c14dd49h
|
ca28c69e67
|
Update Active Directory Attack.md
|
2021-02-26 14:14:10 +01:00 |
|
Swissky
|
8d31b7240b
|
Office Attacks
|
2021-02-21 20:17:57 +01:00 |
|
Swissky
|
e128964dd9
|
Merge pull request #338 from mpgn/patch-1
Add mimikatz command to protect a process after removing the protection
|
2021-02-17 12:32:23 +01:00 |
|
mpgn
|
d1c23c5863
|
Unload the service mimi
|
2021-02-17 12:21:16 +01:00 |
|
mpgn
|
9be371d793
|
add mimikatz command to protect a process again after removing the protection
fe4e984055/mimikatz/modules/kuhl_m_kernel.c (L99)
|
2021-02-17 12:15:47 +01:00 |
|
Swissky
|
f6f8ec010a
|
Merge pull request #336 from valenbg1/patch-1
Update Windows - Privilege Escalation.md
|
2021-02-10 16:36:19 +01:00 |
|
Valentín Blanco
|
73f6ab940c
|
Update Windows - Privilege Escalation.md
Adding WES-NG which is a great and updated replacement for Windows-Exploit-Suggester.
|
2021-02-10 15:52:41 +01:00 |
|
Swissky
|
1d08a7e12d
|
Merge pull request #335 from unkn0w/patch-1
[typo] changed sshs_config to sshd_config
|
2021-02-05 14:36:05 +01:00 |
|
Jakub 'unknow' Mrugalski
|
9244fe0480
|
[typo] changed sshs_config to sshd_config
|
2021-02-05 12:24:49 +01:00 |
|
Swissky
|
495a1f3ffe
|
Merge pull request #334 from lanjelot/git-dumper
New tool git-dumper.py
|
2021-02-03 15:41:27 +01:00 |
|
lanjelot
|
34dff949a2
|
Fix ToC
|
2021-02-04 00:47:00 +11:00 |
|
lanjelot
|
fd6d7f360e
|
New tool git-dumper.py
|
2021-02-03 21:15:55 +11:00 |
|
Swissky
|
6bcd2e8a6a
|
Update README.md
|
2021-01-31 21:51:53 +01:00 |
|
Swissky
|
b4d8b5939f
|
Merge pull request #332 from kazkansouh/master
Add a one line postgres file write
|
2021-01-30 21:59:01 +01:00 |
|
Karim Kanso
|
826130946c
|
Add a one line postgres file write
|
2021-01-30 14:17:35 +00:00 |
|
Swissky
|
092083af5c
|
AD - Printer Bug + Account Lock
|
2021-01-29 22:10:22 +01:00 |
|
Swissky
|
075721fa9b
|
Merge pull request #331 from PinkDev1/patch-2
Added EoP - $PATH Interception
|
2021-01-28 22:12:51 +01:00 |
|
PinkDev1
|
93769768e2
|
Added EoP - $PATH Interception
|
2021-01-28 19:45:54 +00:00 |
|
Swissky
|
ec856fec21
|
Merge pull request #330 from JLLeitschuh/patch-2
Add XXE via DTD file
|
2021-01-25 18:02:38 +01:00 |
|
Jonathan Leitschuh
|
92667a12a4
|
Add XXE via DTD file
|
2021-01-25 11:50:47 -05:00 |
|
Swissky
|
4c7dd435a6
|
Merge pull request #329 from PinkDev1/patch-1
API Key Leaks: Added commands for testing Mapbox API Tokens
|
2021-01-25 10:38:58 +01:00 |
|
PinkDev1
|
88aa7c9789
|
Added commands for testing Mapbox API Tokens
|
2021-01-25 04:34:40 +00:00 |
|
Swissky
|
2ac947e46d
|
Merge pull request #327 from ayomawdb/patch-2
Add PostgreSQL Check if Current User is Supperuser
|
2021-01-24 18:44:12 +01:00 |
|
Swissky
|
4e17d6c2b3
|
Update PostgreSQL Injection.md
|
2021-01-24 18:43:58 +01:00 |
|
Swissky
|
cd6f5493b3
|
Update PostgreSQL Injection.md
|
2021-01-24 18:43:28 +01:00 |
|
Ayoma Wijethunga
|
4b8dab523e
|
Add PostgreSQL Check if Current User is Supperuser
|
2021-01-24 23:09:52 +05:30 |
|
Swissky
|
daebeeadd2
|
