3059 matches found
Security feature bypass
The Microsoft Device Guard on Microsoft Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows a security feature bypass by the way it handles Windows PowerShell sessions, aka "Windows Security Feature Bypass"...
Security feature bypass
The Microsoft Device Guard on Microsoft Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows a security feature bypass by the way it handles Windows PowerShell sessions, aka "Microsoft Windows Security Feature Bypass"...
CVE-2017-11823
The Microsoft Device Guard on Microsoft Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows a security feature bypass by the way it handles Windows PowerShell sessions, aka "Microsoft Windows Security Feature Bypass"...
CVE-2017-8715
The Microsoft Device Guard on Microsoft Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows a security feature bypass by the way it handles Windows PowerShell sessions, aka "Windows Security Feature Bypass"...
CVE-2017-8715
CVE-2017-8715 is a Device Guard security feature bypass in Windows PowerShell sessions on Windows 10 (Gold 1511, 1607, 1703) and Windows Server 2016. The vulnerability could let an attacker inject code into a trusted PowerShell process to bypass Code Integrity. Remediation exists: install the Mic...
Microsoft Windows Device Guard Local Security Bypass Vulnerability
Microsoft Windows is the popular computer operating system. A security bypass vulnerability in the implementation of Microsoft Windows Device Guard could allow an attacker to inject malicious code into a Windows PowerShell session...
Microsoft Windows Device Guard Local Security Bypass Vulnerability (CNVD-2017-30911)
Microsoft Windows is the popular computer operating system. A security bypass vulnerability in the implementation of Microsoft Windows Device Guard could allow an attacker to inject malicious code into a Windows PowerShell session...
Device Guard Code Integrity Policy Security Feature Bypass Vulnerability
A security feature bypass vulnerability exists in Device Guard that could allow an attacker to inject malicious code into a Windows PowerShell session. An attacker who successfully exploited this vulnerability could inject code into a trusted PowerShell process to bypass the Device Guard Code...
Device Guard Code Integrity Policy Security Feature Bypass Vulnerability
A security feature bypass vulnerability exists in Device Guard that could allow an attacker to inject malicious code into a Windows PowerShell session. An attacker who successfully exploited this vulnerability could inject code into a trusted PowerShell process to bypass the Device Guard Code...
Unable to Connect to PVS After PVS Server Upgrade or Downgrade
After an upgrade of PVS from 7.13 to 7.15, or a downgrade of the PVS server from 7.13 to 7.6, the ELM was no longer able to connect to it. Testing credentials would fail. Note, this probably happens in lots of other circumstances, but these are the two circumstances where we've seen this. If you...
KB4041691: Windows 10 Version 1607 and Windows Server 2016 October 2017 Cumulative Update (KRACK)
The remote Windows host is missing security update 4041691. It is, therefore, affected by multiple vulnerabilities : - An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory. An attacker who successfully exploited this vulnerability could obtai...
Ironsquirrel - Encrypted Exploit Delivery for the Masses
This project aims at delivering browser exploits to the victim browser in an encrypted fashion. Ellyptic-curve Diffie-Hellman secp256k1 is used for key agreement and AES is used for encryption. By delivering the exploit code and shellcode to the victim in an encrypted way, the attack can not be...
ThunderShell - PowerShell based RAT
ThunderShell is a Powershell based RAT that rely on HTTP request to communicate. All the network traffic is encrypted using a second layer of RC4 to avoid SSL interception and defeat network hooks. Dependencies apt install redis-server apt install python-redis Logs Every errors, http requests and...
BloodHound - Six Degrees of Domain Admin
BloodHound is a single page Javascript web application, built on top of Linkurious, compiled with Electron, with a Neo4j database fed by a PowerShell ingestor. BloodHound uses graph theory to reveal the hidden and often unintended relationships within an Active Directory environment. Attacks can...
PowerShdll - Run PowerShell with rundll32 (Bypass software restrictions)
Run PowerShell with dlls only. Does not require access to powershell.exe as it uses powershell automation dlls. dll mode: Usage: rundll32 PowerShdll,main rundll32 PowerShdll,main -f Run the script passed as argument rundll32 PowerShdll,main -w Start an interactive console in a new window rundll32...
EternalBlue Exploit Used in Retefe Banking Trojan Campaign
Criminals behind the Retefe banking Trojan have added a new component to their malware that uses the NSA exploit EternalBlue. The update makes Retefe the latest malware family to adopt the SMBv1 attack against a patched Windows vulnerability, and could signal an emerging trend, said researchers a...
ACLight: An Advanced Privileged Account Discovery Tool
PenTestIT RSS Feed Consider that you already have gotten inside a network and have compromised a system. Naturally, you would now want to spread across the network with least efforts. The question is - how? Answer is simple - ACLight. Using this tool you can atleast start looking at weaker target...
Unable to Configure Citrix App Layering ELM PVS Connector
The App Layering Agent PVS Agent on the PVS server is registered with the App Layering ELM virtual appliance, and the PVS Server enumerates on the App Layering PVS connector screen. However,clicking "check credentials" an error is displayed stating that the ELM cannot use the credentials on the P...
Exploit for Code Injection in Microsoft
CVE-2017-8759-Exploit-sample Running CVE-2017-8759 exploit sam...
CVE-2017-8746
Windows Device Guard in Windows 10 1607, 1703, and Windows Server 2016 allows A security feature bypass vulnerability due to how PowerShell exposes functions and processes user supplied code, aka "Device Guard Security Feature Bypass Vulnerability"...