HackTheBox Academy
This Is Personal Channel And NOT Related To HackTheBox Company. WriteUp Channel : @HackTheBox_Security Learn About #Linux Learn About #Windows Learn About #Coding Learn About #CVE Learn About #EXPLOIT Learn About #Vulnerability
نمایش بیشتر3 586
مشترکین
+324 ساعت
-67 روز
-10530 روز
- مشترکین
- پوشش پست
- ER - نسبت تعامل
در حال بارگیری داده...
معدل نمو المشتركين
در حال بارگیری داده...
Photo unavailableShow in Telegram
🔥 OS - Certified Web Expert Training Bundle
#Course #Ethical_Hacking #PenTest
➖➖➖➖➖➖➖➖➖
🌐 @HackTheBox_Academy
🌐 @HackTheBox_Security
❤ 3⚡ 1
Photo unavailableShow in Telegram
🔥 OS - Certified Web Expert Training Bundle
#Course #Ethical_Hacking #PenTest
➖➖➖➖➖➖➖➖➖
🌐 @HackTheBox_Academy
🌐 @HackTheBox_Security
18:44
Video unavailableShow in Telegram
✡️ Become Root with CURL & Sudo
#Linux #Privilege_Escalation #Tricks
➖➖➖➖➖➖➖➖➖
🌐 @HackTheBox_Academy
🌐 @HackTheBox_Security
45.81 MB
👍 4👨💻 2😈 1
00:30
Video unavailableShow in Telegram
🎩 RdpStrike
The Project Aims To Extract Clear Text Passwords From Mstsc.exe,
When The ShellCode Injects Into The Mstsc.exe Process, It is Going To Put Hardware Breakpoint Onto Three Different APIs, Ultimately Capturing ALL Clear Text Credentials.
🔗 Source:
https://github.com/0xEr3bus/RdpStrike
When The Aggressor Script Is Loaded On CobaltStrike, Three New Commands Will be Available: 1️⃣ rdpstrike_enable - Enables The HeartBeat Check Of New Mstsc.exe Processes And Injects Into Them. 2️⃣ rdpstrike_disable - Disables The HeartBeat Check Of New Mstsc.exe But Is Not Going To Remove The Hooks And Free The ShellCode. 3️⃣ rdpstrike_dump - Reads The File And Prints The Extracted Credentials.#RDP #Stealler #bof #cobaltstrike ➖➖➖➖➖➖➖➖➖ 🌐 @HackTheBox_Academy 🌐 @HackTheBox_Security
1.03 MB
⚡ 3👍 3❤ 2
🎩 RdpStrike
The Project Aims To Extract Clear Text Passwords From Mstsc.exe,
When The ShellCode Injects Into The Mstsc.exe Process, It is Going To Put Hardware Breakpoint Onto Three Different APIs, Ultimately Capturing ALL Clear Text Credentials.
🔗 Source:
https://github.com/0xEr3bus/RdpStrike
When The Aggressor Script Is Loaded On CobaltStrike, Three New Commands Will be Available: 1️⃣ rdpstrike_enable - Enables The HeartBeat Check Of New Mstsc.exe Processes And Injects Into Them. 2️⃣ rdpstrike_disable - Disables The HeartBeat Check Of New Mstsc.exe But Is Not Going To Remove The Hooks And Free The ShellCode. 3️⃣ rdpstrike_dump - Reads The File And Prints The Extracted Credentials.#RDP #Stealler #bof #cobaltstrike ➖➖➖➖➖➖➖➖➖ 🌐 @HackTheBox_Academy 🌐 @HackTheBox_Security
GitHub - 0xEr3bus/RdpStrike: Positional Independent Code to extract clear text password from mstsc.exe using API Hooking via HWBP.
Positional Independent Code to extract clear text password from mstsc.exe using API Hooking via HWBP. - 0xEr3bus/RdpStrike
Photo unavailableShow in Telegram
🎩 NetCat Commands
🥷 UseFul Tool To EveryOne.
#Tools #Hacking #NetCat
#Ethical #Linux #PenTest
➖➖➖➖➖➖➖➖➖
🌐 @HackTheBox_Academy
🌐 @HackTheBox_Security
👍 4❤ 3
27:01
Video unavailableShow in Telegram
Top 6️⃣🅾️ Useful Commands That You NEED to Know In PenTesting.
#Linux #Tools #PenTest #Tips
➖➖➖➖➖➖➖➖➖
🌐 @HackTheBox_Academy
🌐 @HackTheBox_Security
64.37 MB
❤ 4👍 3
💿 SSRF LocalHost Aliases
⭕
http://localhost
⭕http://*.localhost
⭕http://127.1
⭕http://127.0.0.0
⭕http://127 0.0.1
⭕http://0177.1
⭕http://0x7f.1
⭕http://127.000.000.1
⭕http://[::1
]
⭕http://[::]
⭕http://0
#BugBounty #Tips #SSRF
➖➖➖➖➖➖➖➖➖
🌐 @HackTheBox_Academy
🌐 @HackTheBox_SecurityWhat is SSRF (Server-side request forgery)? Tutorial & Examples | Web Security Academy
In this section we explain what server-side request forgery (SSRF) is, and describe some common examples. We also show you how to find and exploit SSRF ...
👍 3😈 2👨💻 1
یک طرح متفاوت انتخاب کنید
طرح فعلی شما تنها برای 5 کانال تجزیه و تحلیل را مجاز می کند. برای بیشتر، لطفا یک طرح دیگر انتخاب کنید.