sailay(valen)

@404death

Just an Idiot. S-1-5-7

Myanmar
github.com/sailay1996
Vrijeme pridruživanja: travanj 2013.
74 fotografije ili videozapisa Fotografije i videozapisi

Tweetovi

Blokirali ste korisnika/cu @404death

Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @404death

  1. Prikvačeni tweet
    8. pro 2019.

    you can UAC bypass all executable files which are autoelevate true base on my first article. UAC Bypass All the things POCs: sample: Bluetooth uninstall device task (UAC Bypass to administrator)

    398 proslijeđenih tweetova 756 korisnika označava da im se sviđa
    Poništi
  2. proslijedio/la je Tweet
    prije 18 sati

    Stay positive Lolbins... not! rundll32 advpack.dll, RegisterOCX calc.exe rundll32 advpack.dll, #12 calc.exe rundll32 advpack.dll, #+12 calc.exe rundll32 advpack.dll, #-4294967284 calc.exe

    6 replies 98 proslijeđenih tweetova 279 korisnika označava da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  3. proslijedio/la je Tweet
    4. velj

    Exploiting Format Strings in Windows

    51 proslijeđeni tweet 144 korisnika označavaju da im se sviđa
    Poništi
  4. proslijedio/la je Tweet
    2. velj

    Chapter 6 has been published!

    39 proslijeđenih tweetova 159 korisnika označava da im se sviđa
    Poništi
  5. proslijedio/la je Tweet
    3. sij

    Next Windows Internals (Remote) Training

    82 proslijeđena tweeta 252 korisnika označavaju da im se sviđa
    Poništi
  6. proslijedio/la je Tweet
    1. velj

    Load encrypted PE from XML Attribute. MSBuild is still the best.😅 MSBuild sets Property then calls Execute. Use this example to decouple payloads & prove that all security products have a "Single File Bias". Decouple payloads to subvert detection.

    5 replies 149 proslijeđenih tweetova 309 korisnika označava da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  7. proslijedio/la je Tweet
    31. sij

    Fuck it, I can't focus at all today. It's a mess, sorry.. I've also uploaded the discussed bug to github. Maybe someone can make sense of it. It's a junction bug that's a little more complicated then a simple "bait and switch". Hope it's useful to someone.

    6 replies 66 proslijeđenih tweetova 236 korisnika označava da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  8. 30. sij

    Logical bugs are more fun than memory corruption bugs. bug and bug I will disclose details after vendor is fix.

    1 reply 7 proslijeđenih tweetova 15 korisnika označava da im se sviđa
    Poništi
  9. proslijedio/la je Tweet
    26. sij

    Awesome LD_PRELOAD

    41 proslijeđeni tweet 44 korisnika označavaju da im se sviđa
    Poništi
  10. proslijedio/la je Tweet
    27. sij

    MSBuild without MSBuild.exe

    1 reply 50 proslijeđenih tweetova 96 korisnika označava da im se sviđa
    Poništi
  11. 27. sij

    I created this repo for the people who want to learn about windows logical privilege escalation bugs. You can contact me to add good article which I missed.

    201 proslijeđeni tweet 490 korisnika označava da im se sviđa
    Poništi
  12. proslijedio/la je Tweet
    25. sij

    Just finished the writeup for my learning process to replicate the CVE-2019-19470, I also public the source code for exploit and a Masquerade-PEB C#. Hope you enjoy!

    I just want to thanks for their writeup and for they hard work & inspiration, after a few days of frustration, try and error I finish replicating the exploit for CVE-2019-19470. I'll do blogpost & publish my C# PEBMasquerade too :)
    73 proslijeđena tweeta 128 korisnika označava da im se sviđa
    Poništi
  13. proslijedio/la je Tweet
    26. sij

    Ladies and gentlemen, I present you a working Remote Code Execution (RCE) exploit for the Remote Desktop Gateway (CVE-2020-0609 & CVE-2020-0610). Accidentally followed a few rabbit holes but got it to work! Time to write a blog post ;) Don't forget to patch!

    47 replies 1.123 proslijeđena tweeta 3.141 korisnik označava da mu se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  14. proslijedio/la je Tweet
    25. sij

    [Blog] Offensive Security - AWE/OSEE Review cc

    5 replies 39 proslijeđenih tweetova 143 korisnika označavaju da im se sviđa
    Poništi
  15. proslijedio/la je Tweet
    24. sij

    Post-exploitation tip: Do you know how to trivially & remotely hijack an session without prompt nor warning on user's side using signed binary (no patch/multi-session) ? qwinsta+mstsc shadowing is the answer ;) Details:

    7 replies 346 proslijeđenih tweetova 818 korisnika označava da im se sviđa
    Poništi
  16. proslijedio/la je Tweet
    23. sij

    Oh nice, just released their Powershell Adversary Tactics course material to the public for free \o/ "PowerShell is still used extremely heavily in the wild and defenders need to be equipped to detect all of the tactics they may employ. "

    11 proslijeđenih tweetova 19 korisnika označava da im se sviđa
    Poništi
  17. proslijedio/la je Tweet
    22. sij

    Local Privilege Escalation in many Ricoh Printer Drivers for Windows (CVE-2019-19363) + Exploit

    16 proslijeđenih tweetova 31 korisnik označava da mu se sviđa
    Poništi
  18. proslijedio/la je Tweet
    17. sij

    Rumble in the pipe - a nice writeup about a vuln in by our teammate

    57 proslijeđenih tweetova 113 korisnika označava da im se sviđa
    Poništi
  19. proslijedio/la je Tweet
    21. sij

    Added 2 more PoC scripts to the OffensiveDLR repo. One of which embeds the SSharp Compiler within a Posh script (Can be easily embedded from within any .NET language.) SSharp code compilation does not call csc.exe :)

    1 reply 73 proslijeđena tweeta 190 korisnika označava da im se sviđa
    Poništi
  20. proslijedio/la je Tweet
    21. sij

    Senior Security Consultant describes the discovery of a privilege escalation in the Intel Trusted Connect Service Client and how to complete the in order to obtain local admin access

    59 proslijeđenih tweetova 109 korisnika označava da im se sviđa
    Poništi
  21. proslijedio/la je Tweet
    21. sij

    Hey Defender friends. Turns out that removing those services with Unicode/non-printable characters is pretty hard, so I wrote you a tool to help with that. I'll be releasing the offensive PoC later this week or early next week.

    1 reply 102 proslijeđena tweeta 186 korisnika označava da im se sviđa
    Poništi

@404death još nije objavio nijedan Tweet.

Čini se da učitavanje traje već neko vrijeme.

Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.

    Možda bi vam se svidjelo i ovo:

    ·