APT

Best SSRF bypass http://127.1/ http://0000::1:80/ http://[::]:80/ http://2130706433/ http://whitelisted@127.0.0.1 http://0x7f000001/ http://017700000001 http://0177.00.00.01 #ssrf #bugbounty #bugbountytips

RID Hijacking: Maintaining access on Windows machines https://r4wsecurity.blogspot.com/2017/12/rid-hijacking-maintaining-access-on.html https://github.com/r4wd3r/RID-Hijacking #rid #hijack

🔥 Antivirus Bypass using EV Code Signing 🔥 Code signing is a method software publishers use to authenticate the programs they distribute to end-users. Basically, a code-signed program tells the end-user and an end-user’s computer that the program being installed/executed is from a legitimate software publisher. Digitally signed malware can bypass system protection mechanisms that install or launch only programs with valid signatures You can use the SignTool to sign file with a valid certificate Go Daddy. For example: signtool.exe sign /f t.me_secdevoops.pfx /p "*Aspider#" /t http://timestamp.digicert.com .\yourfile .exe This allows you to digitally sign PE binaries such as .exe, .cab, .dll, .ocx, .msi, .xpi and .xap files. Don't forget to share and subscribe #av #bypass #ev #signing #code

InvisibilityCloak Proof-of-concept obfuscation toolkit for C# post-exploitation tools. This will perform the below actions for a C# visual studio project. https://github.com/xforcered/InvisibilityCloak #obfuscation #av #bypass

Confluence RCE — CVE-2021-26084 https://github.com/lleavesl/CVE-2021-26084 #confluecne #rce #cve

#job About Wallarm Join an exciting team that enjoys working and playing together. Wallarm is a well-funded technology startup in the San Francisco area. We continue to add new enterprise customers and grow our team. If you are bright, energetic, interested in cutting-edge tech, and want to make a difference in the company’s life, Wallarm is a place for you. About the role Are you someone that loves security and is a hacker at heart? Wallarm is looking for an eager and motivated Penetration Tester to join our Audit Security Team. This position will provide you the chance to work on identifying vulnerabilities across different software products and work collaboratively as part of the skilled and experienced pentest team.. If you have experience with penetration testing and a drive to learn check out below to learn more and apply! What you will do Develop and execute standard penetration tests to exploit vulnerabilities in the system. Help ensure software security, communicate security vulnerabilities of all severities to all affected stakeholders within the product organization. About you 3+ years of relevant experience (or an equivalent combination of education and experience sufficient to successfully perform the principal duties of the job) Experience with penetration testing Good critical thinking and problem solving skills Attention to detail Knowledge of security principles Good collaboration skills, applied successfully within team as well as with other areas Write in comments below, guys will write to you

Evading EDR with ScareCrow ScareCrow - Payload creation framework designed around EDR bypass. https://adamsvoboda.net/evading-edr-with-scarecrow/ https://www.grahamhelton.com/blog/scarecrow/ https://github.com/optiv/ScareCrow #edr_evasion #shellcode_loader #syscalls

Thread Stack Spoofing A PoC implementation for an advanced in-memory evasion technique that spoofs Thread Call Stack. This technique allows to bypass thread-based memory examination rules and better hide shellcodes while in-process memory. https://github.com/mgeeky/ThreadStackSpoofer #stackspoofing #av #evasion #inject #shellcode #bypass #edr

Blue Team Notes A collection of one-liners, small scripts, and some useful tips for blue team work. https://github.com/Purp1eW0lf/Blue-Team-Notes #blueteam #cheatsheet

SharpSystemTriggers Collection of remote authentication triggers in C# https://github.com/cube0x0/SharpSystemTriggers #coerce #authentication #petitpotam #spoolsample #dcom

For someone, who didn't notice this link in our posts https://j00ru.vexillium.org/syscalls/nt/64/

LFI Bypass 1) /usr/bin/cat /etc/passwd == /???/???/c?t$IFS/?t?/p?s?wd 2) /*/?at$IFS/???/???swd 3)/****/?at$IFS/???/*swd 4)/****/?at$IFS/???/*******swd (IFS is Internal Field Separator = [space], [tab] or a [newline]) #bugbounty #bugbountytips #lfi

#meme Sad 🙁 https://hackerone.com/reports/1209098

Using Kerberos for Authentication Relay Attacks https://googleprojectzero.blogspot.com/2021/10/using-kerberos-for-authentication-relay.html #kerberos #relay

C3 Custom Command and Control (C3). A framework for rapid prototyping of custom C2 channels, while still providing integration with existing offensive toolkits. https://github.com/FSecureLABS/C3 #c2 #cobaltstrike #redteam

OffensiveVBA This repo covers some code execution and AV Evasion methods for Macros in Office documents https://github.com/S3cur3Th1sSh1t/OffensiveVBA #vba #offensive #maldoc

Advanced Maldoc Techniques MS Office File Formats — Advanced Malicious Document (Maldoc) Techniques # https://medium.com/walmartglobaltech/ms-office-file-formats-advanced-malicious-document-maldoc-techniques-b5f948950fdf Evasive VBA — Advanced Maldoc Techniques # https://medium.com/walmartglobaltech/evasive-vba-advanced-maldoc-techniques-1365e9373f80 VBA Stomping — Advanced Maldoc Techniques # https://medium.com/walmartglobaltech/vba-stomping-advanced-maldoc-techniques-612c484ab278 VBA Project Locked — Project is Unviewable # https://medium.com/walmartglobaltech/vba-project-locked-project-is-unviewable-4d6a0b2e7cac #vba #maldoc #advanced