SecList for CyberStudents
@SecListForCyberStudents
240 subscribers
590 photos
24 videos
211 files
901 links
Think outside the box
Download Telegram
About
Blog
Apps
Platform
Join
SecList for CyberStudents
240 subscribers
SecList for CyberStudents
https://tryhackme.com/path/outline/webappredteaming

New learnig path Web App Red Teaming by Tryhackme

#Web #Pentest #Tryhackme
1
73 views
SecList for CyberStudents
https://netwrix.com/en/cybersecurity-glossary/cyber-security-attacks/dcshadow-attack/
Netwrix
What Is a DCShadow Attack? Techniques, Risks & Defense | Netwrix
Learn how a DCShadow attack works, with focus on impact, detection, prevention and future trends.
68 views
SecList for CyberStudents
https://www.crowdstrike.com/en-us/blog/cve-2020-1472-zerologon-security-advisory/
CrowdStrike.com
Zerologon (CVE-2020-1472): Overview, Exploit Steps and Prevention
Learn everything you need to know about the Microsoft exploit Zerologon, what we believe is the most critical Active Directory vulnerability discovered this year.
69 views
SecList for CyberStudents
https://techcommunity.microsoft.com/blog/microsoft-security-blog/sam-name-impersonation/3042699
TECHCOMMUNITY.MICROSOFT.COM
SAM Name impersonation | Microsoft Community Hub
During the November security update cycle, Microsoft released a patch for two new vulnerabilities, CVE-2021-42287 and CVE-2021-42278. Both vulnerabilities...
76 views
SecList for CyberStudents
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-42278

Active Directory Domain Services Elevation of Privilege Vulnerability
CVE-2021-42278

https://github.com/Ridter/noPac

https://www.secureworks.com/blog/nopac-a-tale-of-two-vulnerabilities-that-could-end-in-ransomware
GitHub
GitHub - Ridter/noPac: Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user
Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user - GitHub - Ridter/noPac: Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domai...
76 viewsedited  
SecList for CyberStudents
Active Directory Domain Services Elevation of Privilege Vulnerability
CVE-2021-42287

https://github.com/cube0x0/noPac

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-42287
GitHub
GitHub - cube0x0/noPac: CVE-2021-42287/CVE-2021-42278 Scanner & Exploiter.
CVE-2021-42287/CVE-2021-42278 Scanner & Exploiter. - cube0x0/noPac
79 views
SecList for CyberStudents
https://github.com/MatheuZSecurity/Exploit-CVE-2025-24799/blob/main/exploit.py
GitHub
Exploit-CVE-2025-24799/exploit.py at main · MatheuZSecurity/Exploit-CVE-2025-24799
CVE-2025-24799 Exploit: GLPI - Unauthenticated SQL Injection - MatheuZSecurity/Exploit-CVE-2025-24799
81 views
SecList for CyberStudents
https://github.com/dirkjanm/PKINITtools


https://dirkjanm.io/ntlm-relaying-to-ad-certificate-services/

#AD #RedTeam
85 viewsedited  
SecList for CyberStudents
https://github.com/zer1t0/certi
GitHub
GitHub - zer1t0/certi: ADCS abuser
ADCS abuser. Contribute to zer1t0/certi development by creating an account on GitHub.
86 views
SecList for CyberStudents
https://netwrix.com/en/resources/blog/what-is-the-kerberos-pac/
Netwrix
How the Kerberos PAC Works | Netwrix
Understand the role of the Kerberos PAC in identity authentication and learn how it supports secure access and integrity across Active Directory environments.
85 views
SecList for CyberStudents
Forwarded from Social Engineering
👨‍💻 Bitrix Ultimate Pentest Guide.