Merge pull request #326 from ayomawdb/patch-1
Add Kubernetes Pentest Methodology Part 3
|
2021-01-20 11:01:42 +01:00 |
|
Ayoma Wijethunga
|
b04579aa30
|
Add Kubernetes Pentest Methodology Part 3
$subject and minor correction of a file path
|
2021-01-20 09:07:23 +05:30 |
|
Swissky
|
0675573d93
|
Merge pull request #325 from u0pattern/u0pattern-patch-1
SSTI Payload in Jinja2 - Arbitrary file read
|
2021-01-18 10:08:47 +01:00 |
|
ムハンマド
|
89429f9c4f
|
SSTI Payload in Jinja2 - Arbitrary file read
|
2021-01-18 11:48:38 +03:00 |
|
Swissky
|
d4d2ba45c2
|
Merge pull request #323 from lanjelot/protocol-smuggling
Add PortSwigger http-desync reborn article
|
2021-01-16 19:04:16 +01:00 |
|
lanjelot
|
c5d8f3fc4f
|
Add PortSwigger http-desync reborn article
|
2021-01-17 04:23:38 +11:00 |
|
Swissky
|
7b943d46bc
|
Merge pull request #322 from lapolis/patch-1
Added closing bracket in unicode full width bypass
|
2021-01-15 17:42:13 +01:00 |
|
lapolis_aka_blu
|
6f758ba6c0
|
Added closing bracket in unicode full width bypass
Yeah I know it is logic to use it if you really need the closing tag. But having both brackets in your repo makes it quicker to copy paste :D
|
2021-01-15 16:38:51 +00:00 |
|
Swissky
|
01aadf3a44
|
Alternate Data Stream
|
2021-01-13 10:22:59 +01:00 |
|
Swissky
|
836861c86e
|
Merge pull request #320 from lanjelot/cloudsplaining
New cloudsplaining tool to AWS Pentest page
|
2021-01-12 13:42:36 +01:00 |
|
Swissky
|
964f2cde35
|
Merge pull request #319 from lanjelot/insecure-scm-cleanup
Cleaned up Insecure SCM page and added new Yar tool
|
2021-01-12 13:36:38 +01:00 |
|
lanjelot
|
5cfa93f98b
|
Add new cloudsplaining tool to AWS Pentest page
|
2021-01-12 22:59:37 +11:00 |
|
lanjelot
|
4473764c4d
|
Fix ToC
|
2021-01-12 22:45:12 +11:00 |
|
lanjelot
|
8c97cec6d8
|
Clean up Insecure SCM page and add new tool yar
|
2021-01-12 22:39:37 +11:00 |
|
Swissky
|
3a6ac550b8
|
DSRM Admin
|
2021-01-08 23:41:50 +01:00 |
|
Swissky
|
dd80fb899c
|
Merge pull request #315 from timgates42/bugfix_typo_account
docs: fix simple typo, accound -> account
|
2020-12-22 23:53:27 +01:00 |
|
Tim Gates
|
7846225bfd
|
docs: fix simple typo, accound -> account
There is a small typo in Methodology and Resources/Active Directory Attack.md.
Should read `account` rather than `accound`.
|
2020-12-23 09:16:40 +11:00 |
|
Swissky
|
609c38bde5
|
Merge pull request #314 from ahboon/HTTP-Parameter-Pollution
Added Golang param information
|
2020-12-22 20:02:56 +01:00 |
|
Cher Boon
|
70d8db7de4
|
Updated to include modules used for golang
|
2020-12-23 01:30:23 +08:00 |
|
Cher Boon
|
a6727e8305
|
Added Golang information
|
2020-12-23 01:28:32 +08:00 |
|
Swissky
|
0929d5596c
|
Merge pull request #313 from ahboon/HTTP-Parameter-Pollution
Created HTTP Parameter Pollution
|
2020-12-22 11:27:07 +01:00 |
|
Cher Boon
|
20da830ac1
|
Create README.md
|
2020-12-22 17:49:45 +08:00 |
|
Swissky
|
16b207eb0b
|
LAPS Password
|
2020-12-20 21:45:41 +01:00 |
|
Swissky
|
67752de6e9
|
Bronze Bit Attack
|
2020-12-18 22:38:30 +01:00 |
|