Cybersecurity News & Threat Intelligence
Implementing IE Browser Hijacking Using BHO
Learn how to implement IE browser hijacking using BHO for network connection simulation, bypassing security products. Includes development steps and exploitation approaches.
Penetration Techniques - Acquisition and Brute-Force of PPTP Passwords
Learn how to acquire PPTP passwords via command line in Windows, connect to PPTP on Windows/Kali, and brute-force PPTP passwords using open-source tools for penetration testing.
Exploitation Analysis of Executing Shellcode via Boolang Language
Learn how attackers use Boolang language to execute shellcode, analyze exploitation techniques, and discover defensive detection strategies.
Penetration Techniques - Information Retrieval from Windows Credential Manager
Learn how to retrieve plaintext passwords from Windows Credential Manager during penetration testing, covering domain and generic credentials with practical methods.
Windows XML Event Log (EVTX) Single Log Entry Deletion (Part 4) – Deleting a Single Log Record from the Current System by Obtaining Log File Handle via Injection
Learn to delete single EVTX log records by injecting DLL into Eventlog service, obtaining file handles, and modifying logs via memory mapping. Step-by-step guide with code.
Study Notes Weekly No.3(Use odbcconf to load dll & Get-Exports & ETW USB Keylogger)
Learn to bypass regsvr32 interception using odbcconf, export DLL functions with PowerShell Get-Exports, and implement USB keyboard keystroke logging via ETW.
Implementation of sekurlsa::wdigest in Mimikatz
Learn how to implement Mimikatz's sekurlsa::wdigest module to extract plaintext passwords from lsass across Windows versions, including Win7 to Win10.
Office backdoor implemented using VSTO
Learn how to implement an Office backdoor using VSTO, bypass whitelisting, and detect such threats. Step-by-step exploitation and security analysis.
DotNet Deserialization - Program Implementation for Generating ViewState
Learn to generate malicious ViewState for DotNet deserialization attacks, exploit Exchange file permissions, and implement XAML payloads for RCE.
MailEnable Development Guide
Learn to access MailEnable mail using Python scripts. This guide covers setup, version detection, user login, and folder management with open-source code.
Penetration Techniques - Lateral Movement from VMware ESXI to Windows Virtual Machines
Learn how to move laterally from VMware ESXI to Windows VMs using snapshot techniques, commands, and volatility analysis for security testing.
Use msxsl to bypass AppLocker
Learn how to use Microsoft-signed msxsl.exe to bypass AppLocker and execute JScript/VBScript code, including shellcode and exploits.
Study Notes of using BGInfo to bypass Application Whitelisting
Learn how to bypass application whitelisting using BGInfo, with steps for editing .bgi files via PowerShell and an open-source script for automation.
Automated DLL Hijacking Vulnerability Identification Tool Rattler Testing
Learn how to use Rattler for automated DLL hijacking vulnerability identification. Explore principles, examples, and testing with the Explorer Suite installation package.
Penetration Techniques - Accessing Internal File Shares via Exchange ActiveSync
Learn how to access internal file shares through Exchange ActiveSync vulnerabilities. Includes password verification, open-source testing, and defense strategies for Exchange security.
Domain Penetration - Kerberoasting
Learn Kerberoasting principles, implementation, backdoor exploits, and defense strategies for domain penetration in Active Directory environments.
Penetration Techniques - Multiple Methods for Downloading Files from GitHub
Explore multiple methods to download and execute files from GitHub via cmd, including PowerShell, certutil, bitsadmin, and regsvr32 techniques.
Penetration Techniques - Further Testing on "Hidden" Registry
Advanced penetration testing on hidden registry techniques, exploring stealthy methods using Native APIs and zero-day exploits for cybersecurity defense.
Reverse Analysis - Using IDA for Dynamic Debugging of tasksche.exe in WanaCrypt0r
Learn to use IDA for dynamic debugging of WanaCrypt0r's tasksche.exe. Step-by-step guide for beginners on reverse engineering ransomware execution flow.
Penetration Techniques - Account Hiding in Windows Systems
Learn advanced Windows account hiding via registry cloning, combined with remote desktop multi-user login exploitation techniques for penetration testing.