.webp "Arena-Hard-Auto : Advancing LLM Evaluation With Style Control Integration")
.webp "How To Install/Run – Streamlining OSINT Workflows For Enhanced Capabilities")
jwt_tool : Unlocking JWT Security With The JSON Web Token Toolkit
Discover the power of jwt_tool, a comprehensive toolkit designed for the robust testing of JSON Web Tokens (JWTs). Perfect for pentesters and developers, this toolkit offers a variety of functions, from validating token authenticity to exploiting known vulnerabilities. Dive into the capabilities of jwt_tool and enhance your security skills and knowledge. Its functionality includes: Checking the validity of a token Testing for...
Certiception – Reinventing Network Security With Deceptive Active Directory Certificate Services
Certiception is a honeypot for Active Directory Certificate Services (ADCS), designed to trap attackers with a realistic and attractive bait that triggers highly relevant alerts. Developed by the SRLabs Red Team, Certiception creates a vulnerable-looking certificate template in your ADCS environment, sets up restrictions to prevent exploitation, and supports in setting up effective alerting. Originally released at Troopers24, Certiception comes with a strategic guide...
Lemma – Harnessing AWS Lambda For Scalable Command-Line Tool Execution
The author of this project is not responsible for any damage or data loss incurred as a result of using this software. Use this software at your own risk. While efforts have been made to ensure the accuracy and reliability of the software, it is provided "as is" without warranty of any kind. By using this software, you agree...
AMSI Bypass via VEH – Technique Using Vectored Exception Handling
A PowerShell AMSI Bypass technique via Vectored Exception Handler (VEH). This technique does not perform assembly instruction patching, function hooking or Import Address Table (IAT) modification. How It Works: For this technique to work, you must first inject the VEH DLL into the PowerShell process. This can be done either by injecting the DLL or via DLL hijacking . This technique works...
RedELK – Essential Naming Requirements For Deployment
In the complex landscape of RedELK deployment, adhering to precise naming requirements is crucial for operational success. This article delves into the essential naming conventions necessary for a smoothly functioning RedELK setup. From FilebeatID to Redirector configurations, understand the specifics that ensure your cybersecurity infrastructure is effective and efficient. For a properly working RedELK setup it is required to pay...
Kdrill – Unveiling Rootkit Intrusions In Windows 64-Bit Systems
Kdrill is a tool to analyze the kernel land of Windows 64b systems (tested from Windows 7 to Windows 11). Its main objective is to assess if the kernel is compromised by a rootkit. The code is compatible with python2/3 without dependencies and can perfom checks without Microsoft symbols or Internet connectivity. For live memory/kernel analysis, the Winpmem driver is used and Kdrill interfaces itself...
LogHunter – A Revolutionary Tool For Session Detection via Event Logs
Opsec tool for finding user sessions by analyzing event log files through RPC (MS-EVEN). I was once doing a very complex project where there were over 1000 hosts in the infrastructure. I needed to detect the user session. Running Invoke-UserHunter would have been a huge mistake. That's when I came up with the idea that we could extract all the...
APKscan – Mastering Android Security Analysis
APKs (Android Package Kits) often leak secrets due to over-reliance on security through obscurity. Developers sometimes leave sensitive information such as API keys, tokens, and credentials hidden within the code, assuming that they won't be found easily since the code has been compiled and obfuscated. However, this approach is fundamentally flawed, and such secrets can be exposed, leading to potential security vulnerabilities. Identify Sensitive Locations In Application Code APKscan...
Akto.io – Comprehensive Security Testing And Inventory Management
Akto is an instant, open source API security platform that takes only 60 secs to get started. Akto is used by security teams to maintain a continuous inventory of APIs, test APIs for vulnerabilities and find runtime issues. Akto offers coverage for all OWASP top 10 and HackerOne Top 10 categories including BOLA, authentication, SSRF, XSS, security configurations, etc....
CCC : Cyberspace Under Siege – Understanding Crime, Espionage, And Conflict
This is a short graduate course providing an introduction to the areas of crime, espionage and conflicts in cyberspace. The material is used for the "Cybercrime, Cyberespionage, and Cyberwar" course currently taught in the Master in Cybersecurity at UC3M. The course provides a gentle, not very technical introduction to several contemporary security and privacy topics, including some bits of history, opponents and the current cyberthreat landscape, the underground...
