hacker_trick | Неотсортированное

Telegram-канал hacker_trick - Hacker tricks

3151

CVEs🔰 Tools🛠 RedTeam📕

Подписаться на канал

Hacker tricks

ThreadlessSpawn: A Simple PoC
https://github.com/BambiZombie/ThreadlessSpawn

Читать полностью…

Hacker tricks

AWS Cloud Security Config Review using Nuclei Templates
https://blog.projectdiscovery.io/aws-cloud-security-config-review-using-nuclei-templates

Читать полностью…

Hacker tricks

DLHell: Local & remote Windows DLL Proxying
https://github.com/synacktiv/DLHell

Читать полностью…

Hacker tricks

PrickSense: How Cactus Exploits Qlik Sense
https://northwave-cybersecurity.com/whitepapers-articles/pricksense-how-cactus-exploits-qlik-sense

Читать полностью…

Hacker tricks

Multiple Vulnerabilities in Open Devin
(Autonomous AI Software Engineer)
https://evren.ninja/multiple-vulnerabilities-in-opendevin

Читать полностью…

Hacker tricks

A Practical Guide to PrintNightmare in 2024
https://itm4n.github.io/printnightmare-exploitation

Читать полностью…

Hacker tricks

C# API for Nidhogg rootkit
https://github.com/Idov31/NidhoggCSharpApi

Читать полностью…

Hacker tricks

The Dark Side of EDR: Repurpose EDR as an Offensive Tool
https://www.safebreach.com/blog/dark-side-of-edr-offensive-tool

Читать полностью…

Hacker tricks

Grafana backend sql injection affected all version
https://fdlucifer.github.io/2024/04/22/grafana-sql-injection

Читать полностью…

Hacker tricks

Dauthi: is a tool designed to perform authentication attacks against various Mobile Device Management (MDM) solutions
https://github.com/emptynebuli/dauthi

Читать полностью…

Hacker tricks

ToddyCat is making holes in your infrastructure
https://securelist.com/toddycat-traffic-tunneling-data-extraction-tools

Читать полностью…

Hacker tricks

Heavily obfuscated ASP web shell generation tool
https://github.com/fin3ss3g0d/ASPJinjaObfuscator

Читать полностью…

Hacker tricks

No, LLM Agents can not Autonomously Exploit One-day Vulnerabilities
https://struct.github.io/auto_agents_1_day

Читать полностью…

Hacker tricks

How I Prevented a Mass Data Breach - $15,000 bounty
https://bxmbn.medium.com/how-i-prevented-a-mass-data-breach-15-000-bounty-bxmbn-1096e6400e3d
How Did I Easily Find Stored XSS at Apple And Earn $5000 ?
xrypt0/how-did-i-easily-find-stored-xss-at-apple-and-earn-5000-3aadbae054b2" rel="nofollow">https://medium.com/@xrypt0/how-did-i-easily-find-stored-xss-at-apple-and-earn-5000-3aadbae054b2

Читать полностью…

Hacker tricks

HackerToolkit offers a curated selection of tools designed to enhance your hacking capabilities. This repository not only organizes these tools but provides information about them. Easily install all of them with one script
https://github.com/ChrisJr404/HackerToolkit

Читать полностью…

Hacker tricks

CertifiedDCOM: The Privilege Escalation Journey to Domain Admin with DCOM
https://i.blackhat.com/Asia-24/Presentations/Asia-24-Ding-CertifiedDCOM-The-Privilege-Escalation-Journey-to-Domain-Admin.pdf

Читать полностью…

Hacker tricks

Deploy an Active Directory Lab Within Minutes
https://www.blackhillsinfosec.com/deploy-an-active-directory-lab-within-minutes

Читать полностью…

Hacker tricks

ArcaneDoor - New espionage-focused campaign found targeting perimeter network devices
https://blog.talosintelligence.com/arcanedoor-new-espionage-focused-campaign-found-targeting-perimeter-network-devices

Читать полностью…

Hacker tricks

Exploiting embedded mitel phones for unauthenticated remote code
https://baldur.dk/blog/embedded-mitel-exploitation

Читать полностью…

Hacker tricks

CVE-2024-21111 – LPE in Oracle VirtualBox
https://www.mdsec.co.uk/2024/04/cve-2024-21111-local-privilege-escalation-in-oracle-virtualbox

Читать полностью…

Hacker tricks

CVE-2023-20198-RCE, support adding/deleting users and executing cli commands/system commands
https://github.com/W01fh4cker/CVE-2023-20198-RCE

Читать полностью…

Hacker tricks

Hello: I’m your Domain Admin and I want to authenticate against you
https://decoder.cloud/2024/04/24/hello-im-your-domain-admin-and-i-want-to-authenticate-against-you

Читать полностью…

Hacker tricks

18 vulnerabilities in Brocade SANnav
https://pierrekim.github.io/blog/2024-04-24-brocade-sannav-18-vulnerabilities

Читать полностью…

Hacker tricks

IOS Penetration Testing: Guide to Static Analysis
adityasawant00/ios-penetration-testing-guide-to-static-analysis-4a9dea5d672d" rel="nofollow">https://medium.com/@adityasawant00/ios-penetration-testing-guide-to-static-analysis-4a9dea5d672d

Читать полностью…

Hacker tricks

An Analysis of the DHEat DoS Against SSH in Cloud Environments
https://www.positronsecurity.com/blog/2024-04-23-an-analysis-of-dheat-dos-against-ssh-in-cloud-environments

Читать полностью…

Hacker tricks

Scanner for CVE-2024-4040 VFS Sandbox Escape in CrushFTP
https://github.com/airbus-cert/CVE-2024-4040
PoC for CVE-2024-27199: RCE, Admin Account Creation, Enum Users, Server Information
https://github.com/Stuub/RCity-CVE-2024-27199

Читать полностью…

Hacker tricks

CVE-2024-21111: Oracle VirtualBox LPE
Oracle VirtualBox Prior to 7.0.16 is vulnerable to Local Privilege Escalation via Symbolic Link Following leading to Arbitrary File Delete and Arbitrary File Move
https://github.com/mansk1es/CVE-2024-21111

Читать полностью…

Hacker tricks

A Detailed Guide on Pwncat
https://www.hackingarticles.in/a-detailed-guide-on-pwncat

Читать полностью…

Hacker tricks

Bypass Paywalls Clean for Firefox
https://github.com/bpc-clone/bypass-paywalls-firefox-clean
Bypass Paywalls Clean for Chrome
https://github.com/bpc-clone/bypass-paywalls-chrome-clean

Читать полностью…

Hacker tricks

A series of methods used to detect kernel shellcode for tencent game safe race 2024
https://github.com/rogxo/search

Читать полностью…
Подписаться на канал