Автор этого материала собрал очень объемный гайд по пентесту CMS Bitrix, который включает в себя большое кол-во техник и различных методов. Вот содержание:

- Основы битриксологии:
Встроенный WAF;
Многосайтовость.
- Определение версии;
- Множественные эндпоинты для авторизации:
Лайфхак через burp.
- Интересные эндпоинты;
- Content Spoofing;
- Account Enumeration;
- Non-legitimate registration;
- Open Redirect;
- XSS уязвимости;
- SSRF;
- LFI;
- RCE:
RCE vote_agent.php (CVE-2022-27228);
RCE html_editor_action.php;
RCE Landing;
CVE-2022-29268 (Rejected).
- BDU:2024-01501:
Reflected XSS;
Local File Read.
- WAF Bypass;
- LPE;
- Bitrix24:
XSS bitrix 24;
CVE-2022-43959;
CVE-2023-1713;
CVE-2023-1714;
CVE-2023-1718.
- Уязвимые модули:
Реестр уязвимостей сторонних модулей;
Директория /local/;
Структура самописного модуля;
Aspro;
Интернет-магазины;
Корпоративные сайты;
Отраслевые сайты;
Устаревшие модули;
RCE by Insecure deserialization;
- Поиск интересных директорий и файлов.
- Сканер под bitrix - “huitrix”:
Структура сканера:
Fast scan;
Full Scan;
Detect Version;
Entrance Finder;
RCE modules;
Enum Bitrix Users;
Spawn Bitrix User;
Detect custom modules.
- References:
Github;
BDU;
Habr & Telegra.ph;
Telegram;
Other.

https://pentestnotes.ru/notes/bitrix_pentest_full

S.E. ▪️ infosec.work ▪️ VT
Please open Telegram to view this post
VIEW IN TELEGRAM
73 views
SecList for CyberStudents
Steganograficheskie_metodi_zashiti_informacii.pdf
6 MB
77 views
SecList for CyberStudents
https://github.com/MorDavid/BruteForceAI
GitHub
GitHub - MorDavid/BruteForceAI: Advanced LLM-powered brute-force tool combining AI intelligence with automated login attacks
Advanced LLM-powered brute-force tool combining AI intelligence with automated login attacks - MorDavid/BruteForceAI
82 views
SecList for CyberStudents
https://krbtgt.pw/oracle-oam-10g-session-hijacking/
got 0day?
Oracle OAM 10g Session Hijacking
Table of contents Intro Oracle OAM Authentication flow Hijacking the session Global Exposure Proof-of-Concept Webserver Script Proof-of-Concept Video Mitigation CVSS rating Intro TL;DR Badly configured Oracle OAM 10g allows remote attackers to hijack sessions…
94 views
SecList for CyberStudents
https://vulnapi.cerberauth.com/docs/vulnerabilities/broken-authentication/jwt-cross-service-relay-attack
Cerberauth
Token Cross Service Relay Attack – VulnAPI Documentation
A vulnerability arises when a Token is forged by the same service but doesn't verify the issuer. This can lead to security risks, as it means an attacker could create a forged Token and manipulate the fields or impersonate an user.
88 views
SecList for CyberStudents
https://github.com/RevoltSecurities/ShodanX
GitHub
GitHub - RevoltSecurities/ShodanX: ShodanX is a tool to gather information of targets using shodan dorks.
ShodanX is a tool to gather information of targets using shodan dorks. - RevoltSecurities/ShodanX
84 views
SecList for CyberStudents
Wayback Machine Alternatives

Many of the tools in the list are primarily aimed at preserving pages. However, you can try searching for data saved by others using Google: "keyword site:pagefreezer.com" (similarly for other tools domains).

https://www.link-assistant.com/news/wayback-machine-alternatives.html
88 views
SecList for CyberStudents
https://auth0.com/docs/get-started/authentication-and-authorization-flow/authorization-code-flow-with-pkce
77 viewsedited  
SecList for CyberStudents
https://www.uber.com/newsroom/security-update
Uber Newsroom
Security update
Updates on security incident
75 views
SecList for CyberStudents
https://github.com/kgretzky/evilginx2
GitHub
GitHub - kgretzky/evilginx2: Standalone man-in-the-middle attack framework used for phishing login credentials along with session…
Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication - kgretzky/evilginx2
75 views
SecList for CyberStudents
https://blog.mirzadzare.net/from-log-in-with-oauth-to-your-account-is-mine-desktop-app-edition
72 views