Using Credentials to Own Windows Boxes – Part 3 (WMI and WinRM)
This is the third part of a series showing how to remotely execute commands (and “own”) Windows machines once you have compromised a set of…
Category: Mix
How to see the impact installing BApps might have on Burp Suite | Blog
Matt Atkinson | 16 June 2022 at 13:50 UTC If you’ve ever installed any Burp extensions from the BApp Store, you’ll know that it’s a…
Client-Side Desync Attack (CSD)
🔍 Introduction Client-Side Desync(CSD) Attack은 HTTP Request Smuggling(HRS, Desync Attack)의 한 종류로 기존의 HRS가 Browser가 전송할 수 없는 형태의 HTTP Request를 임의로 전송하여 서버 또는…
What Does Belgium’s New Legal Framework On Hacking Mean For Me?
The Belgian government has recently announced a new Belgian law that will allow ethical hackers to hack any Belgian company without any prior permission. Historically,…
Capture the flag: reversing the passwords (Solutions)
Step 1 – Recovering the corrupted data According to the doc, the following stream is corrupted: 7b 0a 20 a0 22 65 76 e5 6e…
How to set up Attack Surface Custom Policies
Validate security policies like you mean it Not everything on your attack surface is a vulnerability. Every organization has their own internal security policies that…
import alignment: A Library-based Approach to AI Alignment
What if we could send AI a message as soon as it wakes up? Created/Updated: April 3, 2023 There is much being said right now…
Your cybersecurity starter pack | victoria.dev
Basic security best practices to share with your non-technical friend. Readers of my blog typically know more about technology and cybersecurity than most people. This…
Nahamsec interviews Albinowax
Note that during these interviews I also moderate thus quality may vary. Profile 🐝 Head of research at Portswigger University computer science Bug bounty Pentester…
The Hidden Gems Of The Burp Suite Settings [April 2023 version]
The Hidden Gems Of The Burp Suite Settings [April 2023 version] Source link
A malicious actor could rotate tokens of a victim, given that he knows the victim’s token ID
Cloudflare Public Bug Bounty disclosed a bug submitted by esx: https://hackerone.com/reports/1525309 – Bounty: $2700 Source link
Low-Hanging Apples: Hunting Credentials and Secrets in iOS Apps
Diving straight into reverse-engineering iOS apps can be daunting and time-consuming. While wading into the binary can pay off greatly in the long run, it’s…