Cybersecurity News & Threat Intelligence
Penetration Basics - Brute-Forcing Domain User Passwords via LDAP Protocol
Learn methods for brute-forcing domain user passwords via LDAP, including attack techniques, password spraying, and detection strategies to secure Active Directory.
Custom script development in the local password viewing tool LaZagne
Learn to extend LaZagne with a custom Python script to export passwords from 360 Speed Browser, including bug fixes and EXE conversion steps.
Expansion of Techniques for Exploiting Simulated Trusted Directories
Learn 3 advanced techniques to exploit simulated trusted directories for UAC bypass, Autoruns evasion, and ShimCache deception, with defensive tips.
CAT File Digital Signature Usage Techniques
Learn CAT file digital signature techniques, Authenticode methods, and how to prevent file tampering in Windows systems with step-by-step guides.
Penetration Techniques - Pass the Hash with Exchange Web Service
Learn how to use hash to log into Exchange Web Service (EWS) with penetration techniques, including decryption methods and open-source tools.
Use Office to maintain persistence
Explore four stealthy Office backdoor methods for Word, Excel, and PowerPoint, with a PowerShell POC script for automation, advantages comparison, and defense strategies.
Penetration Basics - Methods to Continuously Obtain Exchange User Inbox Emails
Learn methods to persistently access Exchange user inbox emails via forwarding rules and permissions. Includes defense tips for securing email data after password leaks.
Sophos XG Vulnerability Debugging Environment Setup
Learn to set up a Sophos XG vulnerability debugging environment, including Jetty debugging, CSC file decryption, and PostgreSQL database access.
Authenticode Signature Forgery - PE File Signature Forgery and Signature Verification Hijacking
Learn how to forge Authenticode signatures in PE files and hijack signature verification for backdoor execution. Exploit techniques with tools like SigThief and PowerShell.
Sophos UTM Analysis - Clearing Last WebAdmin Sessions Records
Learn how to clear Last WebAdmin Sessions records on Sophos UTM devices through technical analysis, including research steps and implementation methods.
Use CLR to bypass UAC
Learn how to bypass UAC using CLR hijacking and system CLSID exploits. Exploit .Net programs like gpedit.msc for privilege escalation without admin rights.
Use COM Object hijacking to maintain persistence——Hijack explorer.exe
Learn how to hijack explorer.exe via COM object MruPidlList for persistence. Explains registry manipulation, DLL loading, and defense against COM hijacking attacks.
Penetration Techniques - Bypassing Windows Command Line Process Auditing
Learn how to bypass Windows command line process auditing using SwampThing. Modify process parameters to evade Event ID 4688 logging with step-by-step implementation and defense tips.
Use msdtc to maintain persistence
Learn how MSDTC service DLL hijacking enables persistence, bypasses Autoruns, and methods for detection and defense in Windows environments.
Analysis of APT34 Leaked Tools - PoisonFrog and Glimpse
Technical analysis of APT34's leaked PoisonFrog and Glimpse tools, covering PowerShell Trojans, Node.js C2 servers, and DNS tunneling techniques.
Exchange Web Service (EWS) Development Guide 4 – Auto Downloader
Learn to automate email and attachment downloads with EWS using SOAP XML. Includes keyword/date search, NTLM auth, and open-source Python code.
Pupy Exploitation Analysis - Screen Control on Windows Platform
Analyze Pupy's screen control feature on Windows, covering UAC issues, implementation methods, and an alternative approach using HTTP-Remote-Desktop-Server for secondary development.
Usage of SSP in Mimikatz
Learn how Mimikatz SSP extracts plaintext passwords from lsass, develop custom SSPs, and bypass Windows restrictions for credential access.
vSphere Development Guide 5 - LDAP
Learn to add administrator users in vSphere via LDAP database on vCenter, including exploitation methods and program implementation steps.
Domain Penetration - Obtaining the NTDS.dit File from Domain Controller Servers
Learn methods to obtain NTDS.dit from domain controllers using Volume Shadow Copy, including ntdsutil, vssadmin, and vshadow.exe for security testing.