Lucene search
K

371 matches found

Kitploit
Kitploit
added 2021/10/24 8:30 p.m.399 views

ThreadStackSpoofer - PoC For An Advanced In-Memory Evasion Technique Allowing To Better Hide Injected Shellcode'S Memory Allocation From Scanners And Analysts

A PoC implementation for an advanced in-memory evasion technique that spoofs Thread Call Stack. This technique allows to bypass thread-based memory examination rules and better hide shellcodes while in-process memory. Intro This is an example implementation for Thread Stack Spoofing technique...

7.2AI score
Exploits0References11
Gitee
Gitee
added 2021/09/27 11:2 p.m.5 views

ctf

It is an offensive tool for reverse engineering. The repository contains a binary decompiler for a "Magic Word" challenge, which appears to be a reverse engineering exercise. The code is written in C++ and utilizes the basicstring class from the C++ Standard Library. The decompiled main function ...

7.1AI score
Exploits0
Kitploit
Kitploit
added 2021/06/20 9:30 p.m.49 views

NamedPipePTH - Pass The Hash To A Named Pipe For Token Impersonation

This project is a PoC code to use Pass-the-Hash for authentication on a local Named Pipe user Impersonation. There also is a blog post for explanation: https://s3cur3th1ssh1t.github.io/Named-Pipe-PTH/ It is heavily based on the code from the projects Invoke-SMBExec.ps1 and RoguePotato. I faced...

7.8AI score
Exploits0References6
Kitploit
Kitploit
added 2021/04/01 11:30 a.m.542 views

Seatbelt - A C# Project That Performs A Number Of Security Oriented Host-Survey "Safety Checks" Relevant From Both Offensive And Defensive Security Perspectives

Seatbelt is a C project that performs a number of security oriented host-survey "safety checks" relevant from both offensive and defensive security perspectives. @andrewchiles' HostEnum.ps1 script and @tifkin's Get-HostProfile.ps1 provided inspiration for many of the artifacts to collect. @harmj0...

7AI score
Exploits0References24
Gitee
Gitee
added 2021/03/28 12:58 p.m.3 views

exploitdb

This is a repository of exploits and proof-of-concepts for various vulnerabilities in software and systems. The repository is maintained by Offensive Security and is used by penetration testers and vulnerability researchers. The exploits are categorized into different types, including exploits,...

6.9AI score
Exploits0
Kitploit
Kitploit
added 2021/03/24 8:30 p.m.471 views

OSCP-Exam-Report-Template-Markdown - Markdown Templates For Offensive Security OSCP, OSWE, OSCE, OSEE, OSWP Exam Report

I created an Offensive Security Exam Report Template in Markdown so LaTeX, Microsoft Office Word, LibreOffice Writer are no longer needed during your Offensive Security OSCP, OSWE, OSCE, OSEE, OSWP exam! Now you can be efficient and faster during your exam report redaction! Speed up writing , don...

7.2AI score
Exploits0References13
Rapid7 Blog
Rapid7 Blog
added 2021/02/24 3:30 p.m.18 views

Software Engineering, Vulnerability and Risk Management: Revolutionizing the Security Landscape at Rapid7

At Rapid7, our software engineers defend the digital world and design the future of security. With a supportive, collaborative team, immense learning and development opportunities to fine-tune and hone in on skills and knowledge, opportunities to work with innovative technology, and the pursuance...

3.3CVSS0.1AI score0.00998EPSS
Exploits1
GoogleProjectZero
GoogleProjectZero
added 2021/01/12 12:0 a.m.182 views

Introducing the In-the-Wild Series

This is part 1 of a 6-part series detailing a set of vulnerabilities found by Project Zero being exploited in the wild. To read the other parts of the series, head to the bottom of this post. At Project Zero we often refer to our goal simply as “make 0-day hard”. Members of the team approach this...

8.8CVSS8.8AI score0.78808EPSS
Exploits9
ThreatPost
ThreatPost
added 2021/01/08 9:31 p.m.63 views

Malicious Software Infrastructure Easier to Get and Deploy Than Ever

Simple to use and deploy offensive security tools, making it easier than ever for criminals with little technical know-how to get in on cybercrime are seeing a significant rise, researchers say. Recorded Future just released findings from its regular year-end observations of malicious...

