Plus récents
yaracroft

A coverage-guided fuzzer targeting Hyper-V emulated devices, in the userland of Hyper-V root partition. Vulnerabilities in that layer coud lead to a guest to root partition escape.

github.com/googleprojectzero/H

0
yaracroft

🔓 How to crack pixelated images ?

github.com/bishopfox/unredacte

0
yaracroft

Mirage is a powerful and modular framework dedicated to the security analysis of communications.

homepages.laas.fr/rcayre/mirag

0
yaracroft

Project Ares - PoC loader written in C/C++ based on the Transacted Hollowing technique. This loader injects a PE into a remote process.

github.com/Cerbersec/Ares

0
yaracroft

👾 Ghost in the Ethernet optic. Plumspace (plumspace.com) Smart SFP's are a bit of a terrifying concept. SFP's are (until now apparently) actually quite simple devices that « simply » take input electrical signals and turn them into optical signalling, or carry them down a Direct Attach Cable (DAC). This smart-sfp can be configured to capture or hijack traffic in a bunch of ways.

blog.benjojo.co.uk/post/smart-

0
yaracroft

GithubBackupAllRepos - A script to all repos (public or private) of a user.

github.com/p0dalirius/GithubBa

0
yaracroft

ShadowCoerce - MS-FSRVP coercion abuse PoC

github.com/ShutdownRepo/Shadow

0
yaracroft

Ivy is a payload creation framework for the execution of arbitrary VBA (macro) source code directly in memory

github.com/optiv/Ivy

0
yaracroft

ParseFortinetSerialNumber - A to parse products serial numbers, and detect the associated model and version.

github.com/p0dalirius/ParseFor

0
yaracroft

MirrorDump - Another LSASS dumping tool that uses a dynamically compiled LSA plugin to grab an lsass handle and API hooking for capturing the dump in memory.

github.com/snovvcrash/MirrorDu

0
yaracroft

Investigation et géolocalisation avec Overpass Turbo

haax.fr/fr/writeups/osint-geoi

0
yaracroft

IRIS is a web collaborative platform for incident response analysts allowing to share investigations at a technical level. This project is in its early stage. It can already be used in production, but please set backups of the database and DO NOT expose the interface on the Internet.

dfir-iris.github.io/

0
yaracroft

Decryption utility for ham images.

github.com/landaire/porkchop

0
yaracroft

Lnkbomb is used for uploading malicious shortcut files to insecure file shares. Malicious shortcut generator for collecting NTLM hashes

github.com/dievus/lnkbomb

0
yaracroft

CVE-2021-42287 & CVE-2021-42278 Scanner & Exploiter

github.com/cube0x0/noPac

0
yaracroft

fileless-xec is enable to execute a remote binary on a local machine directly from memory without dropping them on disk

github.com/ariary/fileless-xec

0
yaracroft

GPUSleep - How to makes your Cobalt Strike beacon disappear into GPU memory (and eventually come back)

oxis.github.io/GPUSleep/

0
yaracroft

gsudo is a Linux sudo equivalent for users

github.com/gerardog/gsudo

0
yaracroft

SQLRecon is a C# MS-SQL toolkit designed for offensive reconnaissance & post-exploitation

github.com/skahwah/SQLRecon

0
yaracroft

Picky PPID Spoofing - Parent Process ID (PPID) Spoofing is one of the techniques employed by authors to blend in the target system.

captmeelo.com//redteam/maldev/

0
Plus anciens

yaracroft recommande :

informatique

2,96K

threats

2,03K

ransomware

1,24K

france

589

vuln

270

europe

125

tools

124

infosec

61

phishing

48
nanao

Comme le soleil, les machines ne se couchent jamais.

Ressources

Développeurs

Qu’est-ce que Mastodon ?

nanao.cybtex.fr

Davantage…