.webp "Arena-Hard-Auto : Advancing LLM Evaluation With Style Control Integration")
.webp "How To Install/Run – Streamlining OSINT Workflows For Enhanced Capabilities")
CVE-2023-29360: Kernel DMA Exploit For Direct R/W Access To kernel Virtual Memory
When looking for vulnerabilities of interest, it’s always a good option to look for vulnerabilities used at pwn2own. Indeed, these vulnerabilities are exploited during the competition, meaning they have a practical impact. Thomas is recognized as one of the several highly skilled researchers in the French exploit scene, and is certainly knowledgeable The vulnerability, teased in the HITB's upcoming conference, is...
Burp Suite Sharpener – Advanced Features & Installation Guide
.webp "Burp Suite Sharpener – Advanced Features & Installation Guide")
A versatile tool designed to enhance both the UI and functionality of Burp Suite, streamlining your cybersecurity testing experience. Compatible exclusively with Burp Suite version 2023.10-22956 and above, this extension offers features such as theming, streamlined tab navigation, screenshot capabilities, and much more. Built upon the legacy of the original Burp Suite Sharpener project, this new iteration emphasizes user-centric enhancements...
Avred – Antivirus Red Teaming Unleashed
Antivirus REDucer for Antivirus REDteaming. Avred tries to provide as much context and information about each match as possible when identifying which portions of a file an antivirus has identified. Avred is a new tool that breaks down how antivirus programs work and shows exactly which parts of a file cause antivirus alerts. This tool not only finds these "hotspots,"...
AppleConnect – Streamlining Local Network With Bonjour
AppleConnect is a small Swift wrapper around a Network TCP stream on the local network (using Bonjour for discovery). Even though the transport is two-way, the API is built around a "service" that is offered by a single server and to which many clients can connect. Usage Setup for servers differs a little bit from that for clients. Once a connection...
Jormungandr – Unveiling The Kernel Power Of COFF Loading
Jormungandr is a kernel implementation of a COFF loader, allowing kernel developers to load and execute their COFFs in the kernel. The only supported type of COFF is an x64 kernel COFF (meaning a COFF that uses functions from either NTOSKRNL or SSDT). This project is not supported to run with VBS enabled because it is using pools with execute permissions but this project should...
OSINT GPT – ChatGPT Powered Open Source Intelligence Tool
.webp "OSINT GPT – ChatGPT Powered Open Source Intelligence Tool")
osintgpt is a Python package for leveraging OpenAI's GPT models to analyze text data and perform tasks such as calculating text embeddings, searching for similar documents, and more. It is designed for use in open-source intelligence (OSINT) applications and research. Installation You can install the osintgpt package using pip. pip install osintgpt Given the recent changes and updates, it is highly recommended to upgrade to the latest...
ADCSKiller – An ADCS Exploitation Automation Tool
.webp "ADCSKiller – An ADCS Exploitation Automation Tool")
ADCSKiller is a Python-based tool designed to automate the process of discovering and exploiting Active Directory Certificate Services (ADCS) vulnerabilities. It leverages the features of Certipy and Coercer to simplify the process of attacking ADCS infrastructure. Please note that the ADCSKiller is currently in its first draft and will undergo further refinements and additions in future updates. Features Enumerate Domain Administrators via...
OWASP WrongSecrets: Multi-Tenant CTF Party Setup
Welcome to OWASP WrongSecrets CTF Party, where Capture The Flag tasks meet scalability without any problems. Our platform is made for dynamic, multi-tenant CTF games. It was made possible by the pioneering work of the OWASP MultiJuicer. Whether you're a contestant who wants to take on the tasks or an organizer who wants a simple setup, this guide will show...
Supernova : The Ultimate Shellcode Encryption & Conversion Toolkit
Meet Supernova, the new and improved shellcode encryption tool made for today's ethical hackers. Supernova is written in Golang and works with both Windows and Linux. It has a wide range of encryption ciphers, such as ROT, XOR, RC4, and AES. What makes it different? It's not just an encryptor; it also changes your encrypted shellcode into forms that...
Combine Tool – Bypass EDRs & Secure Windows Credentials
.webp "Combine Tool – Bypass EDRs & Secure Windows Credentials")
By readapting the safetydump rust library (many thanks to the author!!!), I have been able to EASILY bypass all the countermeasures put in place by most EDRs, except Kaspersky EDR, and TrendMicro (new detection, from a couple hours ago) dbghelp!MiniDumpWriteDump with a custom callback could be used, until a year ago, to bypass most antivirus and EDR solutions. Now, most of...
