Active Directory: Reconnaissance via Cobalt Strike
With the advent of managed computing systems and the attack on information systems, the question suddenly arose with the operational …
CPU Exploitation (1) –> Noise Reduction Basics
--> we use a x86 processor for this articlesorry apple M1/M2((( --> use qemu**donot compile the code with optimizations flags Speculative execution …
DLL Injection and a question for UWP apps
Dear all good day! I would like to share with you some thoughts on a project that I am currently working, …
Bypass UAC – Methods
Methods Account Control (UAC) is a Windows security feature designed to protect the operating system from unauthorized changes. If administrator-level permission …
Disable Windows Defender (+ UAC Bypass, + Upgrade to SYSTEM)
Windows Defender… There is so much pain in that word. Most likely, if you were even remotely connected with the …
Unwind Local File Inclusion before Remote Code Execution
I. Introduction Local File Inclusion (LFI) is a vulnerability in some web applications where the developer does not filter input …
Hide Cobalt-Strike like a PRO
Bypass Kaspersky End Point Security AV/EDR ~/ Clone *.Kaspersky.com SSL & Avoid BlueTeam ~/ Bypass Kaspersky AV / EDR 12.27.2023 Before i start, …
Hide CobaltStrike PRO
Hide CobaltStrike PRO Hide Your CobaltStrike with CloudFlared Tunnel and Microsoft 100 Traffic% I finally see a new CobaltStrike audience here …
Cobalt-Strike Profiles for EDR-Evasion + SourcePoint is a C2 profile generator for Cobalt-Strike
Bypassing memory scanners The recent versions of Cobalt Strike have made it so easy for the operators to bypass memory scanners …
XLL DROPPER
XLL DROPPER | Learn to create Native xll Dropper Write XLL Dropper in c++ , a red teams most used dropper …