7.6AI score
Exploits0References13
Malwarebytes
Malwarebytes
added 2020/12/24 4:30 p.m.51 views

VideoBytes: Offensive security tools and the bad guys that use them

Hello Folks! In this Videobyte, we’re talking about what penetration testing tools malware gangs love to use and why they are better than what you can get on the black market. This article describes the VirusBulletin talk of a security researcher from Interzer Labs, Paul Litvak, in which he...

Exploits0
Talos Blog
Talos Blog
added 2020/12/10 11:0 a.m.23 views

Threat Source newsletter (Dec. 10, 2020)

Newsletter compiled by Jon Munshaw. Good afternoon, Talos readers. Cyber security firm FireEye recently disclosed an incident that was reported to have resulted in the inadvertent disclosure of various internally developed offensive security tools OSTs that were used across FireEye red-team...

1.8AI score
Exploits0
Gitee
Gitee
added 2020/12/03 4:36 p.m.3 views

exploitdb

The Exploit Database Git Repository This is an official repository of The Exploit Database, a project sponsored by Offensive Security. Our repositories are: - Exploits & Shellcodes: https://github.com/offensive-security/exploitdb - Binary Exploits:...

6.7AI score
Exploits0
Kitploit
Kitploit
added 2020/10/27 11:30 a.m.28 views

TASER - Python3 Resource Library For Creating Security Related Tooling

TASER T esting A nd SE ecurity R esource is a Python resource library used to simplify the process of creating offensive security tooling, especially those relating to web or external assessments. It's modular design makes it easy for code to be customized and re-purposed in a variety of scenario...

7.6AI score
Exploits0References3
Gitee
Gitee
added 2020/10/06 8:56 p.m.3 views

ICS-security

This repository is an offensive tool for ICS Industrial Control Systems security research. It contains a collection of resources, including papers, exploits, firmware, Nmap scripts, and tools, related to ICS security. The repository is organized into several categories, including a directory of...

6.9AI score
Exploits0
Gitee
Gitee
added 2020/09/11 3:13 p.m.9 views

exploit-database

This is the official Exploit Database repository, a collection of public exploits and vulnerable software. The repository is maintained by Offensive Security and is updated daily with new submissions. The database contains a wide range of exploits, including remote code execution, privilege...

7.5AI score
Exploits0
Gitee
Gitee
added 2020/09/01 9:21 a.m.4 views

exploitdb

The Exploit Database Git Repository This is an official repository of The Exploit Database, a project sponsored by Offensive Security. Our repositories are: - Exploits & Shellcodes: https://github.com/offensive-security/exploitdb - Binary Exploits:...

6.8AI score
Exploits0
Kitploit
Kitploit
added 2020/08/16 10:21 p.m.199 views

PowerSharpPack - Many usefull offensive CSharp Projects wraped into Powershell for easy usage

Many usefull offensive CSharp Projects wraped into Powershell for easy usage. Why? In my personal opinion offensive Powershell is not dead because of AMSI, Script-block-logging, Constrained Language Mode or other protection features. Any of these mechanisms can be bypassed. Since most new...

7.6AI score
Exploits0References46
Pen Test Partners Blog
Pen Test Partners Blog
added 2020/07/13 5:17 a.m.256 views

Bridging the gaps between Red and Blue teaming

Red Team, Blue Team, Purple Team, Black Team… Rainbow team? What are all of these things and what do they all mean? Is this a new case of a new found buzzword bingo or do they have a place and a purpose? The coloured teams are something that is thrown around a lot and while some of them are bette...

6.8AI score
Exploits0
Kitploit
Kitploit
added 2020/05/18 12:30 p.m.85 views

Sharingan - Offensive Security Recon Tool

Sharingan is a recon multitool for offensive security / bug bounty This is very much a work in progress and I'm relatively new to offensive security in general so if you see something that can be improved please open an issue or PR with suggested changes. Cloning for development Outside of your...

7.2AI score
Exploits0References1
Gitee
Gitee
added 2020/05/06 11:13 p.m.5 views

exploitdb

The Exploit Database Git Repository This is an official repository of The Exploit Database, a project sponsored by Offensive Security. Our repositories are: - Exploits & Shellcodes: https://github.com/offensive-security/exploitdb - Binary Exploits:...

6.8AI score
Exploits0
Rows per page
Query Builder