NullSection : A Revolutionary Anti-Reversing Tool For Enhancing Software Security
.webp "NullSection : A Revolutionary Anti-Reversing Tool For Enhancing Software Security")
NullSection emerges as a cutting-edge tool designed to fortify software against reverse engineering attempts. By employing a novel technique that overwrites section headers with null bytes, it effectively renders ELF binaries, including potentially malicious .ko rootkits, impervious to analysis by popular decompilers like Ghidra and IDA. This article delves into the installation process, advantages, and responsible usage of NullSection,...
Mr.Handler – The Ultimate Tool For Linux Security Incident Response And System Analysis
.webp "Mr.Handler – The Ultimate Tool For Linux Security Incident Response And System Analysis")
MR.Handler is a specialized tool designed for responding to security incidents on Linux systems. It connects to target systems via SSH to execute a range of diagnostic commands, gathering crucial information such as network configurations, system logs, user accounts, and running processes. At the end of its operation, the tool compiles all the gathered data into a comprehensive HTML...
AzSubEnum – Azure Service Subdomain Enumeration
.webp "AzSubEnum – Azure Service Subdomain Enumeration")
AzSubEnum is a specialized subdomain enumeration tool tailored for Azure services. This tool is designed to meticulously search and identify subdomains associated with various Azure services. Through a combination of techniques and queries, AzSubEnum delves into the Azure domain structure, systematically probing and collecting subdomains related to a diverse range of Azure services. How It Works? AzSubEnum operates by leveraging DNS...
SwaggerSpy – Elevating API Security Through OSINT On SwaggerHub
.webp "SwaggerSpy – Elevating API Security Through OSINT On SwaggerHub")
SwaggerSpy is a tool designed for automated Open Source Intelligence (OSINT) on SwaggerHub. This project aims to streamline the process of gathering intelligence from APIs documented on SwaggerHub, providing valuable insights for security researchers, developers, and IT professionals. What Is Swagger? Swagger is an open-source framework that allows developers to design, build, document, and consume RESTful web services. It simplifies API...
UAC-BOF-Bonanza : Elevating Access With Advanced Bypass Methods
This repository serves as a collection of public UAC bypass techniques that have been weaponized as BOFs. A single module which integrates all techniques has been provided to use the BOFs via the Havoc C2 Framework. A extension.json file has also been provided for each bypass technique for use in Sliver. See the section of the readme titled Greetz/Credit for all references/code that was used...
XC : A Comprehensive Guide To Netcat – Like Reverse Shell For Linux And Windows
.webp "XC : A Comprehensive Guide To Netcat – Like Reverse Shell For Linux And Windows")
A powerful tool reminiscent of Netcat, designed for both Linux and Windows systems. With its array of features including file manipulation, port forwarding, and plugin execution, XC offers versatile capabilities for penetration testers and ethical hackers. This article provides a detailed overview and setup guide for leveraging XC's functionalities effectively. Netcat like reverse shell for Linux & Windows. Features Windows Usage: └ Shared Commands:...
linWinPwn – Active Directory Vulnerability Scanner
.webp "linWinPwn – Active Directory Vulnerability Scanner")
A versatile bash script designed for automating Active Directory enumeration and vulnerability assessment. By leveraging a curated selection of tools and employing clever techniques like dynamic port forwarding, linWinPwn streamlines the process of gathering evidence in AD environments. Whether you're working against time constraints or aiming to minimize footprint, this article introduces you to the setup, modules, and parameters...
WDAC Rule Levels Comparison And Guide – Understanding File Attribute-Based Security Measures
.webp "WDAC Rule Levels Comparison And Guide – Understanding File Attribute-Based Security Measures")
We delve into the hierarchy of WDAC rule levels, ranging from the most secure to the least secure, providing insight into their significance and implications for system security. Understanding these levels is crucial for effectively implementing file attribute-based security measures in your Windows environment. This document lists all of the levels of WDAC rules. From Top to bottom, from the most...
SharpADWS – Red Team’s Secret Weapon For Active Directory Reconnaissance
.webp "SharpADWS – Red Team’s Secret Weapon For Active Directory Reconnaissance")
A groundbreaking tool revolutionizing Active Directory reconnaissance for Red Teams. By leveraging the obscure Active Directory Web Services (ADWS) protocol, SharpADWS enables discreet data collection and manipulation, evading traditional detection methods. Explore its unique advantages and protocol implementation, empowering Red Teams with unparalleled precision in post-exploitation operations. Active Directory reconnaissance and exploitation for Red Teams via the Active Directory Web...
MinDNS – A Lightweight Rust-Based DNS Server For Enhanced Network Security
.webp "MinDNS – A Lightweight Rust-Based DNS Server For Enhanced Network Security")
Delve into the realm of network security with MinDNS, a lightweight DNS server crafted in Rust. Designed for versatility, it serves as a formidable firewall, black-hole, or proxy DNS server. In this article, we explore its features, performance, and potential applications, shedding light on its role in fortifying digital infrastructures. MinDNS is a minimal DNS server written in Rust. It...
