Tweetovi
- Tweetovi, trenutna stranica.
- Tweetovi i odgovori
- Medijski sadržaj
Blokirali ste korisnika/cu @decidedlygray
Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @decidedlygray
-
decidedlygray proslijedio/la je Tweet
PInjectra’s Stack Bombing Process Injection example was only the beginning. I wrote a practical implementation of it that performs process migration using shared Memory, self-loading/linking DLLs, and an RWX ROP chain. Https://github.com/Crypt0s/Ampulex Also included: a detection for it
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
decidedlygray proslijedio/la je Tweet
Coming up at 2pm,
@ScepticCtf,@brymko, and@bl4ckic3 will be targeting a remote code execution with continuation against the Triangle Microworks SCADA Data Gateway in the DNP3 category. This could be the most exciting demo of the contest.#P2OMiami#S4x20Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
decidedlygray proslijedio/la je Tweet
Revisiting RDP lateral movement https://posts.specterops.io/revisiting-remote-desktop-lateral-movement-8fb905cb46c3 … and releasing a project that will be part of a bigger tool coming next week
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
decidedlygray proslijedio/la je Tweet
Here is the link to the SpecterOps Adversary Tactics: PowerShell course material: https://github.com/specterops/at-ps … Enjoy! For information about our current training offerings, information can be found here: https://specterops.io/how-we-help/training-offerings … (4/4)
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
decidedlygray proslijedio/la je Tweet
Despite its incredible security enhancements, PowerShell continues to be abused by adversaries. A strong knowledge of PowerShell enables defenders to effectively manage and respond to its abuse. (1/4)
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
decidedlygray proslijedio/la je Tweet
I'm excited to share my post about discovering & exploiting multiple critical vulnerabilities in Cisco's DCNM. Busting Cisco's Beans :: Hardcoding Your Way to Hell https://srcincite.io/blog/2020/01/14/busting-ciscos-beans-hardcoding-your-way-to-hell.html … PoC exploit code: https://srcincite.io/pocs/cve-2019-15975.py.txt … https://srcincite.io/pocs/cve-2019-15976.py.txt … https://srcincite.io/pocs/cve-2019-15977.py.txt …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
decidedlygray proslijedio/la je Tweet
Support added to crack Citrix NetScaler (SHA512) hashes with hashcat 6.0.0: https://github.com/hashcat/hashcat/commit/53105abeb47a6c325dee6714b1503cd68bd0c9c8 …pic.twitter.com/Qr9nc2Avy4
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
decidedlygray proslijedio/la je Tweet
Ok AES-256 encrypted LDAP passwords in ns.conf in ADC/NetScaler have been broken. You need to change those too.https://twitter.com/dozernz/status/1217073075058987008 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
decidedlygray proslijedio/la je Tweet
Voting is now open for the top 10 new web hacking techniques of 2019:https://portswigger.net/polls/top-10-web-hacking-techniques-2019 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
decidedlygray proslijedio/la je Tweet
Responder 3.0.0.0 is out! Massive upgrade, support for both py3 and py2, many bug fix, enhancements and Q.A++ on all servers, poisoners and tools. Enjoy! ;)https://github.com/lgandx/Responder/releases/tag/v3.0.0.0 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
decidedlygray proslijedio/la je Tweet
In this post,
@matterpreter dissects Mimikat'z kernel mode driver, Mimidrv, and walks through some of the capabilities available to us in ring 0. Check it out:https://posts.specterops.io/mimidrv-in-depth-4d273d19e148 …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
decidedlygray proslijedio/la je Tweet
This is clever: find an unlocked Windows computer, pop in a USB and it shows a fake login/lock screen ("hmm, did I lock my PC when I went for a coffee?") User enters credentials into *your* app & you just stole the username/password.
https://github.com/Pickfordmatt/SharpLocker …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
decidedlygray proslijedio/la je Tweet
Citrix Netscaler AMIs on
@awscloud default vulnerable out of the box. The root password is set to the instance ID; that can be read from the metadata URL. CVE-2019-19781 from nobody to ssh as root in seconds.pic.twitter.com/an2jZ7qtcM
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
decidedlygray proslijedio/la je Tweet
Just published a new blogpost with more details about the Citrix ADC Remote Command Execution.https://twitter.com/MDSecLabs/status/1215611640885972992 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
decidedlygray proslijedio/la je Tweet
Recently I was on a pentest and needed to manage Active Directory groups from Linux to achieve privilege escalation. If you find yourself in a similar scenario, this is what you can do:https://www.n00py.io/2020/01/managing-active-directory-groups-from-linux/ …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
decidedlygray proslijedio/la je Tweet
Nightmare is an intro to binary exploitation / reverse engineering course based around ctf challenges (binaries + writeups by hacking topics) https://github.com/guyinatuxedo/nightmare …
#reverse#exploitationHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
decidedlygray proslijedio/la je Tweet
One liner to import whole list of subdomains into Burp suite for automated scanning! cat <file-name> | parallel -j 200 curl -L -o /dev/null {} -x 127.0.0.1:8080 -k -s
#bugbountytips#bugbounty#bugbountytipHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
decidedlygray proslijedio/la je Tweet
Ghidra Plugin: JNIAnalyzer
#MobileSecurity#AndroidSecurity Github repo: https://github.com/Ayrx/JNIAnalyzer … writeup: https://ayrx.me/ghidra-jnianalyzer …pic.twitter.com/Byn6pgJLR5
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
decidedlygray proslijedio/la je Tweet
Shadow-Box v2: The Practical and Omnipotent Sandbox for ARM http://twib.in/l/5j5GGny97eMB via
@InfoSecHotSpotHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
decidedlygray proslijedio/la je Tweet
Released a new version of
#J2EEScan with multiple improvements:70+ unique#security checks, improved scan performance, new fuzzy logic to bypass weak WAF rules.#DAST#Spring#Secdevops#Burpsuite cc@Burp_Suite@PortSwiggerRes. https://github.com/ilmila/J2EEScan pic.twitter.com/XAHNKSCGPO
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.