몾 Artemis @mixic@nanao.cybtex.fr
247365
Inscrit·e en mar. 2022
w00t w00t
TokenUniverse v0.3
Advanced tool for working with access tokens & Windows Security Policy
SprayHound is now available on BlackArch Linux 😋
PidLidReminderPwn.py
Exploiting Outlook CVE-2023-23397 using Python by sending the message through EWS
https://gist.github.com/tothi/d2d6c6a3e8b1d72ce6646d8683326e49
NewPowerDNS
Transfer files over DNS A records. NewPowerDNS is an updated version of PowerDNS by Dominic Chell (
@domchell)
Hello /dev/null lovers.
Put your config in a file (E.g. lessdemo.cnf)
#env
SHELL=/dev/null
LESSHISTFILE=/dev/null
blablabla
lesskey lessdemo.cnf/bin/chmod 400 $HOME/.lessecho -n "HelloWorld" | less
No more .lesshst & if you try to execute a command ( CVE-2023–26604 ) like a !/bin/sh ↦ permission denied
Have fun ᕙ👹ᕗ
HTTP Toolkit
Targeted interception for specific clients rather than intercepting everything and so avoids capturing irrelevant traffic or disrupting other applications
Understanding a Payload's Life
https://attl4s.github.io/assets/pdf/Understanding_a_Payloads_Life.pdf
PolarProxy
Custom TLS Redirection
One new feature in PolarProxy is the
--redirectargument, which can be used to redirect TLS traffic destined for a specific domain name to a different domain. This feature can be used to redirect TLS-encrypted malware traffic going to a known C2 domain to a local HTTPS sandbox.
bootlicker
UEFI bootkit used to achieve initial usermode execution
dns.toys
A DNS server that takes creative liberties with the DNS protocol.
MemFiles
Cobalt Strike toolkit to write files produced by Beacon to memory instead of disk
BokuLoader
PoC UDRL which aims to recreate, integrate, and enhance Cobalt Strike's evasion features for x64 HTTP/S beacons
247365
Inscrit·e en mar. 2022
