Web安全
web3-decoder:Burp Suite扩展,有助于分析涉及web3智能合约操作的情况
https://github.com/nccgroup/web3-decoder
内网渗透
查找没有用户登陆的空系统
https://fortynorthsecurity.com/blog/finding-empty-systems/
https://github.com/FortyNorthSecurity/EDD/blob/master/EDD/Functions/FindEmptySystem.cs
AD CS补丁对攻击的影响和攻击细节
https://posts.specterops.io/certificates-and-pwnage-and-patches-oh-my-8ae0f4304c1d
终端对抗
在Linux系统中创建隐藏分区
https://research.kudelskisecurity.com/2022/11/10/introducing-shufflecake-plausible-deniability-for-multiple-hidden-filesystems-on-linux/
使用Rust和Ptrace调用系统Syscall
https://itnext.io/using-rust-and-ptrace-to-invoke-syscalls-262dc585fcd3
滥用Visual Studio Code配置文件实现隐蔽持久化
https://medium.com/@bobvanderstaak/getting-stealthy-persistence-using-visual-studio-code-67e731bea34a
演示视频:可执行文件不落地加载到内存
https://www.youtube.com/watch?v=BO0bVFZJmpg
通过Vectored Syscall绕过AV/EDR Hooks--POC
https://www.cyberwarfare.live/blog/vectored-syscall-poc
AMSI-ETW-Patch:使用单字节对AMSI和ETW进行patch
https://github.com/Mr-Un1k0d3r/AMSI-ETW-Patch
Brute Ratel C4 Badger分析实战与检测
https://mp.weixin.qq.com/s/Nnag6DSf_wx2YrnTXEwNug
SharpGmailC2:使用Gmail充当C2服务器,使用smtp协议渗出数据,使用imap协议读取命令
https://github.com/reveng007/SharpGmailC2
CInject:Windows内核中执行dll注入的项目
https://github.com/ccdescipline/CInject
Dumping Lsass Process Memory In Different Ways
https://tttang.com/archive/1810/
漏洞相关
CVE-2022-35803:Windows通用日志文件系统内核漏洞利用
https://blog.northseapwn.top/2022/11/11/Windows-Kernel-Exploit-CVE-2022-35803-in-Common-Log-File-System/index.html
CVE-2022-41040、CVE-2022-41082:Exchange漏洞ProxyNotShell PoC
https://github.com/testanull/ProxyNotShell-PoC
drv-vuln-scanner:win64漏洞驱动扫描工具,把驱动扫描到drv/. 查找可以被利用的import
https://github.com/riesha/drv-vuln-scanner
通过vm2 Sandbox逃逸在Spotify的后台执行远程代码
https://www.oxeye.io/blog/remote-code-execution-in-spotifys-backstage
WeightBufs:IOS15内核任意读写漏洞利用链
https://github.com/0x36/weightBufs/
云安全
Azure Active Directory租户权限枚举和高特权主体识别自动化
https://csandker.io/2022/10/19/Untangling-Azure-Permissions.html
https://csandker.io//2022/11/10/Untangling-Azure-II-Privileged-Access.html
其他
BSides Lisbon 2022-Windows Kernel Rootkits for Red Teams
https://github.com/0x4ndr3/Presentations/blob/main/BSides%20Lisbon%202022/slides.pdf
往期推荐
M01N Team公众号
聚焦高级攻防对抗热点技术
绿盟科技蓝军技术研究战队
官方攻防交流群
网络安全一手资讯
攻防技术答疑解惑
扫码加好友即可拉群