I hereby claim:
- I am ghost5683 on github.
- I am ghost305 (https://keybase.io/ghost305) on keybase.
- I have a public key ASDmzq3zXGrK50oMnQTCtD_-uyTtcVZRZqs6RzTIZpl7rgo
To claim this, I am signing this object:
Mike ghost5683
ghost5683
/ DLL_Sideloading_Protection_Example.cpp
Created
January 25, 2024 00:36
— forked from WKL-Sec/DLL_Sideloading_Protection_Example.cpp
This C++ code example is part of the White Knight Labs Offensive Development Course materials. A straightforward C++ code snippet demonstrating how to prevent DLL sideloading by validating the calling executable. It uses a whitelist approach to ensure only specified executables can load the DLL.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #include <windows.h> | |
| #include <string> | |
| #include <vector> | |
| #include <algorithm> | |
| // White Knight Labs - Offensive Development Course | |
| // DLL Guardrails Example | |
| // This function extracts the file name from a given path | |
| // It is used later to determine the executable name loading the DLL. |
ghost5683
/ PowerView-3.0-tricks.ps1
Created
December 25, 2023 12:09
— forked from HarmJ0y/PowerView-3.0-tricks.ps1
PowerView-3.0 tips and tricks
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # PowerView's last major overhaul is detailed here: http://www.harmj0y.net/blog/powershell/make-powerview-great-again/ | |
| # tricks for the 'old' PowerView are at https://gist.github.com/HarmJ0y/3328d954607d71362e3c | |
| # the most up-to-date version of PowerView will always be in the dev branch of PowerSploit: | |
| # https://github.com/PowerShellMafia/PowerSploit/blob/dev/Recon/PowerView.ps1 | |
| # New function naming schema: | |
| # Verbs: | |
| # Get : retrieve full raw data sets | |
| # Find : ‘find’ specific data entries in a data set |
ghost5683
/ .htaccess
Created
January 11, 2023 21:56
— forked from curi0usJack/.htaccess
FYI THIS IS NO LONGER AN .HTACCESS FILE. SEE COMMENTS BELOW. DON'T WORRY, IT'S STILL EASY.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # | |
| # TO-DO: set |DESTINATIONURL| below to be whatever you want e.g. www.google.com. Do not include "http(s)://" as a prefix. All matching requests will be sent to that url. Thanks @Meatballs__! | |
| # | |
| # Note this version requires Apache 2.4+ | |
| # | |
| # Save this file into something like /etc/apache2/redirect.rules. | |
| # Then in your site's apache conf file (in /etc/apache2/sites-avaiable/), put this statement somewhere near the bottom | |
| # | |
| # Include /etc/apache2/redirect.rules | |
| # |
ghost5683
/ keybase.md
Created
May 30, 2018 14:26
ghost5683
/ keybase.md
Created
May 30, 2018 14:22
I hereby claim:
- I am ghost305 on github.
- I am ghost305 (https://keybase.io/ghost305) on keybase.
- I have a public key ASDmzq3zXGrK50oMnQTCtD_-uyTtcVZRZqs6RzTIZpl7rgo
To claim this, I am signing this object: