WHAT'S NEW
- All
- Android
- Android
- Applications
- Blog
- Cyber security
- Database Assessment
- Exploitation Tools
- Forensics
- Hacking Tools
- Information Gathering
- iphone
- Kali Linux
- Kali Linux Tools
- Linux
- Malware
- New Post
- Password Attacks
- PCI
- Pentesting Tools
- Phishing
- Post Exploitation
- Security Hacker
- Sniffing/Spoofing
- software
- Stress Testing
- TECH
- Tech today
- Tutorials
- VPN
- Vulnerability Analysis
- Web Application Analysis
- Wi-Fi
- Wi-Fi
- Windows
- Wireless Attacks
- YECH
Exploit Street – Navigating The New Terrain Of Windows LPEs
ShadowDumper – Advanced Techniques For LSASS Memory Extraction
Shadow-rs : Harnessing Rust’s Power For Kernel-Level Security Research
ExecutePeFromPngViaLNK – Advanced Execution Of Embedded PE Files via PNG And LNK
Red Team Certification – A Comprehensive Guide To Advancing In Cybersecurity Operations
WINDOWS PHONE
P-Gen
LATEST ARTICLES
Exploit Street – Navigating The New Terrain Of Windows LPEs
Exploit-Street, where we dive into the ever-evolving world of cybersecurity with a focus on Local Privilege Escalation (LPE) exploits targeting Windows systems. Since 2023, there has been a notable surge in these vulnerabilities, yet comprehensive resources detailing them have been scarce—until now. This article aims to bridge that gap, providing cybersecurity professionals and enthusiasts with an essential guide to...
ShadowDumper – Advanced Techniques For LSASS Memory Extraction
Shadow Dumper is a powerful tool used to dump LSASS (Local Security Authority Subsystem Service) memory, often needed in penetration testing and red teaming activities. It offers flexible options to users and uses multiple advanced techniques to dump memory, allowing to access sensitive data in LSASS memory. Capabilities Unhooked Injection (Modified Mimikatz Binary) – Utilizes unhooking to inject a modified Mimikatz...
Shadow-rs : Harnessing Rust’s Power For Kernel-Level Security Research
shadow-rs is a Windows kernel rootkit written in Rust, demonstrating advanced techniques for kernel manipulation while leveraging Rust’s safety and performance features. This project is intended for educational and research purposes. The project also provides useful crates for developing rootkits, such as shadowx, which consolidates core logic and essential techniques. It includes rootkit-specific tricks, with plans for additional features in...
ExecutePeFromPngViaLNK – Advanced Execution Of Embedded PE Files via PNG And LNK
Extract and execute a PE embedded within a PNG file using an LNK file. The PE file is encrypted using a single-key XOR algorithm and then injected as an IDAT section to the end of a specified PNG file. Quick Links Maldev Academy Home Maldev Academy Syllabus Maldev Academy Pricing Usage Use InsertPeIntoPng.py to create the embedded PNG file and generate the extraction LNK file: The...
Red Team Certification – A Comprehensive Guide To Advancing In Cybersecurity Operations
Embark on the journey of becoming a certified Red Team professional with our definitive guide. This article provides a comprehensive overview of the top Red Team certifications including CRTP, CRTE, and CRTO, complete with detailed course write-ups and indispensable cheat sheets. Whether you're starting out or looking to advance your skills, this guide is your gateway to mastering Red Team...
CVE-2024-5836 / CVE-2024-6778 : Chromium Sandbox Escape via Extension Exploits
This repository contains proof of concept exploits for CVE-2024-5836 and CVE-2024-6778, which are vulnerabilities within the Chromium web browser which allowed for a sandbox escape from a browser extension. To run these, you must be on a version of Chromium older than 126.0.6478.54. Write up Bug report Both the CVE-2024-5386 and CVE-2024-6778 directories contains a POC Chrome extension that is able to...
Rust BOFs – Unlocking New Potentials In Cobalt Strike
This took me like 4 days (+2 days for an update), but I got it working... rust core + alloc for Cobalt Strike BOFs.This is very much a PoC, but I'd love to see others playing around with it and contributing. Building Install mingw Install nightly rust with the x86_64-pc-windows-gnu and i686-pc-windows-gnu toolchains Run cargo install cargo-make Run cargo make ???? BOFit Make Your Own Edit the entry...
MaLDAPtive – Pioneering LDAP SearchFilter Parsing And Security Framework
MaLDAPtive is a framework for LDAP SearchFilter parsing, obfuscation, deobfuscation and detection. Its foundation is a 100% custom-built C# LDAP parser that handles tokenization and syntax tree parsing along with numerous custom properties that enable accurate and efficient obfuscation, deobfuscation and detection of LDAP SearchFilters. The rest of the project is a PowerShell wrapper designed for maximum flexibility, randomization and...
Cloudkicker – Implementing Basic Authentication ith .htaccess And htpasswd
There are a number of excellent tutorials. I recommend this one: Basically, you are going to create a .htaccess file in the directory you want to protect. This .htaccess file will have a line in it, AuthUserFile, that will point to an htpasswd file. Authtype Basic AuthName "RESTRICTED - cloudkicker" AuthUserFile <path to your htpasswd file> Require valid-user The htpasswd file should be placed outside...
Pwnlook – A Deep Dive Into Outlook Email Exploitation
Pwnlook is an offensive postexploitation tool that will give you complete control over the Outlook desktop application and therefore to the emails configured in it. What it does: List mailboxes List folders Gather emails information Read email Search by recipient or subject Download attachments It's possible to do almost everything that Outlook can do: send emails, create forward rules, list contacts... But all this is out...