PSMDATP : PowerShell Module For Managing Microsoft Defender Advanced Threat Protection
Welcome to the Microsoft Defender Advanced Threat Protection PowerShell module: PSMDATP This module is a collection of easy-to-use cmdlets and functions designed to make it easy to interface with the Microsoft Defender Advanced Threat Protection API. Motivation I created this PowerShell module for MDATP for the following reasons: Advance my PowerShell skillsProvide an easy way to interact with MDATP through PowerShell because I...
Using Bulk Scripting With remote.it
If you’re managing a fleet of devices (endpoints), you run into the challenge of managing and updating those devices without exposing your endpoints to attacks from hackers. You can create secure connections to your devices or even a secure virtual private internet of private connections using remote.it, but it can still be tedious to update hundreds or thousands of...
Sitrep : Extensible, Configurable Host Triage
SitRep is intended to provide a lightweight, extensible host triage alternative. Checks are loaded dynamically at runtime from stand-alone files. This allows operators to quickly modify existing checks, or add new checks as required. Checks are grouped by category and can be marked as OpSec safe/unsafe. unsafe checks are only loaded if the /AllowUnsafe flag is provided. Interesting results are highlighted...
Enum4Linux : A Linux Alternative To Enum.Exe
Enum4Linux is a Linux alternative to enum.exe for enumerating data from Windows and Samba hosts. It is a tool for enumerating information from Windows and Samba systems. It attempts to offer similar functionality to enum.exe formerly available from www.bindview.com. It is written in Perl and is basically a wrapper around the Samba tools smbclient, rpclient, net and nmblookup. The tool usage can...
IT Outstaffing In Ukraine: Pros and Cons
In the meantime, with the demand in the IT market, many business owners are searching for skilled professionals at lower prices to cut the costs on the company. Ukraine has recently been a focal point for major IT players to outsource their companies. Ukraine is trying to become the leading region for understanding the customer’s opportunities by demonstrating high...
The Importance of Using a VPN While Torrenting
Torrenting is today’s leading way to share files over the Internet. In the past, friends and family shared physical CDs, checking out the music, DVDs, and games they’ve collected. These days, however, a majority of multimedia releases are accessed in digital form. In other cases, a release might exist in digital format exclusively. Torrenting might be more accessible than physical...
Dnx Firewall – A Pure Python Next Generation Firewall Built On Top Of Linux Kernel/Netfilter
DNX Firewall is an optimized/high performance collection of applications or services to convert a standard linux system into a zone based next generation firewall. All software is designed to run in conjunction with eachother, but with a modular design certain aspects can be completely removed with little effort. The primary security modules have DIRECT/INLINE control over all connections, streams,...
FLUFFI : Fully Localized Utility For Fuzzing Instantaneously
FLUFFI is a distributed evolutionary binary fuzzer for pentesters. Usage 1)Adding runner systems to FUN All FuzzJobs are run on dedicated Runner systems in the FLUFFI Utility Network (FUN). You can bring your own system or use the FLUFFI PXE images (recommended). How to build these images is documented here. To add new systems: Physically plug your system into FUNCheck connectivity to gm.fluffi. For...
GRAT2 : Command And Control (C2) Project For Learning Purpose
GRAT2 is a Command and Control (C2) tool written in python3 and the client in .NET 4.0. The main idea came from Georgios Koumettou who initiated the project. Why we developed GRAT2 ? We are aware that there are numerous C2 tools out there but, we developed this tool due to curiosity of how C2 and other evasion techniques work. That's...
VMPDump : A Dynamic VMP Dumper And Import Fixer
VMPDump is a dynamic VMP dumper and import fixer, powered by VTIL. Works for VMProtect 3.X x64. Before vs After Usage VMPDump.exe <Target PID> "<Target Module>" Arguments: <Target PID>: The ID of the target process, in decimal or hex form.<Target Module>: The name of the module which should be dumped and fixed. This can be an empty string ("") if the process...
