Hacker tricks

CVE-2024-2887: A Pwn2Own Winning Bug in Google Chrome https://www.zerodayinitiative.com/blog/2024/5/2/cve-2024-2887-a-pwn2own-winning-bug-in-google-chrome CVE-2024-21115: An Oracle VirtualBox LPE Used to Win Pwn2Own https://www.zerodayinitiative.com/blog/2024/5/9/cve-2024-21115-an-oracle-virtualbox-lpe-used-to-win-pwn2own

Visualizing ACLs with Adalanche https://lsecqt.github.io/Red-Teaming-Army/active-directory/enumeration/visualizing-acls-with-adalanche/

TrollPersist: A Post-Compromise granular, fully reflective, simple and convenient .NET library to embed persistency to persistency by abusing Security Descriptors of remote machines https://github.com/cybersectroll/TrollPersist

IPPrintC2: PoC for using MS Windows printers for persistence / command and control via Internet Printing https://github.com/Diverto/IPPrintC2

Fuzz anything with Program Environment Fuzzing https://github.com/GJDuck/RRFuzz

Side-by-Side with HelloJackHunter: Unveiling the Mysteries of WinSxS https://blog.zsec.uk/hellojackhunter-exploring-winsxs

call a webhook on opening Google doc https://gist.github.com/radk2/45e729f5859d76197d8f7e6b53dd6d71

Read Remote Process Commandline BOF BOF to read the startup arguments of a remote process, when provided a process ID (PID) https://github.com/EspressoCake/ReadRemoteProcessCommandline_BOF

darkPulse: is a shellcode Packer written in go, used to generate a variety of shellcode loaders https://github.com/fdx-xdf/darkPulse

LSASS Dumping Using DFIR Tools https://www.youtube.com/watch?v=RW3cEdKbC4E