Tylous/Limelighter: A tool for generating fake code signing certificates or signing real ones
October 20, 2021 at 11:08:43 AM UTC - permalink -

- https://github.com/Tylous/Limelighter

Evasion techniques
October 18, 2021 at 10:46:32 AM UTC - permalink -

- https://evasions.checkpoint.com/

Experiences in pentesting DWR |
October 14, 2021 at 11:39:21 AM UTC - permalink -

- http://aetherlab.net/2012/09/experiences-in-pentesting-dwr/

44139-mysql-udf-exploitation.pdf
October 12, 2021 at 2:53:59 PM UTC - permalink -

- https://www.exploit-db.com/docs/english/44139-mysql-udf-exploitation.pdf?rss

exploits/exploit.php at master · mm0r1/exploits
October 7, 2021 at 2:27:16 PM UTC - permalink -

- https://github.com/mm0r1/exploits/blob/master/php-filter-bypass/exploit.php

FSecureLABS/bitlocker-spi-toolkit: Tools for decoding TPM SPI transaction and extracting the BitLocker key from them.
October 7, 2021 at 10:23:08 AM UTC * - permalink -

- https://github.com/FSecureLABS/bitlocker-spi-toolkit

网络空间测绘，网络空间安全搜索引擎，网络空间搜索引擎，安全态势感知 - FOFA网络空间测绘系统
October 7, 2021 at 10:13:41 AM UTC - permalink -

- https://fofa.so/

writeups/CVE-2021-26084.md at main · snowyyowl/writeups
October 7, 2021 at 9:31:35 AM UTC - permalink -

- https://github.com/snowyyowl/writeups/blob/main/CVE-2021-26084.md

Telegram Search. Search for posts
October 6, 2021 at 5:21:53 PM UTC - permalink -

- https://tgstat.ru/en/search

Autodiscovering the Great Leak - Guardicore
October 6, 2021 at 1:55:37 PM UTC - permalink -

- https://www.guardicore.com/labs/autodiscovering-the-great-leak/

Exploiting LDAP Server NULL Bind – n00py Blog
October 6, 2021 at 10:24:37 AM UTC - permalink -

- https://www.n00py.io/2020/02/exploiting-ldap-server-null-bind/

Using Hashcat Rules to Create Custom Wordlists | Infinite Logins
October 1, 2021 at 2:37:35 PM UTC - permalink -

- https://infinitelogins.com/2020/11/16/using-hashcat-rules-to-create-custom-wordlists/

treebuilder/aad-sso-enum-brute-spray: POC of SecureWorks' recent Azure Active Directory password brute-forcing vuln
September 30, 2021 at 3:21:51 PM UTC - permalink -

- https://github.com/treebuilder/aad-sso-enum-brute-spray

ustayready/fireprox: AWS API Gateway management tool for creating on the fly HTTP pass-through proxies for unique IP rotation
September 30, 2021 at 9:39:04 AM UTC - permalink -

- https://github.com/ustayready/fireprox

CORS-USESEC18.pdf
September 29, 2021 at 8:29:15 PM UTC - permalink -

- https://www.jianjunchen.com/papers/CORS-USESEC18.pdf

A Case Study in Attacking KeePass - harmj0y
September 29, 2021 at 8:26:58 PM UTC - permalink -

- http://www.harmj0y.net/blog/redteaming/a-case-study-in-attacking-keepass/

SensePost | Building an offensive rpc interface
September 29, 2021 at 8:26:34 PM UTC - permalink -

- https://sensepost.com/blog/2021/building-an-offensive-rpc-interface/

Pentesting Web checklist - Pentest Book
September 29, 2021 at 3:36:38 PM UTC - permalink -

- https://pentestbook.six2dez.com/others/web-checklist

login-securite/DonPAPI: Dumping DPAPI credz remotely
September 29, 2021 at 12:07:04 PM UTC * - permalink -

- https://github.com/login-securite/DonPAPI

netstat without netstat - Staaldraad
September 28, 2021 at 3:26:16 PM UTC - permalink -

- https://staaldraad.github.io/2017/12/20/netstat-without-netstat/