Articles

    Compact view
  • July 5, 2021
    Windows Hardening - Disabling the Print Spooler

    Windows Print Spooler is a service with many vulnerabilities. In this we will see 3 methods to disable this service.
    July 5, 2021 Windows Hardening - Disabling the Print Spooler
  • June 28, 2021
    Analysis of the June 2021 data dump containing 700 million Linkedin accounts

    On June 22, 2021, an aggregate of data concerning 700 million LinkedIn accounts was offered for sale on a forum. We will analyze its content in detail.
    June 28, 2021 Analysis of the June 2021 data dump containing 700 million Linkedin accounts
  • June 16, 2021
    IPL types and modes for IBM AS/400

    IBM mainframes such as the IBM AS/400 use an Initial Program Load (IPL) at machine startup. We will see what are the different IPL of the AS/400 in this article.
    June 16, 2021 IPL types and modes for IBM AS/400
  • June 10, 2021
    Restoring and IBM AS/400 (9401-150)

    IBM AS/400s are legendary mainframes still present in many companies. In this article I detail how I completely restored an AS/400 9401-150 server.
    June 10, 2021 Restoring and IBM AS/400 (9401-150)
  • May 26, 2021
    Windows Reverse Shells Cheatsheet

    Windows Reverse Shells : 3 payloads in 1 different languages !
    May 26, 2021 Windows Reverse Shells Cheatsheet
  • May 24, 2021
    SSH Port forwarding

    There are different types of port forwarding with an SSH connection. Remote, local, dynamic port forwarding, how does it work, how to choose them? This is what we will see in this article!
    May 24, 2021 SSH Port forwarding
  • May 20, 2021
    Exploiting Windows Group Policy Preferences

    Group Policy Preferences (GPP) can be very dangerous if they are used to store passwords. To quickly find these in a pentest, we made a tool with Shutdown that crawls and extracts these passwords from Windows shares !
    May 20, 2021 Exploiting Windows Group Policy Preferences
  • May 17, 2021
    UNIX Reverse Shells Cheatsheet

    UNIX Reverse Shells : 42 payloads in 17 different languages !
    May 17, 2021 UNIX Reverse Shells Cheatsheet
  • April 20, 2021
    TTYs and where to find them

    TTYs and where to find them
    April 20, 2021 TTYs and where to find them
  • March 24, 2021
    Python format string vulnerabilities

    Python format strings can be very useful but they can be prone to vulnerabilities when misused.
    March 24, 2021 Python format string vulnerabilities
  • March 10, 2021
    Exploiting Micro Focus Enterprise Server Administration (ESA) 1.09.56 to root the host

    In this article I will demonstrate how to exploit Micro Focus Enterprise Server Administration (ESA) 1.09.56 to create a root account on the host server
    March 10, 2021 Exploiting Micro Focus Enterprise Server Administration (ESA) 1.09.56 to root the host
  • February 17, 2021
    Exploiting CVE-2020-14144 - GiTea Authenticated Remote Code Execution using git hooks

    The git hook feature in Gitea 1.1.0 through 1.12.5 might allow for authenticated remote code execution in customer environments where the documentation was not understood.
    February 17, 2021 Exploiting CVE-2020-14144 - GiTea Authenticated Remote Code Execution using git hooks
  • December 11, 2020
    Reverse Shells 101

    This article explains the necessary components to create a reverse shell.
    December 11, 2020 Reverse Shells 101
  • November 12, 2020
    Constructing a semi-interactive reverse shell with curl

    This article details how I created a curl-based reverse shell, from scratch.
    November 12, 2020 Constructing a semi-interactive reverse shell with curl
  • November 11, 2020
    Constructing a semi-interactive reverse shell with wget

    This article details how I created a wget-based reverse shell, from scratch.
    November 11, 2020 Constructing a semi-interactive reverse shell with wget