İbrahim BALOĞLU - Siber Güvenlik Paylaşımları

Noir - attack surface detector form source code https://github.com/hahwul/noir

Volatile Artifact collector https://github.com/cado-security/varc#using-as-a-compiled-binary

1. Bypassing UAC with SSPI Datagram Contexts https://splintercod3.blogspot.com/p/bypassing-uac-with-sspi-datagram.html 2. MultiPlatform HTTP Reverse Shell https://github.com/JoelGMSec/HTTP-Shell

Useful resources for SOC Analyst https://github.com/LetsDefend/awesome-soc-analyst

WinRAR <= 6.22: code execution PoC https://github.com/b1tg/CVE-2023-38831-winrar-exploit

Siber Olay Müdahale alanında uzmanlaşmak isteyenler için “Sıfırdan Uzmanlığa Windows Adli Bilişim” Eğitimi http://www.ibrahimbaloglu.com/2020/09/sfrdan-uzmanlga-windows-adli-bilisim.html

#Red_Team_Tactics Knocking on Hell's Gate - EDR Evasion Through Direct Syscalls https://labs.en1gma.co/malwaredevelopment/evasion/security/2023/08/14/syscalls.html

Escalate Service Account To LocalSystem via Kerberos. https://github.com/wh0amitz/S4UTomato #privesc #ad #redteam #pentest

Grup içerisine paylaşılan crackli uygulamaları kurmak kişilerin kendi insiyatifinde olup, herhangi bir zararlı bulaşmasından grubumuz sorumlu değildir. Bu tür uygulamaları, şahsi bilgisayarlarınıza kurmamanızı öneririz.

Siber Olay Müdahale alanında uzmanlaşmak isteyenler için “Sıfırdan Uzmanlığa Windows Adli Bilişim” Eğitimi http://www.ibrahimbaloglu.com/2020/09/sfrdan-uzmanlga-windows-adli-bilisim.html

Escalating Privileges via Third-Party Windows Installers https://www.mandiant.com/resources/blog/privileges-third-party-windows-installers https://github.com/mandiant/msi-search

Brute-Force ZIP Password Cracking with zipdump.py https://isc.sans.edu/diary.html?storyid=0

Faster Malware Triage with YARA https://forensicitguy.github.io/faster-malware-triage-yara