77 results for tags
hacking x
-
HackTheBox — Office (HARD) Writeup and Experiences | by Frank Kyazze | Medium
permalink -- https://frankkyazze.medium.com/hackthebox-office-hard-writeup-and-experiences-09f25d4424d6
-
"Nightingale - Docker for Pentesters" by Raja Nagori at IWCON2023 - YouTube
[Package nightingale_programming_image · GitHub](https://github.com/RAJANAGORI/Nightingale/pkgs/container/nightingale_programming_image)permalink -- https://www.youtube.com/watch?v=L2H_XNh3Pnw
-
Ethical Hacking Lessons — Bashed Writeup | by Kamran Bilgrami | Medium
permalink -- https://kamran-bilgrami.medium.com/ethical-hacking-lessons-bashed-writeup-5053b10d4e0a
-
StegOnline: A New GUI Steganography Tool | by George O | CTF Writeups | Medium
permalink -- https://medium.com/ctf-writeups/stegonline-a-new-steganography-tool-b4eddb8f8f57
-
What Are Format String Vulnerabilities? | Invicti
permalink -- https://www.invicti.com/blog/web-security/format-string-vulnerabilities/
-
Finding Privilege Escalation Vulnerabilities in Windows using Process Monitor - Wiki - VulWiki
permalink -- https://vuls.cert.org/confluence/display/Wiki/2021/06/21/Finding+Privilege+Escalation+Vulnerabilities+in+Windows+using+Process+Monitor
-
formats_vs_techniques · decalage2/oletools Wiki · GitHub
exploitation documents VBA / DDE / OLE Objects / Remote Template,... and toolspermalink -- https://github.com/decalage2/oletools/wiki/formats_vs_techniques
-
The inception bar: a new phishing method
permalink -- https://jameshfisher.com/2019/04/27/the-inception-bar-a-new-phishing-method/
-
Ropping to Victory
utilisation de radare2 et pwntools pour reverse un crackme ROP (return Oriented Prgarmming). Très détaillé, très clair ;-)permalink -- https://jmpesp.me/rop-emporium-ret2win-with-radare-and-pwntools/
-
Remote Shells. Part I - Networking / Tutorials - 0x00sec
https://0x00sec.org/t/remote-shells-part-ii-crypt-your-link/306permalink -
https://0x00sec.org/t/remote-shells-part-iii-shell-access-your-phone/508
https://0x00sec.org/t/remote-shells-part-iv-the-invisible-remote-shell/743
code c pour des remote/reverse shell.
tuto 4 pour un canal ICMP- https://0x00sec.org/t/remote-shells-part-i/269
-
Buffer Overflow & gdb - Part 1 - 0x0ff.info - Liens en vrac de sebsauvage
liste d'article sur gdf, elf, buffer overflows...permalink -- http://sebsauvage.net/links/?NUsbww
-
Remonter une attaque avec les logs d'Apache2 - Libwalk.so
permalink -- https://www.libwalk.so/2015/04/29/analyse-log.html
-
Cybercrime Documentary Exposes Scams & Threats by Norton
permalink -- https://fr.norton.com/mostdangeroustown/index.html#!/fr
-
OpenSesame - hacking garages in seconds using a Mattel toy - YouTube
permalink -- https://www.youtube.com/watch?v=iSSRaIU9_Vc
-
n9Th4q5.jpg (Image GIF, 500 × 375 pixels)
help help help !permalink -- https://i.imgur.com/n9Th4q5.jpg
-
A tutorial on how to get into an admin account on ANY computer. - Imgur
technique(s) LARGEMENT connue(s) mais je poste quand même...permalink -
dans les comments :
- For mac in 140 chars:reboot>hold Command + R>Click the Utilities menu > select Terminal> type resetpassword > press enter. Macs are Secure!
- Reboot > command+S > "mount -uw /" > "ls /Users" > "passwd [username]"
Then what to do ?
- To add accounts: "net user AccountName /add". To grant admin: "net localgroup Administrators /add AccountName".
- Once you get to the cmd prompt type "net user administrator /active:yes" There are much easier ways to do this...
Why it works :
- The reason this works is that Windows doesn't check the integrity of the Sticky Keys executable and just runs it regardless.
- 1/2: The reason why this works, is that the processes in the logon-environment always is started in context of the system user.
Other options...
- Hirens boot CD >Tools >Security> Reset Admin Password >follow Prompt (yes) Reboot no Password. Takes 2 minutes and less fart ass ing about.
- I think changing sethc by registry debug value to cmd is much neater. But that works too. That debug can be also used for many other things.
Countermeasures :
- Windows : System Settings -> Security and Privacy -> File Vault.
- As a network manager, disable startup repair via group policy. Fixed.
- bcdedit /set {default} recoveryenabled No
- Unless it's a public machine (home/work),you can prevent this by adding disk encryption or even a BIOS boot password.Just don't forget them.
-Disable Startup Repair with: bcdedit /set {default} bootstatuspolicy ignoreallfailures- https://imgur.com/gallery/H8obU
-
Voiture connectée : nouvel eldorado pour hackers ?
permalink -- http://www.industrie-techno.com/voiture-connectee-nouvel-eldorado-pour-hackers.24583
-
apk-hacking [sebsauvage]
Trop fort seb !permalink -
Sebsauvage a hacké le code de l'application de sa banque qui voulait le géolocalisé en neutralisant les appels aux API de Géolocalisation : un peu de reverse et recompilation et Hop ! (euh nop !).
Il publie sur son wiki comment il a procédé et quels outils il a utilisé. Merci ;-)- http://sebsauvage.net/wiki/doku.php?id=apk-hacking
