APT – Telegram

GTRS - Google Translator Reverse Shell

https://github.com/mthbernardes/GTRS

#pentest #redteam

GitHub - mthbernardes/GTRS: GTRS - Google Translator Reverse Shell

GTRS - Google Translator Reverse Shell. Contribute to mthbernardes/GTRS development by creating an account on GitHub.

172 viewsPaul Shmidt, 13:01

Kerlab

Kerberos laboratory to better understand and then detecting attack on kerberos

https://github.com/citronneur/kerlab

#kerberos #pentest #lab

GitHub

GitHub - citronneur/kerlab: Kerberos laboratory to better understand and then detecting attack on kerberos

Kerberos laboratory to better understand and then detecting attack on kerberos - citronneur/kerlab

145 viewsPaul Shmidt, 09:58

APT

https://twitter.com/gentilkiwi/status/1415520478693888004?s=21

#meme

142 viewsPaul Shmidt, 09:59

APT

Awesome DevSecOps

https://github.com/devsecops/awesome-devsecops

#devsecops #awesome

GitHub

GitHub - devsecops/awesome-devsecops: An authoritative list of awesome devsecops tools with the help from community experiments…

An authoritative list of awesome devsecops tools with the help from community experiments and contributions. - devsecops/awesome-devsecops

150 viewsPaul Shmidt, 10:36

APT

CVE-2021-22555: Turning \x00\x00 into 10000$

This is a 15 years old heap out-of-bounds write vulnerability in Linux Netfilter that is powerful enough to bypass all modern security mitigations and achieve kernel code execution

# Technical details — https://github.com/google/security-research/blob/master/pocs/linux/cve-2021-22555/writeup.md

# PoC — https://github.com/google/security-research/tree/master/pocs/linux/cve-2021-22555

#CVE #BoF #Vulns

GitHub

security-research/pocs/linux/cve-2021-22555/writeup.md at master · google/security-research

This project hosts security advisories and their accompanying proof-of-concepts related to research conducted at Google which impact non-Google owned code. - google/security-research

165 viewsPaul Shmidt, edited 11:11

APT

Hacking Articles

Credential Dumping: Clipboard

Learn how attackers use clipboard to dump credentials and how to prevent such attacks in your Windows environment.

199 viewsPaul Shmidt, 15:00

APT

#BurpHacksForBounties - Hack 11/30

We mostly use PortSwigger 's Burp Suite pro for corporate pentesting, & we should not capture and store corporate credentials.

Steps that I use and why is it important: 👇

#infosec #appsec #burp #Burpsuite

158 viewsPaul Shmidt, 20:00

APT

Steps :

1. Temporary project/session.
2. Login to the application, like normal.
3. Identify which requests to which domains contain credentials.
4. Start the main project in Burp.
5. Add those Domains to SSL passthrough. Proxy > Options > TLS Pass-Through

170 viewsPaul Shmidt, 20:01

APT

Why I do this: I save sessions, and burp will store those credentials and sessions. I personally don't want credentials to be stored in files.
Another important point is we are not testing SSO, rather we are testing App behind SSO.

179 viewsPaul Shmidt, 20:02

APT

#BurpHacksForBounties - Day 12/30

IPtables + Burp Suite + Android Applications. 😍🤓🤫😀
Tricky and length but worth setting up.

#burp #bugbountytips #infosec #security #appsec #bugbountytip

203 viewsPaul Shmidt, 02:00

APT

- Add Burp CA to device
- Bypass cert pinning
- Root the device(required for iptable)

Dport 80 routing - run these commands

iptables -t nat -A OUTPUT -p tcp --dport 80 -j DNAT --to-destination <BURP_IP>:8080
iptables -t nat -A POSTROUTING -p tcp --dport 80 -j MASQUERADE

203 viewsPaul Shmidt, 02:01

APT

You might need to do the same for other ports eg 443 as well.

190 viewsPaul Shmidt, 02:02

APT

Injector

Complete Arsenal of Memory injection and other techniques for red-teaming in Windows

https://github.com/0xDivyanshu/Injector
#proces #inject #memory #windows

200 viewsPaul Shmidt, 09:01

APT

#BurpHacksForBounties - Day 13/30

How to use Burp in most efficient way and bag a bounty.

In Bug bounty methodology by Uncle Rat (@theXSSrat) :
https://thexssrat.iss.onedium.com/bug-bounty-methodology-v3-0-hunt-like-a-rat-9e030fc54363

#infosec #appsec #bugbounty #bugbountytips

178 viewsPaul Shmidt, 02:00

APT

#BurpHacksForBounties - Tip 14/30

Burp Suite Config provides options for handling configurations for User-level and project-level options.

I personally use this configuration :

#appsec #infosec #burp #bugbountytips #bugbountytip

165 viewsPaul Shmidt, 02:00

APT

https://github.com/parsiya/Parsia-Clone/blob/main/configs/burp-default-config.json

GitHub

Parsia-Clone/configs/burp-default-config.json at main · parsiya/Parsia-Clone

Clone me and get your own authentic Parsia-Clone today. - parsiya/Parsia-Clone

156 viewsPaul Shmidt, 02:01

APT

Port Forwarding & Tunnelling Cheatsheet

https://www.hackingarticles.in/port-forwarding-tunnelling-cheatsheet/

#infosec #ctf #oscp #pentest #cybersecurity

Hacking Articles

Port Forwarding & Tunnelling Cheatsheet

Comprehensive Port Forwarding and Tunnelling Cheatsheet covering SSH, Metasploit, Socat, and more for secure connections.