Logo Dark Logo Light Logo
  • Home
  • Cheat-Sheets
    • Windows Priv-Esc
    • Linux Priv-Esc
    • Service Enumeration
  • About Me
  • Contact
Mobile logo
  • Home
  • Cheat-Sheets
    • Windows Priv-Esc
    • Linux Priv-Esc
    • Service Enumeration
  • About Me
  • Contact
Sep 12 2019

Dynamic Office Template Injection

by Joshua
2 Comments
in Code Execution, Macro, Microsoft, Microsoft Word, VBA, Windows, Word

Bypass Email Sandboxes With Dynamic VB Macros Using Template Injection...

Read more
0
May 25 2019

Bypass Windows Defender with A Simple Shell Loader

by Joshua
2 Comments
in assembly, C#, Defender, Defender Bypass, Shellcode, Shellcode Loader, Windows

One of the most simplistic ways to get past Windows Defender is to roll your own shell code loader. There are hundreds of examples on GitHub, GitLab, and BitBucket but, this post is going to break it down and provide a simple framework that Red...

Read more
0
Nov 21 2018

Vulnserver KSTET Egg Hunter with Python3

by Joshua
1 Comment
in assembly, buffer overflow, egg hunter, Python, python3, Windows

During my OSCP study, I went down the Buffer Overflow rabbit hole and found myself going a bit further than needed. I found out I really freaking like binary exploitation! Today, I am going to talk about Egg Hunters. Egg Hunters are used when we...

Read more
1
Aug 04 2018

Freefloat FTP Remote Buffer Overflow

by Joshua
0 Comments
in assmebly, buffer overflow, Python, stack overflow, Tutorial, Windows

60 Days of OSCP labs have come and gone. That was fast and honestly, probably not enough time. I made it through the entire PDF and was able to compromise several machines on the OSCP lab network but I might end up purchasing another 15-30...

Read more
0
May 22 2018

OSCP Preperation 2

by Joshua
0 Comments
in Alternate Data Streams, LFI, OSCP, OWASP, Windows, XXE

Over the last week, there have been a few new things that have made their way into my notes and that are worth mentioning. I've primarily been working on HTB machines and one of the machines that I completed about 2 weeks ago (Jeeves) has...

Read more
0
Older Posts