https://github.com/vincentcox/StaCoAn
July 10, 2021 at 12:47:14 PM UTC - permalink -

- https://github.com/vincentcox/StaCoAn

php-findsock-shell | pentestmonkey
July 8, 2021 at 9:20:12 AM UTC - permalink -

- http://pentestmonkey.net/tools/web-shells/php-findsock-shell

How we found Unintended bypass to exploiting entire CyberThreatForce discord server | by Muhammad Faqih Jihan Insani | Jul, 2021 | Medium
July 7, 2021 at 10:12:22 AM UTC * - permalink -

- https://hanasuru.medium.com/how-we-found-unintended-bypass-to-exploiting-entire-cyberthreatforce-discord-server-d93951b9efab

Introducing DOM Invader: DOM XSS just got a whole lot easier to find | Blog - PortSwigger
July 5, 2021 at 1:50:30 PM UTC - permalink -

- https://portswigger.net/blog/introducing-dom-invader

(1) Exfiltration at Lightspeed - Faster Blind SQL Injection : netsec
July 5, 2021 at 1:50:19 PM UTC - permalink -

- https://www.reddit.com/r/netsec/comments/4bquht/exfiltration_at_lightspeed_faster_blind_sql/

GitHub - hellman/xortool: A tool to analyze multi-byte xor cipher
July 5, 2021 at 1:32:28 AM UTC - permalink -

- https://github.com/hellman/xortool

legalhackers.com/advisories/zend-framework-XXE-vuln.txt
July 2, 2021 at 1:37:13 PM UTC - permalink -

- https://legalhackers.com/advisories/zend-framework-XXE-vuln.txt

MageReport.com
July 2, 2021 at 12:51:05 PM UTC - permalink -

- https://www.magereport.com/

FireWalker: A New Approach to Generically Bypass User-Space EDR Hooking - MDSec
June 30, 2021 at 12:59:52 PM UTC - permalink -

- https://www.mdsec.co.uk/2020/08/firewalker-a-new-approach-to-generically-bypass-user-space-edr-hooking/

PE Parsing and Defeating AV/EDR API Hooks in C++ - SolomonSklash.io
June 30, 2021 at 12:30:28 PM UTC - permalink -

- https://www.solomonsklash.io/pe-parsing-defeating-hooking.html

Pre-auth RCE in ForgeRock OpenAM (CVE-2021-35464) | PortSwigger Research
June 29, 2021 at 1:03:41 PM UTC - permalink -

- https://portswigger.net/research/pre-auth-rce-in-forgerock-openam-cve-2021-35464

04. Command Execution - Security Knowledge Base
June 18, 2021 at 6:31:55 PM UTC - permalink -

- https://github.sofianehamlaoui.fr/Security-Cheatsheets/databases/sqlserver/3-command-execution/

klezVirus/chameleon: PowerShell Script Obfuscator
June 3, 2021 at 1:29:19 PM UTC - permalink -

- https://github.com/klezVirus/chameleon

SensePost | Adventures into http2 and http3
May 30, 2021 at 11:10:04 PM UTC - permalink -

- https://sensepost.com/blog/2021/adventures-into-http2-and-http3/

Attacking Active Directory: 0 to 0.9 | zer1t0
May 30, 2021 at 10:47:44 PM UTC - permalink -

- https://zer1t0.gitlab.io/posts/attacking_ad/

CVE-2021-27651-PoC/RCE.md at main · samwcyo/CVE-2021-27651-PoC
May 28, 2021 at 10:00:44 AM UTC - permalink -

- https://github.com/samwcyo/CVE-2021-27651-PoC/blob/main/RCE.md

Security Testing of Thick Client Application | by David Valles | Medium
May 25, 2021 at 9:32:48 AM UTC * - permalink -

- https://medium.com/@david.valles/security-testing-of-thick-client-application-15612f326cac

Session 9 - Shellcode - shellcode-walkthrough-slides.pdf
May 25, 2021 at 9:32:35 AM UTC - permalink -

- http:///home/rdesir/Nextcloud/Robin/Documents/Info/Sec/Courses/PWN/Hexcellents_CTF/shellcode-walkthrough-slides.pdf

AMSI Bypass Methods – Pentest Laboratories
May 25, 2021 at 9:32:17 AM UTC - permalink -

- https://pentestlaboratories.com/2021/05/17/amsi-bypass-methods/amp/

Analysis of vulnerability caused by Jackson databind | Develop Paper
May 6, 2021 at 8:51:55 AM UTC - permalink -

- https://developpaper.com/analysis-of-vulnerability-caused-by-jackson-databind/