Hacker tricks

Abusing Windows fork API and OneDrive.exe process to inject the malicious shellcode without allocating new RWX memory region https://github.com/Offensive-Panda/RWX_MEMEORY_HUNT_AND_INJECTION_DV

A Command-Line Tool for Microsoft Graph API Exploration https://github.com/dazzyddos/GraphShell

Pwn2Own Toronto 2022 : A 9-year-old bug in MikroTik RouterOS https://devco.re/blog/2024/05/24/pwn2own-toronto-2022-a-9-year-old-bug-in-mikrotik-routeros-en

OffensiveCon 2024 Repo, contains PoCs and materials for talk "UEFI and the Task of the Translator" https://github.com/ic3qu33n/OffensiveCon24-uefi-task-of-the-translator

AMSI Bypass via VEH: A PowerShell AMSI Bypass technique via Vectored Exception Handler (VEH) https://github.com/vxCrypt0r/AMSI_VEH

Injecting code into PPL processes without vulnerable drivers https://github.com/Slowerzs/PPLSystem

New ransomware group abusing BitLocker https://securelist.com/ransomware-abuses-bitlocker

CVE-2024-4978: Backdoored Justice AV Solutions Viewer Software Used in Apparent Supply Chain Attack https://www.rapid7.com/blog/post/2024/05/23/cve-2024-4978-backdoored-justice-av-solutions-viewer-software-used-in-apparent-supply-chain-attack

Inside the iOS bug that made deleted photos reappear https://www.synacktiv.com/publications/inside-the-ios-bug-that-made-deleted-photos-reappear

Old new email attacks https://blog.slonser.info/posts/email-attacks