Latest Infosec News and Articles Using Syscalls to Inject Shellcode on Windows https://www.solomonsklash.io/syscalls-for-shellcode-injection.html The secret life of GPS trackers (1/2) https://decoded.avast.io/martinhron/the-secret-life-of-gps-trackers/Abusing windows telemetry for persistence https://www.trustedsec.com/blog/abusing-windows-telemetry-for-persistence/Creating Polymorphic Shellcode https://rastating.github.io/creating-polymorphic-shellcode/The Art of
Blog | Page 2 of 6 | Ptrace Security GmbH
Blog
How to run Golang in Google Colab
https://www.youtube.com/watch?v=U4b1OpM-XRE If you are a Python developer, you probably heard of Google’s free online cloud-based Jupyter notebook environment known as Google Colab (https://colab.research.google.com/). Google Colab is a service that allows
IT Security News Bulletin #25
Latest Infosec News and Articles Malware indetectable, with AV bypass techniques, anti-disassembly, etc https://github.com/ReddyyZ/GhostShellWeb-based check for Windows privesc vulnerabilities https://github.com/deadjakk/patch-checkerA fast TCP tunnel over HTTP https://github.com/jpillora/chisel Full DLL Unhooking with C++
IT Security News Bulletin #24
Latest Infosec News and Articles Car Hacking with Python — Part 1 Data Exfiltration: GPS and OBDII/CAN Bus https://medium.com/bugbountywriteup/car-hacking-with-python-part-1-data-exfiltration-gps-and-obdii-can-bus-69bc6b101fd1Linux Security Hardening and Other Tweaks https://vez.mrsk.me/linux-hardening.html Kerberos (I): How does Kerberos work?
IT Security News Bulletin #23
Latest Infosec News and Articles Azure AD Introduction for Red Teamers https://www.synacktiv.com/posts/pentest/azure-ad-introduction-for-red-teamers.html Recon-ng Tutorial – Part 2 Workspaces and Import http://securenetworkmanagement.com/recon-ng-tutorial-part-2/ Mindshare: Hardware Reversing With The TP-LINK TL-WR841N Router - Part 2
IT Security News Bulletin #22
Latest Infosec News and Articles Azure Red Team tool for graphing Azure and Azure Active Directory objects https://github.com/Azure/StormspotterRed Team Tactics: Utilizing Syscalls in C# - Prerequisite Knowledge https://jhalon.github.io/utilizing-syscalls-in-csharp-1/OSCE Exam Practice
IT Security News Bulletin #21
Latest Infosec News and Articles Crack any Microsoft Windows users password without any privilege (Guest account included) https://github.com/DarkCoderSc/win-brute-logon Netcat on steroids with Firewall, IDS/IPS evasion, bind and reverse shell and port
IT Security News Bulletin #20
Latest Infosec News and Articles ELF file viewer/editor for Windows, Linux and MacOS https://github.com/horsicq/XELFViewer Learn SQL Injection by Ethically Hacking a Rails App https://medium.com/better-programming/learn-sql-injection-by-ethically-hacking-a-rails-app-e96906f8c593Attacks Simultaneously Exploiting Vulnerability in IE (CVE-2020-0674) and
IT Security News Bulletin #19
Latest Infosec News and Articles Bypass EDR’s memory protection, introduction to hooking https://medium.com/@fsx30/bypass-edrs-memory-protection-introduction-to-hooking-2efb21acffd6A cheat sheet that contains common enumeration and attack methods for Windows Active Directory https://github.com/buftas/Active-Directory-Exploitation-Cheat-Sheet Masquerading Windows processes like
IT Security News Bulletin #18
Latest Infosec News and Articles Stack Overflow CVE-2019-17424 Vulnerability Write-Up and RCE Exploit Walk Through https://blog.vastart.dev/2019/10/stack-overflow-cve-2019-17424.htmlLove letters from the red team: from e-mail to NTLM hashes with Microsoft Outlook https://blog.blazeinfosec.com/love-letters-from-the-red-team-from-e-mail-to-ntlm-hashes-with-microsoft-outlook/A