Kali
Sinon is a modular tool for automatic burn-in of Windows-based deception hosts that aims to reduce the difficulty of orchestrating deception hosts at scale whilst enabling diversity and randomness through generative capabilities. It has been created as a proof-of-concept and is not intended for production deception environments. It would likely be better suited to having …
Continue reading “Sinon – Modular Windows Burn-In Automation With Generative AI For Deception”
The “MSFT_DriverBlockList” serves as a central repository for the default Microsoft Driver Block Lists, tailored for specific OS builds. It’s important to note the distinction between these default lists and the Microsoft recommended driver block lists, which offer guidance on broader driver management strategies. This article provides a concise overview of the available block lists …
Windows by default is secure and safe, this repository does not imply nor claim otherwise. Just like anything, you have to use it wisely and don’t compromise yourself with reckless behavior and bad user configuration; Nothing is foolproof. This repository only uses the tools and features that have already been implemented by Microsoft in Windows …
Powershell Digital Forensics & Incident Response (DFIR) equips cybersecurity professionals with a suite of PowerShell scripts tailored for effective incident handling on Windows devices. From collecting forensic artifacts to analyzing security events, these tools streamline the process of identifying, understanding, and mitigating cyber threats, ensuring a robust defense mechanism in the digital landscape. This repository …
msdocviewer is a simple tool for viewing Microsoft’s win32 API and driver technical documentation. msdocviewer consists of two parts. The first is a parser (run_me_first.py) that searches for all markdown files in the Microsoft sdk-api and driver repository, it then checks if the document is related to a function and if so, it copies the document to a directory and then …
BackupCreds presents a groundbreaking method for security professionals to exploit SeTrustedCredmanAccessPrivilege, enabling the dumping of stored credentials in Windows environments. This article delves into the intricate process of leveraging elevated shells for credential extraction, offering a step-by-step guide on accessing and manipulating the Windows Credential Manager. Discover how BackupCreds transforms security testing and vulnerability assessments …
Continue reading “BackupCreds – Mastering Credential Dumping In Windows”
WinFiHack is a recreational attempt by me to rewrite my previous project Brute-Hacking-Framework’s main wifi hacking script that uses netsh and native Windows scripts to create a wifi bruteforcer. This is in no way a fast script nor a superior way of doing the same hack but it needs no external libraries and just Python and python …
Explore the innovative approach to running Windows inside a Docker container, offering a streamlined and flexible solution for developers and IT professionals. This guide provides an in-depth look at setting up Windows environments using Docker, from automatic ISO downloads and KVM acceleration to web-based management. Whether you’re looking to create a Windows 11 machine or …
Continue reading “Windows – Seamless Integration And Management”
A small x64 library to load dll’s into memory. n the world of software development, efficient DLL loading is a crucial aspect of optimizing performance and functionality. Enter “LdrLibraryEx,” a powerful x64 library designed to streamline the process of loading DLLs into memory. This lightweight and versatile tool offers developers a range of features, from …
Continue reading “LdrLibraryEx – A Lightweight x64 Library For Loading DLLs Into Memory”
Priv2Admin idea is to “translate” Windows OS privileges to a path leading to: administrator, integrity and/or confidentiality threat, availability threat, just a mess. Privileges are listed and explained at: https://docs.microsoft.com/en-us/windows/win32/secauthz/privilege-constants If the goal can be achieved multiple ways, the priority is Using built-in commands Using PowerShell (only if a working script exists) Using non-OS tools Using …
Continue reading “Priv2Admin : Exploitation Paths Allowing You To (Mis)Use The Windows Privileges”
.webp)
.webp)
.webp)
.webp)
