BLOG
Cahier des courses
Escalade & Rocher haute Montagne : https://www.camptocamp.org/outings?u=112318&act=mountain_climbing,rock_climbing Alpinisme : https://www.camptocamp.org/outings?u=112318&act=snow_ice_mixed Cascade de Glace...
Windows and Unix PWN examples of binaries
Two excellent web sites with a reference on how each exe can be used Windows : https://lolbas-project.github.io/ Unix : https://gtfobins.github.io/ On Unix, there is a script based on that that would help enumerate all possible way to elevate privileges. cd /tmp...
NTFS Extended attributes / Alternatives Streams (ADS)
NTFS allows additional attributes. ( https://en.wikipedia.org/wiki/NTFS#Alternate_data_streams_.28ADS.29 ) Under Linux : getfattr getfattr file.123 getfattr file.123 --only-values > output.bin Under Windows : dir /r streams myfile (Streams exe can be found at...
Credential Phishing check bypass
Each system, has its limits.The Palo Alto on the latest version (tested on 9.0.1), is checking only up to 21 fields for a coupe of username and password in the bloom field.Normal creds formwith 20 hidden INPUT before the Username & Password field. This shows the...
SSH Redirect
The following example binds local port 8834 on remote host via ssh as localhost port 8834.ssh -R 8834:localhost:8834 username@1.2.3.4
Fortigate Packet sniffer
Gui https://1.2.3.4/ng/page/p/firewall/sniffer/?vdom=myvdom en CLIconfig myvdomedit myvdomdiag sniff ....