Collaborate Disseminate
I am trying to do a proof of concept where I use technique T1574.010. In this technique, I should rewrite the binpath of some service in Windows 10 so that when the service starts again the payload that I want is executed, which in this ca… Continue reading Proof of concept: Services File Permissions Weakness (T1574.010)
I’m doing an educational project and I need an executable to try different DLL hijacking techniques in Windows 10.
Obviously, there are no such vulnerabilities in Windows 10 by default, so I thought about creating an executable in C and co… Continue reading Executable to try DLL hijacking attacks
I am trying to do a go program to execute a .exe file, but without be actually a .exe file. The idea is to read the executable from a .txt file and decode it (it is in base64). Once I hava that code stored in a variale, I want to execute i… Continue reading execute command in go without storing the command in a .exe file
I have a disk image divided in 4 files, image.E01, image.E02, image.E03 and image.E04. I created a case in autopsy and I’m trying to recover the Product ID and the Product Key.
The product ID I already found it in the Operating System Info… Continue reading How can I get the Product Key with Autopsy or FTK viewer? [closed]
I am analyzing a mem and trying to recover a file that an attacker used to exploit drupalgeddon2 vulnerability. I discover that the process with pid 11046 executes the request with the file h38x.php (the one the attacker submitted).
I need… Continue reading Get file from the linux_volshell from volatility
I’m trying to recover files from a .mem file with volatility. The mem file is from a Linux machine. I have already loaded the profile and it works fine. I have discovered that the drupalgeddon2 vulnerability was exploited but I need eviden… Continue reading How to recover a file with volatility from a linux profile
I’m trying to add a linux profile to volatility (I am using a kali linux VM) and in theory I should just paste de .zip in the folder:
/usr/local/lib/python2.7/dist-packages/volatility/plugins/overlays/linux
But then when I execute vol.py … Continue reading add linux profile in volatility
I’ve been researching the main TLS 1.1 vulnerabilities, and from what I’ve seen, TLS 1.2 only improves the cryptographic hash functions, because TLS s 1.1 are broken.
If these hash functions are vulnerable, is there any way to break TLS 1…. Continue reading Are there any attacks against TLS 1.1 encryption?