Shared Bookmarks

776 links

Links per page: 20 50 100

◄Older

page 14 / 39

Newer►

Note: Setup vuln alwaysinstallelevated

$RegistryPath1 = 'HKCU:\Software\Policies\Microsoft\Windows\Installer'
$RegistryPath2 = 'HKLM:\Software\Policies\Microsoft\Windows\Installer'
$Name = 'AlwaysInstallElevated'
$Value = '1'

Create the key if it does not exist

New-Item -Path $RegistryPath1 -Force | Out-Null
New-Item -Path $RegistryPath2 -Force | Out-Null

Now set the value

New-ItemProperty -Path $RegistryPath1 -Name $Name -Value $Value -PropertyType DWORD -Force
New-ItemProperty -Path $RegistryPath2 -Name $Name -Value $Value -PropertyType DWORD -Force
April 2, 2022 at 9:44:06 PM UTC - permalink -

- https://shaarli.onemask.me/?-WEM-A

alwaysinstallelevated msi windows privesc powershell
It's Raining Shells - Google Slides
March 25, 2022 at 1:28:02 AM UTC - permalink -

- https://docs.google.com/presentation/d/1vVpNezQ1uVS3_PQ_beYH-cQR6qrvGcMP8MWV7LA-nKU/edit#slide=id.g119be77ce24_0_1058

azure ad internal
Remotely Host MSBuild Payloads
March 15, 2022 at 6:49:25 PM UTC * - permalink -

- https://fortynorthsecurity.com/blog/remotely-host-msbuild-payloads/

msbuild applocker xml redteam
3gstudent/msbuild-inline-task
March 15, 2022 at 4:42:38 PM UTC - permalink -

- https://github.com/3gstudent/msbuild-inline-task

msbuild inline
Fixing khugepaged CPU usage VMware Workstation
March 15, 2022 at 1:11:27 PM UTC * - permalink -

- https://gist.github.com/2E0PGS/2560d054819843d1e6da76ae57378989

fix vmware ubuntu debian fedora cpu
Bypassing Cylance and other AVs/EDRs by Unhooking Windows APIs - Red Teaming Experiments

https://medium.com/@fsx30/bypass-edrs-memory-protection-introduction-to-hooking-2efb21acffd6
March 14, 2022 at 5:57:35 PM UTC * - permalink -

- https://www.ired.team/offensive-security/defense-evasion/bypassing-cylance-and-other-avs-edrs-by-unhooking-windows-apis

windows api unhooking edr bypass
snowytoxa/selfhash: SysCon14 release
March 14, 2022 at 5:04:10 PM UTC - permalink -

- https://github.com/snowytoxa/selfhash

ntlm netntlm hash windows selfhash
Marshaling Data with Platform Invoke - .NET Framework | Microsoft Docs
February 22, 2022 at 4:47:15 PM UTC - permalink -

- https://docs.microsoft.com/en-us/dotnet/framework/interop/marshaling-data-with-platform-invoke

osep pinvoke marshaling data types marshal
Exploit Monday: 5/13/12 - 5/20/12
February 22, 2022 at 2:37:44 PM UTC - permalink -

- https://web.archive.org/web/20210126074234/http://www.exploit-monday.com/2012_05_13_archive.html

osce delegate reflections powershell assembly
Home - maddy

no spam
February 15, 2022 at 11:45:27 PM UTC - permalink -

- https://maddy.email/

mail server email dkim dmarc spf mx
shodan-public / nrich · GitLab
February 15, 2022 at 1:55:53 PM UTC - permalink -

- https://gitlab.com/shodan-public/nrich

ip vuln analyze tool shodan parse file
Antivirus evasion by user mode unhooking on Windows 10 - report.pdf
February 7, 2022 at 9:18:11 PM UTC - permalink -

- https://cdn.discordapp.com/attachments/633989923459956776/940267352157741076/report.pdf

av evasion bypass unhooking
RedTeamOperations/Advanced-Process-Injection-Workshop
February 7, 2022 at 9:17:55 PM UTC - permalink -

- https://github.com/RedTeamOperations/Advanced-Process-Injection-Workshop

injection process red team
HTCAP - Single Page Application scanning
le tool crash avec python 3.9+ car la méthode thread.isAlive() a été silent retired. du coup faut backtrack sur thread.is_alive():

Quickfix:
```
alias rgi="ripgrep -i"
for file in $(rgi isAlive | less | cut -d ":" -f1 | sort -u); do sed -i 's/isAlive/is_alive/g' $file ; done
```
February 1, 2022 at 3:50:56 PM UTC - permalink -

- https://www.fcvl.net/htcap/

spa pentest scan tooling tools tool github
rbndr.us dns rebinding service

write up from https://sirleeroyjenkins.medium.com/bypassing-ssrf-protection-to-exfiltrate-aws-metadata-from-larksuite-bf99a3599462
January 28, 2022 at 7:38:56 PM UTC * - permalink -

- https://lock.cmpxchg8b.com/rebinder.html

dns rebinding rebinder ssrf
Fingerprinting, Netscaler Gateway Version information leaking – the kolbicz blog
January 26, 2022 at 10:09:20 AM UTC - permalink -

- https://kolbi.cz/blog/2015/05/26/fingerprinting-netscaler-gateway-version/

fingerprint citrix netscaler recon
qualys.com/2022/01/25/cve-2021-4034/pwnkit.txt
January 25, 2022 at 9:23:18 PM UTC * - permalink -

- https://www.qualys.com/2022/01/25/cve-2021-4034/pwnkit.txt

polkit privilege escalation lpe linux
Port 1 - 99
January 25, 2022 at 6:03:05 PM UTC - permalink -

- http://www.bekkoame.ne.jp/~s_ita/port/port1-99.html

ports services port nmap service
Oracle WebLogic Server 12.1.3.0.0 / 12.2.1.3.0 / 12.2.1.4.0 / 14.1.1.0.0 Local File Inclusion
January 25, 2022 at 5:43:19 PM UTC - permalink -

- https://gist.github.com/picar0jsu/f3e32939153e4ced263d3d0c79bd8786

weblogic file inclusion lfi
code white | Blog: RCE in Citrix ShareFile Storage Zones Controller (CVE-2021-22941) – A Walk-Through
January 25, 2022 at 5:39:20 PM UTC - permalink -

- https://codewhitesec.blogspot.com/2021/09/citrix-sharefile-rce-cve-2021-22941.html

chtml aspx code execution bypass waf

Links per page: 20 50 100

◄Older

page 14 / 39

Newer►