#informatyka

9
Przeglądasz wpisy z tego tagu
konik_polanowyTwórca
w społecznościCiekawostki
Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2021.12.02.md Tools & Interesting Things for RedTeam Ops - https://github.com/bigb0sss/RedTeam-OffensiveSecurity Phantom - A multi-platform HTTP(S) Reverse Shell Server and Client - https://github.com/EONRaider/BCA-Phantom How to execute shellcodes from memory in Rust - https://kerkour.com/rust-execute-from-memory/ Avaddon Ransomware Analysis - https://atos.net/en/lp/securitydive/avaddon-ransomware-analysis Automate Qbot Malware String Decryption With Ghidra Script - https://www.youtube.com/watch?v=4I0LF8Vm7SI
news-and-links/2021.12.02.md at gh-pages · Nieuport/news-and-links

news-and-links/2021.12.02.md at gh-pages · Nieuport/news-and-links

Contribute to Nieuport/news-and-links development by creating an account on GitHub.

GitHubGitHub

Zaloguj się aby komentować

konik_polanowyTwórca
w społecznościCiekawostki
Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2021.11.30.md A detailed analysis of the STOP/Djvu Ransomware - https://cybergeeks.tech/a-detailed-analysis-of-the-stop-djvu-ransomware/ AT&T Alien Labs finds new Golang malware (BotenaGo) - https://cybersecurity.att.com/blogs/labs-research/att-alien-labs-finds-new-golang-malwarebotenago-targeting-millions-of-routers-and-iot-devices-with-more-than-30-exploits The Ultimate Game Hacking Resource - https://github.com/dsasmblr/game-hacking Blind Server Side Request Forgery (SSRF) Chains - https://blog.assetnote.io/2021/01/13/blind-ssrf-chains/ How to Detect Azure Active Directory Backdoors: Identity Federation - https://www.inversecos.com/2021/11/how-to-detect-azure-active-directory.html
news-and-links/2021.11.30.md at gh-pages · Nieuport/news-and-links

news-and-links/2021.11.30.md at gh-pages · Nieuport/news-and-links

Contribute to Nieuport/news-and-links development by creating an account on GitHub.

GitHubGitHub

Zaloguj się aby komentować

konik_polanowyTwórca
w społecznościCiekawostki
Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2021.11.28.md PAN-OS GlobalProtect Portal Scanner - https://github.com/noperator/panos-scanner#usage Building a Basic C2 - https://0xrick.github.io/misc/c2/ CronRAT malware hides behind February 31st - https://sansec.io/research/cronrat GraphQL Introspection - https://hasura.io/learn/graphql/intro-graphql/introspection/ Applied Purple Teaming - https://github.com/DefensiveOrigins/APT06202001 Data Exfiltration via CSS + SVG Font - https://mksben.l0.cm/2021/11/css-exfiltration-svg-font.html
news-and-links/2021.11.28.md at gh-pages · Nieuport/news-and-links

news-and-links/2021.11.28.md at gh-pages · Nieuport/news-and-links

Contribute to Nieuport/news-and-links development by creating an account on GitHub.

GitHubGitHub

Zaloguj się aby komentować

konik_polanowyTwórca
w społecznościCiekawostki
Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2021.11.26.md Exploiting CSP in Webkit to Break Authentication & Authorization -https://threatnix.io/blog/exploiting-csp-in-webkit-to-break-authentication-authorization/ Obfuscating Malicious, Macro-Enabled Word Docs - https://depthsecurity.com/blog/obfuscating-malicious-macro-enabled-word-docs Excel-Phish - Phish protected Excel-file passwords - https://s3cur3th1ssh1t.github.io/Phish-password-protected-Excel-files/ Je Ne Sais Quoi - Falcons over the Horizon - https://hexkyz.blogspot.com/2021/11/je-ne-sais-quoi-falcons-over-horizon.html# Picky PPID Spoofing - https://captmeelo.com/redteam/maldev/2021/11/22/picky-ppid-spoofing.html
news-and-links/2021.11.26.md at gh-pages · Nieuport/news-and-links

news-and-links/2021.11.26.md at gh-pages · Nieuport/news-and-links

Contribute to Nieuport/news-and-links development by creating an account on GitHub.

GitHubGitHub

Zaloguj się aby komentować

konik_polanowyTwórca
w społecznościCiekawostki
Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2021.11.24.md Program for determining types of files for Windows, Linux and MacOS - https://github.com/horsicq/Detect-It-Easy TensorFlow Python Code Injection: More eval() Woes - https://jfrog.com/blog/tensorflow-python-code-injection-more-eval-woes/ Driftwood: Know if Private Keys are Sensitive - https://trufflesecurity.com/blog/driftwood SQL Injection Exploitation Tool - https://github.com/CiscoCXSecurity/bbqsql List of Awesome Asset Discovery Resources - https://github.com/redhuntlabs/Awesome-Asset-Discovery
news-and-links/2021.11.24.md at gh-pages · Nieuport/news-and-links

news-and-links/2021.11.24.md at gh-pages · Nieuport/news-and-links

Contribute to Nieuport/news-and-links development by creating an account on GitHub.

