Hidden OAuth attack vectors | PortSwigger Research
April 13, 2021 at 1:34:43 PM UTC - permalink -

- https://portswigger.net/research/hidden-oauth-attack-vectors

Red Team Tips - Vincent Yiu
April 2, 2021 at 3:51:00 PM UTC - permalink -

- https://vincentyiu.com/red-team-tips

Bloodhound for Linux
March 30, 2021 at 4:11:34 PM UTC - permalink -

- https://www.errno.fr/BloodhoundForLinux.html

Company IPs
March 23, 2021 at 7:05:49 PM UTC - permalink -

- https://gist.github.com/curi0usJack/971385e8334e189d93a6cb4671238b10

Exploiting .NET Padding Oracle Attack MS10-070 (CVE-2010-3332) and Bypassing Microsoft's Workaround - TrustFoundry
March 22, 2021 at 4:18:33 PM UTC - permalink -

- https://trustfoundry.net/exploiting-net-padding-oracle-attack-ms10-070-cve-2010-3332-and-bypassing-microsofts-workaround/

EN - Server-Side Template Injection RCE For The Modern Web App - BlackHat 15.pdf
March 20, 2021 at 10:19:41 PM UTC - permalink -

- http://repository.root-me.org/Exploitation%20-%20Web/EN%20-%20Server-Side%20Template%20Injection%20RCE%20For%20The%20Modern%20Web%20App%20-%20BlackHat%2015.pdf

02_Rene_Freingruber_Flying_under_the_radar_freingruber_v1.00.pdf
March 20, 2021 at 12:10:36 PM UTC - permalink -

- http:///tmp/mozilla_onemask0/02_Rene_Freingruber_Flying_under_the_radar_freingruber_v1.00.pdf

GitHub - Charterino/AsStrongAsFuck: A console obfuscator for .NET assemblies.
March 20, 2021 at 1:17:44 AM UTC - permalink -

- https://github.com/Charterino/AsStrongAsFuck

BadOutlook for C2 | Optiv
March 20, 2021 at 1:01:53 AM UTC - permalink -

- https://www.optiv.com/explore-optiv-insights/source-zero/badoutlook-c2

NTAPI Undocumented Functions
March 19, 2021 at 9:48:32 AM UTC - permalink -

- http://undocumented.ntinternals.net/index.html?page=UserMode%2FUndocumented%20Functions%2FNT%20Objects%2FSection%2FNtMapViewOfSection.html

haxxxor_volume_1_dvd.mp4
March 18, 2021 at 5:08:34 PM UTC - permalink -

- https://ia803206.us.archive.org/33/items/haxxxor_volume_1_dvd/haxxxor_volume_1_dvd.mp4

ajpc500/NimlineWhispers: A very proof-of-concept port of InlineWhispers for using syscalls in Nim projects.
March 18, 2021 at 12:52:30 AM UTC - permalink -

- https://github.com/ajpc500/NimlineWhispers

SugarCRM's Security Diet - Multiple Vulnerabilities
March 17, 2021 at 3:43:05 PM UTC - permalink -

- https://blog.ripstech.com/2017/sugarcrm-security-diet-multiple-vulnerabilities/

WeeChat :: scripts
March 16, 2021 at 6:33:05 PM UTC - permalink -

- https://weechat.org/scripts/python3/

aurel26/gpocheck: gpocheck
March 16, 2021 at 3:06:18 PM UTC - permalink -

- https://github.com/aurel26/gpocheck

Hacking the Cloud
March 15, 2021 at 5:28:49 PM UTC - permalink -

- https://hackingthe.cloud/

ORACLE-BASE - Shell Commands From PL/SQL
March 10, 2021 at 11:45:39 AM UTC - permalink -

- https://oracle-base.com/articles/8i/shell-commands-from-plsql

red-database-security.com/scripts/tnscmd10g.pl.txt
March 8, 2021 at 5:38:09 PM UTC - permalink -

- http://www.red-database-security.com/scripts/tnscmd10g.pl.txt

TNS poison attack tips
March 8, 2021 at 5:37:38 PM UTC - permalink -

- http://www.dba-oracle.com/t_tns_poison_attack.htm

Pete Finnigan - Oracle and Oracle security information
March 8, 2021 at 5:37:23 PM UTC - permalink -

- http://www.petefinnigan.com/tools.htm