Kali
In recent developments, a significant security vulnerability has emerged within Ivanti Endpoint Manager (EPM), identified as CVE-2024-29824. This critical flaw allows for remote code execution (RCE), posing a severe risk to systems running the affected software. The exploit enables attackers to execute arbitrary code on target systems, potentially leading to full system compromise. This article …
Continue reading “CVE-2024-29824 : Exploring The Remote Code Execution Vulnerability In Ivanti EPM”
This list is for anyone wishing to learn about web application security but do not have a starting point. You can help by sending Pull Requests to add more information. If you’re not inclined to make PRs you can tweet me at @infoslack Table Of Contents Books For more information click here.
This hands-on training lab consists of 10 fun real world like hacking exercises, corresponding to each of the OWASP Top 10 vulnerabilities. Hints and solutions are provided along the way. Although the backend for this is written in PHP, vulnerabilities would remain the same across all web based languages, so the training would still be …
Discover the power of jwt_tool, a comprehensive toolkit designed for the robust testing of JSON Web Tokens (JWTs). Perfect for pentesters and developers, this toolkit offers a variety of functions, from validating token authenticity to exploiting known vulnerabilities. Dive into the capabilities of jwt_tool and enhance your security skills and knowledge. Its functionality includes: Audience …
Continue reading “jwt_tool : Unlocking JWT Security With The JSON Web Token Toolkit”
Certiception is a honeypot for Active Directory Certificate Services (ADCS), designed to trap attackers with a realistic and attractive bait that triggers highly relevant alerts. Developed by the SRLabs Red Team, Certiception creates a vulnerable-looking certificate template in your ADCS environment, sets up restrictions to prevent exploitation, and supports in setting up effective alerting. Originally released at Troopers24, …
The author of this project is not responsible for any damage or data loss incurred as a result of using this software. Use this software at your own risk. While efforts have been made to ensure the accuracy and reliability of the software, it is provided “as is” without warranty of any kind. By using …
Continue reading “Lemma – Harnessing AWS Lambda For Scalable Command-Line Tool Execution”
A PowerShell AMSI Bypass technique via Vectored Exception Handler (VEH). This technique does not perform assembly instruction patching, function hooking or Import Address Table (IAT) modification. How It Works: For this technique to work, you must first inject the VEH DLL into the PowerShell process. This can be done either by injecting the DLL or …
Continue reading “AMSI Bypass via VEH – Technique Using Vectored Exception Handling”
In the complex landscape of RedELK deployment, adhering to precise naming requirements is crucial for operational success. This article delves into the essential naming conventions necessary for a smoothly functioning RedELK setup. From FilebeatID to Redirector configurations, understand the specifics that ensure your cybersecurity infrastructure is effective and efficient. For a properly working RedELK setup …
Continue reading “RedELK – Essential Naming Requirements For Deployment”
Kdrill is a tool to analyze the kernel land of Windows 64b systems (tested from Windows 7 to Windows 11). Its main objective is to assess if the kernel is compromised by a rootkit. The code is compatible with python2/3 without dependencies and can perfom checks without Microsoft symbols or Internet connectivity. For live memory/kernel …
Continue reading “Kdrill – Unveiling Rootkit Intrusions In Windows 64-Bit Systems”
Opsec tool for finding user sessions by analyzing event log files through RPC (MS-EVEN). I was once doing a very complex project where there were over 1000 hosts in the infrastructure. I needed to detect the user session. Running Invoke-UserHunter would have been a huge mistake. That’s when I came up with the idea that …
Continue reading “LogHunter – A Revolutionary Tool For Session Detection via Event Logs”
.webp)
