by frank | Jul 1, 2019 | Uncategorized
Escalade & Rocher haute Montagne : https://www.camptocamp.org/outings?u=112318&act=mountain_climbing,rock_climbing Alpinisme : https://www.camptocamp.org/outings?u=112318&act=snow_ice_mixed Cascade de Glace...
by frank | Jun 28, 2019 | CTF, Linux, Pwn, Windows
Two excellent web sites with a reference on how each exe can be used Windows : https://lolbas-project.github.io/ Unix : https://gtfobins.github.io/ On Unix, there is a script based on that that would help enumerate all possible way to elevate privileges. cd /tmp...
by frank | Jun 28, 2019 | CTF, Security, Windows
NTFS allows additional attributes. ( https://en.wikipedia.org/wiki/NTFS#Alternate_data_streams_.28ADS.29 ) Under Linux : getfattr getfattr file.123 getfattr file.123 –only-values > output.bin Under Windows : dir /r streams myfile (Streams exe can be found at...
by frank | Jun 28, 2019 | Palo Alto
Each system, has its limits.The Palo Alto on the latest version (tested on 9.0.1), is checking only up to 21 fields for a coupe of username and password in the bloom field.Normal creds form with 20 hidden INPUT before the Username & Password field. This shows the...
by frank | Jun 28, 2019 | Linux, Security
The following example binds local port 8834 on remote host via ssh as localhost port 8834.ssh -R 8834:localhost:8834 username@1.2.3.4
by frank | Jun 28, 2019 | Debug, Misc, Security
Gui https://1.2.3.4/ng/page/p/firewall/sniffer/?vdom=myvdom en CLIconfig myvdomedit myvdomdiag sniff ….
by frank | Jun 28, 2019 | Cloud, CTF, Security
dig website.cloudnslookup website.cloud sudo pip install awscli List content of a public AWS bucketaws s3 ls s3://website.cloud –no-sign-request –region us-west-2 List content of a user authenticated AWS bucketaws configure –profile myuserprofilename...
by frank | Jun 28, 2019 | Debug, Windows
Generate an installation log by running your msi with the following optionsmsiexec.exe /i “C:Example.msi” /L*V “C:package.log”
by frank | Jun 28, 2019 | Blue Team, Red team, Security, Windows
echo %logonserver% findstr /S /I cpassword \\xxDC01\sysvol\xxxdc01\policies*.xml crack cpassword with the default AES key https://github.com/PowerShellMafia/PowerSploit/blob/master/Exfiltration/Get-GPPPassword.ps1
by frank | Jun 28, 2019 | Misc, Red team, Security, Windows
pyinstaller -i toto.ico -w -F toto.py Medium article : https://medium.com/dreamcatcher-its-blog/making-an-stand-alone-executable-from-a-python-script-using-pyinstaller-d1df9170e263 Another one which I don’t agree, as yes, payload is undetected by execute will...
Recent Comments