseases without bragging.
π₯ [ tweet ]
I really can't understand why there is so much ego in infosec. Relax, life is short to be pissed off all the time. If you think you are too special just consider there are people out there researching on nuclear physics, applied mathematics, beating diseases without bragging.
π₯ [ tweet ]
π1
π [ metasploit, Metasploit Project ]
This week's wrap-up has a vCenter Secret Extractor π€«π€«π€«, named pipe pivoting docs updates π , and service library improvements π -- get it here: https://t.co/tbl5VfQKeU
π https://www.rapid7.com/blog/post/2022/06/17/metasploit-weekly-wrap-up-162/
π₯ [ tweet ]
This week's wrap-up has a vCenter Secret Extractor π€«π€«π€«, named pipe pivoting docs updates π , and service library improvements π -- get it here: https://t.co/tbl5VfQKeU
π https://www.rapid7.com/blog/post/2022/06/17/metasploit-weekly-wrap-up-162/
π₯ [ tweet ]
π1
πΉ [ snovvcrash, snπ₯Άvvcrπ₯sh ]
#CME now supports --codec option for execution methods to make the output readable if the targetβs OS language is not native English π₯³ π Thanks to @mpgn_x64 for merging! https://t.co/cbtvFS1p7z
π https://github.com/byt3bl33d3r/CrackMapExec/pull/570
π₯ [ tweet ]
#CME now supports --codec option for execution methods to make the output readable if the targetβs OS language is not native English π₯³ π Thanks to @mpgn_x64 for merging! https://t.co/cbtvFS1p7z
π https://github.com/byt3bl33d3r/CrackMapExec/pull/570
π₯ [ tweet ]
π [ C5pider, 5pider ]
Ekko
Sleep Obfuscation by using CreateTimerQueueTimer to queue the ROP Chain that performs the sleep obfuscation.
https://t.co/DiZt4NDDVn
π https://github.com/Cracked5pider/Ekko
π₯ [ tweet ]
Ekko
Sleep Obfuscation by using CreateTimerQueueTimer to queue the ROP Chain that performs the sleep obfuscation.
https://t.co/DiZt4NDDVn
π https://github.com/Cracked5pider/Ekko
π₯ [ tweet ]
π1
π [ ORCA10K, ORCA ]
pew pew https://t.co/iRNCUwiCuU
π https://gitlab.com/ORCA000/asmlogger
π₯ [ tweet ][ quote ]
pew pew https://t.co/iRNCUwiCuU
π https://gitlab.com/ORCA000/asmlogger
π₯ [ tweet ][ quote ]
π1