GitHubGitHub

Zaloguj się aby komentować

konik_polanowyTwórca
w społecznościCiekawostki
Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2021.11.22.md TPM sniffing - https://blog.scrt.ch/2021/11/15/tpm-sniffing/ Fall of the machines: Exploiting the Qualcomm NPU - https://securitylab.github.com/research/qualcomm_npu/ Your Car Is Recording: Metadata-Driven Dashcam Analysis System - https://www.forensicfocus.com/webinars/your-car-is-recording-metadata-driven-dashcam-analysis-system/ Building WireGate: A WireGuard front to detect compromised keys - https://blog.thinkst.com/2021/11/building-wiregate-wireguard-front-to.html Fall of the machines: Exploiting the Qualcomm NPUBroken Access Control: Pentester's Gold Mine - https://payatu.com/blog/prateek.thakare/broken-access-control
news-and-links/2021.11.22.md at gh-pages · Nieuport/news-and-links

news-and-links/2021.11.22.md at gh-pages · Nieuport/news-and-links

Contribute to Nieuport/news-and-links development by creating an account on GitHub.

GitHubGitHub

Zaloguj się aby komentować

konik_polanowyTwórca
w społecznościCiekawostki
Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2021.11.20.md VBA RunPE - https://github.com/itm4n/VBA-RunPE Windows & Active Directory Exploitation Cheat Sheet and Command Reference - https://casvancooten.com/posts/2020/11/windows-active-directory-exploitation-cheat-sheet-and-command-reference/ New ransomware actor uses password-protected archives to bypass encryption protection - https://news.sophos.com/en-us/2021/11/18/new-ransomware-actor-uses-password-protected-archives-to-bypass-encryption-protection/ All Roads Lead to OpenVPN: Pwning Industrial Remote Access Clients - https://claroty.com/2021/11/19/blog-research-all-roads-lead-to-openvpn-pwning-industrial-remote-access-clients/ Ploutus ATM Malware Case Study: Automated Deobfuscation of a Strongly Obfuscated .NET Binary - https://www.crowdstrike.com/blog/ploutus-atm-malware-deobfuscation-case-study/
news-and-links/2021.11.20.md at gh-pages · Nieuport/news-and-links

news-and-links/2021.11.20.md at gh-pages · Nieuport/news-and-links

Contribute to Nieuport/news-and-links development by creating an account on GitHub.

GitHubGitHub

Zaloguj się aby komentować

konik_polanowyTwórca
w społecznościCiekawostki
Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2021.11.18.md Run in Sandbox: a quick way to run/extract files in Windows Sandbox - https://www.systanddeploy.com/2021/11/run-in-sandbox-quick-way-to-runextract.html LinkedIn Fakes: A Wolf in Business Casual Clothing - https://hatless1der.com/linkedin-fakes-a-wolf-in-business-casual-clothing/ Encrypted exploit delivery for the masses - https://github.com/MRGEffitas/Ironsquirrel All about bug bounty - https://github.com/daffainfo/AllAboutBugBounty AFL++ on Android with QEMU support - https://alephsecurity.com/2021/11/16/fuzzing-qemu-android/
news-and-links/2021.11.18.md at gh-pages · Nieuport/news-and-links

news-and-links/2021.11.18.md at gh-pages · Nieuport/news-and-links

Contribute to Nieuport/news-and-links development by creating an account on GitHub.

GitHubGitHub

Zaloguj się aby komentować

konik_polanowyTwórca
w społecznościCiekawostki
Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2021.11.14.md The Invisible JavaScript Backdor - https://certitude.consulting/blog/en/invisible-backdoor/ Extracting the config from Blackmatter ESXi ELF Encryptors - https://michaelgoodman.co.uk/extracting-the-config-from-blackmatter-esxi-elf-encryptors Exploiting CSP in Webkit to Break Authentication & Authorization - https://threatnix.io/blog/exploiting-csp-in-webkit-to-break-authentication-authorization/ TP-Link TL-WR840N EU v5 Remote Code Execution - https://k4m1ll0.com/cve-2021-41653.html Playstation 5 hacked—twice! - https://blog.malwarebytes.com/hacking-2/2021/11/playstation-5-hacked-twice/
news-and-links/2021.11.14.md at gh-pages · Nieuport/news-and-links

news-and-links/2021.11.14.md at gh-pages · Nieuport/news-and-links

Contribute to Nieuport/news-and-links development by creating an account on GitHub.

GitHubGitHub

Zaloguj się aby komentować

konik_polanowyTwórca
w społecznościCiekawostki
Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2021.11.10.md Igor: Crash Deduplication Through Root-Cause Clustering (CCS'21) - https://www.youtube.com/watch?v=V06x1Ad5dRo Beg Bounties - https://www.troyhunt.com/beg-bounties/ Privilege Escalation Enumeration Script for Windows - https://github.com/itm4n/PrivescCheck Discovering goroutine leaks with Semgrep - https://blog.trailofbits.com/2021/11/08/discovering-goroutine-leaks-with-semgrep/ Threat Hunting Certificate Account Persistence - https://pentestlaboratories.com/2021/11/08/threat-hunting-certificate-account-persistence/
news-and-links/2021.11.10.md at gh-pages · Nieuport/news-and-links

news-and-links/2021.11.10.md at gh-pages · Nieuport/news-and-links

Contribute to Nieuport/news-and-links development by creating an account on GitHub.

GitHubGitHub

Zaloguj się aby komentować