Getting Passed SSL Warnings on ExploitDB Scripts for OSCP
The key lines are as follows: This is the same as -k with curl and –no-check-certificate for wget.
Windows Pentesting Tools / Exploit Repositories
Mimikatz BloodHound Empire Nishang Responder CrackMapExec PSExec WindowsEnum Gdog Windows-Kernel-Exploits
Windows Run-As Reverse Shell
You got user credentials, they might even be admin, what next? Shell of course, here is how to run as […]
Top 3 Hacking Tips
You may notice that the following tips are non-technical, that’s because I honestly believe my best hacking tips are not […]
Windows API Calls for Process Injection / Manipulation / Migration
Essential Win API Functions OpenProcess() for opening the remote process VirtualAllocEx() for allocating memory in remote process WriteProcessMemory() for writing shellcode in […]
Registry Passwords – Windows Post Exploitation
What is The Windows Registry? The Windows Registry is a hierarchical database that stores low-level settings for the Microsoft Windows […]
Diggin’ for Gold – Windows Post Exploitation
We have all been there, you see a post or a script that says grep for this or search for […]
Windows Messages, Message Queues & The Infamous Win32 Shatter Attack
Unlike MS-DOS-based applications, Windows-based applications are event-driven. They do not make explicit function calls (such as C run-time library calls) […]
Exploit access() with Symlinks
About access() The access() system call checks the accessibility of the file specified in pathname based on a process’s real […]
Modsploit
I have forked an old Modbus testing framework that I will be adding to, keep checking back for updates. What […]