SecList for CyberStudents

Phpsploit

#C2 #pentest #web

Мощный C2 фреймворк для пост-эксплуатации веб-приложений на PHP. Позволяет загружать и выполнять произвольный PHP-код на целевой системе, поддерживает интерактивную командную строку и шифрование трафика. Имеются встроенные модули для сканирования и эксплуатации, а также есть возможность написания собственных плагинов на Python. Работает на Linux, Windows и macOS.

🔗 Ссылка на GitHub

LH | News | OSINT | AI

Please open Telegram to view this post

VIEW IN TELEGRAM

125 views08:28

SauronEye is a search tool built to aid red teams in finding files containing specific keywords.

https://github.com/vivami/SauronEye

#RedTeam

131 viewsedited 06:19

SecList for CyberStudents

#mem

😁1😭1

143 views06:27

SecList for CyberStudents

image_2025-09-28_10-33-07.png

163.5 KB

This PowerShell function searches Active Directory user objects for clear-text information (such as passwords or sensitive strings)

Function SearchUserClearTextInformation
{
    Param (
        [Parameter(Mandatory=$true)]
        [Array] $Terms,

        [Parameter(Mandatory=$false)]
        [String] $Domain
    )

    if ([string]::IsNullOrEmpty($Domain)) {
        $dc = (Get-ADDomain).RIDMaster
    } else {
        $dc = (Get-ADDomain $Domain).RIDMaster
    }

    $list = @()

    foreach ($t in $Terms)
    {
        $list += "(`$_.Description -like `"*$t*`")"
        $list += "(`$_.Info -like `"*$t*`")"
    }

    Get-ADUser -Filter * -Server $dc -Properties Enabled,Description,Info,PasswordNeverExpires,PasswordLastSet |
        Where { Invoke-Expression ($list -join ' -OR ') } | 
        Select SamAccountName,Enabled,Description,Info,PasswordNeverExpires,PasswordLastSet | 
        fl
}

#RedTeam #Creds_Hunting

131 viewsedited 05:33

SecList for CyberStudents

https://www.youtube.com/watch?v=PUyhlN-E5MU

YouTube

t120 Attacking Microsoft Kerberos Kicking the Guard Dog of Hades Tim Medin

These are the videos from DerbyCon 4:
https://www.irongeek.com/i.php?page=videos/derbycon4/mainlist

119 views12:04

SecList for CyberStudents

Forwarded from Proxy Bar

CVE-2025-32463 sudo
chwoot chwoot
Если честно, то я не много не понял чего CISO, да и остальные так возбудились. Дырке 2 месяца, POC 2 месяца. Да и мы тут писали\линковали уже.
Ну ладно, пусть будет.
А, ну разве что под самую свежую суду работает

sudo -V
Sudo версии 1.9.17p1
Модуль политики sudoers версии 1.9.17p1
Файл грамматики sudoers версии 50
Sudoers I/O plugin version 1.9.17p1
Sudoers audit plugin version 1.9.17p1

EXPLOIT

#linux #sudo #lpe

107 views08:24

SecList for CyberStudents

Forwarded from Cat Seclist

Practical Purple Teaming

The Art of Collaborative Defense

❤1🔥1

107 views19:24

SecList for CyberStudents

Forwarded from Cat Seclist

Practical_Purple_Teaming_The_Art_of_Collaborative_Defense_Practical.pdf

6 MB

108 views19:24

SecList for CyberStudents

https://github.com/benjqminn/benjqminn.github.io/blob/main/holmes-ctf/index.md

GitHub

benjqminn.github.io/holmes-ctf/index.md at main · benjqminn/benjqminn.github.io

Personal website for ITIS-3135 course. Contribute to benjqminn/benjqminn.github.io development by creating an account on GitHub.

110 views07:29

SecList for CyberStudents

https://github.com/MrTurvey/flareprox

GitHub

GitHub - MrTurvey/flareprox: Use Cloudflare to create HTTP pass-through proxies for unique IP rotation, similar to fireprox

Use Cloudflare to create HTTP pass-through proxies for unique IP rotation, similar to fireprox - MrTurvey/flareprox

100 views06:53

SecList for CyberStudents

https://github.com/k8gege/Ladon

GitHub

GitHub - k8gege/Ladon: Ladon大型内网渗透扫描器，PowerShell、Cobalt Strike插件、内存加载、无文件扫描。含端口扫描、服务识别、网络资产探测、密码审计、高危漏洞检测、漏洞利用、密码读取以及一键GetShel…

Ladon大型内网渗透扫描器，PowerShell、Cobalt Strike插件、内存加载、无文件扫描。含端口扫描、服务识别、网络资产探测、密码审计、高危漏洞检测、漏洞利用、密码读取以及一键GetShell，支持批量A段/B段/C段以及跨网段扫描，支持URL、主机、域名列表扫描等。网络资产探测32种协议(ICMP\NBT\DNS\MAC\SMB\WMI\SSH\HTTP\HTTPS\Exc...

107 views10:35

SecList for CyberStudents

Forwarded from Turan Security

Flagshare - TuranSec (Shaptoli) jamosining kichik guruhi Qirg'iziston, Bishkek shahrida o'tkazilgan Cyber Ordo CTF musobaqasida 1-o'rinni qo'lga kiritdi, musobaqa Cyber Kün 2025 xalqaro konferensiyasi doirasida bo'lib o'tdi.

Junior jamoamizni birinchi xalqaro yutug'i bilan tabriklaymiz🔥

______

Our team Flagshare - junior branch of TuranSec (Shaptoli) took 1st place at Cyber Ordo part of Cyber Kün 2025 international conference which organized at Bishkek, Kyrgyzstan.

We congratulate them with first international win🔥

@TuranSecurity | www.turansec.uz

❤2

83 views03:48

SecList for CyberStudents

Turan Security

Photo

Congratulations, my friends. May you achieve even greater results in the future, Insha'Allah. 🔥🔥🔥

Shaptoli is family, not a team❤️

❤5

118 viewsedited 03:50

SecList for CyberStudents

Forwarded from Life-Hack - Хакер

HackTheBox CTF Cheatsheet

#pentest #ctf #полезное #обучение

Этот шпаргалка предназначена для игроков в CTF и новичков, чтобы помочь им отсортировать лаборатории Hack The Box по операционной системе и сложности. В списке содержатся разборы Hack The Box от hackingarticles.

🔗 Ссылка на GitHub

LH | News | OSINT | AI

Please open Telegram to view this post

VIEW IN TELEGRAM

129 views08:32

SecList for CyberStudents

https://www.youtube.com/watch?v=ajax3D60diU

YouTube

A $40,000 Remote Code Execution (Walkthrough)

LIKE and SUBSCRIBE with NOTIFICATIONS ON if you enjoyed the video! 👍

📚 If you want to learn bug bounty hunting from me: https://bugbounty.nahamsec.training
💻 If you want to practice some of my free labs and challenges: https://app.hackinghub.io

💵 FREE…

119 views16:33

SecList for CyberStudents

Forwarded from Kiberxavfsizlik markazi

#cyberkent2025 #cknews #blueteam #redteam

🏆 “Cyberkent 3.0” musobaqasining "Blue team" yo'nalishi g'oliblari

1. shaptoli (50 mln so‘m)
2. ShadowGuard (30 mln so‘m)
3. IYB (10 mln so‘m)

🌐Website | 📝Telegram | 🌐Facebook | 📹Youtube

Please open Telegram to view this post

VIEW IN TELEGRAM

👍1🔥1

90 views13:42

About

Blog

Apps

Platform