Forwarded from r0 Crew (Channel)
Skeleton project for your own GRUB-based bootkit https://github.com/mgrube/GRUBKit #exploitation
GitHub
GitHub - mgrube/GRUBKit: Skeleton project for your own GRUB-based bootkit
Skeleton project for your own GRUB-based bootkit. Contribute to mgrube/GRUBKit development by creating an account on GitHub.
Critical Bluetooth Vulnerability in Android (CVE-2020-0022)
https://insinuator.net/2020/02/critical-bluetooth-vulnerability-in-android-cve-2020-0022/
https://insinuator.net/2020/02/critical-bluetooth-vulnerability-in-android-cve-2020-0022/
Insinuator.net
Critical Bluetooth Vulnerability in Android (CVE-2020-0022) – BlueFrag
On November 3rd, 2019, we have reported a critical vulnerability affecting the Android Bluetooth subsystem. This vulnerability has been assigned CVE-2020-0022 and was now patched in the latest security patch from February 2020. The security impact is as follows:…
Forging SWIFT MT Payment Messages for fun and pr... research!
https://labs.f-secure.com/blog/forging-swift-mt-payment-messages
https://labs.f-secure.com/blog/forging-swift-mt-payment-messages
Network data manipulation on the fly
https://blog.redteam.pl/2020/02/network-data-manipulation-on-fly.html
https://blog.redteam.pl/2020/02/network-data-manipulation-on-fly.html
Official VirusTotal Plugin for IDA Pro 7
https://blog.virustotal.com/2020/02/official-virustotal-plugin-for-ida-pro-7.html
https://blog.virustotal.com/2020/02/official-virustotal-plugin-for-ida-pro-7.html
Virustotal
Official VirusTotal Plugin for IDA Pro 7
ATTENTION : In order to use the content search functionality you will need to have access to VT Intelligence . If you want to jump str...
x0rro — A PE/ELF/MachO Crypter for x86 and x86_64 Based on Radare2
https://iwantmore.pizza/posts/x0rro.htmlDetecting Memory Corruption Bugs With HWASan
https://android-developers.googleblog.com/2020/02/detecting-memory-corruption-bugs-with-hwasan.html?m=1
https://android-developers.googleblog.com/2020/02/detecting-memory-corruption-bugs-with-hwasan.html?m=1
Android Developers Blog
Detecting Memory Corruption Bugs With HWASan
Posted by Evgenii Stepanov, Staff Software Engineer, Dynamic Tools Native code in memory-unsafe languages like C and C++ is often vuln...
Bypassing User Group Policy
https://medium.com/tenable-techblog/bypass-windows-10-user-group-policy-and-more-with-this-one-weird-trick-552d4bc5cc1b
https://medium.com/tenable-techblog/bypass-windows-10-user-group-policy-and-more-with-this-one-weird-trick-552d4bc5cc1b
Medium
Bypass Windows 10 User Group Policy (and more) with this One Weird Trick
I‘m going to share an (ab)use of a Windows feature which can result in bypassing User Group Policy (as well as a few other interesting…
SQLi blinder
Framework for blind boolean-based sql injections explotation.
https://github.com/sorokinpf/sqli_blinder
Framework for blind boolean-based sql injections explotation.
https://github.com/sorokinpf/sqli_blinder
GitHub
GitHub - sorokinpf/sqli_blinder: Framework for blind boolean-based sql injections exploatation. Use it if sqlmap does shit.
Framework for blind boolean-based sql injections exploatation. Use it if sqlmap does shit. - sorokinpf/sqli_blinder
The Missing LNK — Correlating User Search LNK files
https://www.fireeye.com/blog/threat-research/2020/02/the-missing-lnk-correlating-user-search-lnk-files.html
https://www.fireeye.com/blog/threat-research/2020/02/the-missing-lnk-correlating-user-search-lnk-files.html
Google Cloud Blog
The Missing LNK — Correlating User Search LNK files | Mandiant | Google Cloud Blog
UTM is a full featured virtual machine host for iOS. In short, it allows you to run Windows, Android, and more on your iPhone and iPad.
https://github.com/utmapp/UTM
https://github.com/utmapp/UTM
GitHub
GitHub - utmapp/UTM: Virtual machines for iOS and macOS
Virtual machines for iOS and macOS. Contribute to utmapp/UTM development by creating an account on GitHub.
Introduction To Modern Routing For Red Team Infrastructure - using Traefik, Metasploit, Covenant and Docker
https://khast3x.club/posts/2020-02-14-Intro-Modern-Routing-Traefik-Metasploit-Docker/
https://khast3x.club/posts/2020-02-14-Intro-Modern-Routing-Traefik-Metasploit-Docker/