In the world of cybersecurity and ethical hacking, challenges often serve as valuable training grounds for aspiring professionals. "Frown –…
This is a custom exploit which targets Ubuntu 18.04+20.04 LTS/Centos 8/RHEL 8 to attain root privileges via arbitrary kernel code…
GraphStrike is a suite of tools that enables Cobalt Strike's HTTPS Beacon to use Microsoft Graph API for C2 communications. All Beacon…
The AI world has a security problem and it's not just in the inputs given to LLMs such as ChatGPT.…
In the realm of cybersecurity, the relentless battle between attackers and defenders rages on. Enter EchoDrv, a potent tool that…
Ghost is a light RAT that gives the server/attacker full remote access to the user's command-line interpreter (cmd.exe). They are allowed to execute…
LOLSpoof is a an interactive shell program that automatically spoof the command line arguments of the spawned process. Just call…
FalconHound is a blue team multi-tool. It allows you to utilize and enhance the power of BloodHound in a more…
Introducing Uscrapper 2.0, A powerfull OSINT webscrapper that allows users to extract various personal information from a website. It leverages…
gssapi-abuse was released as part of my DEF CON 31 talk. A full write up on the abuse vector can…