hacker_trick | Unsorted

Telegram-канал hacker_trick - Hacker tricks

3151

CVEs🔰 Tools🛠 RedTeam📕

Subscribe to a channel

Hacker tricks

TA577’s Unusual Attack Chain Leads to NTLM Data Theft
https://www.proofpoint.com/us/blog/threat-insight/ta577s-unusual-attack-chain-leads-ntlm-data-theft

Читать полностью…

Hacker tricks

Network tunneling with… QEMU?
https://securelist.com/network-tunneling-with-qemu

Читать полностью…

Hacker tricks

Using form hijacking to bypass CSP
https://portswigger.net/research/using-form-hijacking-to-bypass-csp

Читать полностью…

Hacker tricks

SharpThief: Steal a file's icon, resource information, version information, modification time, and digital signature with one click to reduce program entropy
https://github.com/INotGreen/SharpThief

Читать полностью…

Hacker tricks

How to Make Nmap Recognize New Services
https://shufflingbytes.com/posts/how-to-make-nmap-recognize-new-services

Читать полностью…

Hacker tricks

Exploit for CVE-2024-27198 - TeamCity Server
https://github.com/yoryio/CVE-2024-27198
CVE-2024-27198 and CVE-2024-27199: JetBrains TeamCity Multiple Authentication Bypass Vulnerabilities (FIXED)
https://www.rapid7.com/blog/post/2024/03/04/etr-cve-2024-27198-and-cve-2024-27199-jetbrains-teamcity-multiple-authentication-bypass-vulnerabilities-fixed

Читать полностью…

Hacker tricks

linjector-rs: Code injection on Android without ptrace
https://github.com/erfur/linjector-rs

Читать полностью…

Hacker tricks

Cyber-security-practice: ALL cyber-security-practice, include exploit loophole , web attack ,cryptographic, system explotation, developing tools and so on
https://github.com/Stander-by/Cyber-security-practice

Читать полностью…

Hacker tricks

F31:Tool for hiding Kali Linux on the network
https://github.com/casterbyte/F31

Читать полностью…

Hacker tricks

pmesh: is an all-in-one service manager, reverse proxy, and enterprise service bus. It is designed to be a simple and powerful all-in-one replacement for a wide variety of tools commonly deployed in web services
https://github.com/pme-sh/pmesh

Читать полностью…

Hacker tricks

Passing arguments via rundll32.exe to function exported by DLL
https://stmxcsr.com/micro/rundll-parse-args.html

Читать полностью…

Hacker tricks

A Trip Down Memory Lane
https://gatari.dev/posts/a-trip-down-memory-lane

Читать полностью…

Hacker tricks

Automate evasion and compilation of tools
https://tierzerosecurity.co.nz/2024/03/03/teamcity-sharpwmi-evasion.html

Читать полностью…

Hacker tricks

Safely detect whether a FortiGate SSL VPN is vulnerable to CVE-2024-21762
https://github.com/BishopFox/cve-2024-21762-check
PoC for CVE-2023-50386
Apache Solr Backup/Restore APIs RCE
https://github.com/vvmdx/Apache-Solr-RCE_CVE-2023-50386_POC

Читать полностью…

Hacker tricks

Noname: write shell code in windows
https://github.com/rbmm/Noname

Читать полностью…

Hacker tricks

Cybersecurity threatscape: Q4 2023
https://www.ptsecurity.com/ww-en/analytics/cybersecurity-threatscape-2023-q4

Читать полностью…

Hacker tricks

Smishing with EvilGophish
https://fin3ss3g0d.net/index.php/2024/03/04/smishing-with-evilgophish

Читать полностью…

Hacker tricks

Persistence – Explorer
https://pentestlab.blog/2024/03/05/persistence-explorer
List of 39 Documented Windows Persistence Techniques
https://pentestlab.blog/methodologies/red-teaming/persistence

Читать полностью…

Hacker tricks

Reverse Engineering Protobuf Definitions From Compiled Binaries
https://arkadiyt.com/2024/03/03/reverse-engineering-protobuf-definitiions-from-compiled-binaries

Читать полностью…

Hacker tricks

How I Found Multiple XSS Vulnerabilities Using Unknown Techniques
https://infosecwriteups.com/how-i-found-multiple-xss-vulnerabilities-using-unknown-techniques-74f8e705ea0d

Читать полностью…

Hacker tricks

Trojan written in C++ for Windows
https://github.com/sergiLopez/Flanders-Trojan

Читать полностью…

Hacker tricks

ComPromptMized: Unleashing Zero-click Worms that Target GenAI-Powered Applications
https://github.com/StavC/ComPromptMized

Читать полностью…

Hacker tricks

Taking On A Hardened Windows System
https://assume-breach.medium.com/home-grown-red-team-taking-on-a-hardened-windows-system-f31796ad3fc2

Читать полностью…

Hacker tricks

sebel: is a Go package that provides functionality for checking SSL/TLS certificates against malicious connections, by identifying and blacklisting certificates used by botnet command and control (C&C) servers
https://github.com/teler-sh/sebel

Читать полностью…

Hacker tricks

Taking a deep dive into SmokeLoader
https://farghlymal.github.io/SmokeLoader-Analysis

Читать полностью…

Hacker tricks

OWASP Top 10 explained (3) : SQL Injection
https://lab.scub.net/owasp-top-10-3-sql-injection-78a59edba83b

Читать полностью…

Hacker tricks

APT37's ROKRAT HWP Object Linking and Embedding
https://www.0x0v1.com/rearchive-rokrat-hwp

Читать полностью…

Hacker tricks

Bypass UAC Methods
https://blog.injectexp.dev/2024/03/02/bypass-uac-methods

Читать полностью…

Hacker tricks

SecretPixel: is a cutting-edge steganography tool designed to securely conceal sensitive information within images
https://github.com/x011/SecretPixel

Читать полностью…

Hacker tricks

Windows Local Privilege Escalation Cookbook
https://github.com/nickvourd/Windows-Local-Privilege-Escalation-Cookbook

Читать полностью…
Subscribe to a channel