Security Memo
Search (Ctrl+K)
Search
Search
Dark mode
Light mode
Home
❯
tags
❯
Tag: sec
Tag: sec
142 items with this tag.
Mar 12, 2024
pivot to a Windows host
sec/pivoting
ttp/09-lateral-movement
Mar 12, 2024
ip
sec/linux/cmd
sec/tool
Mar 12, 2024
ss
sec/linux/cmd
sec/tool
Jan 14, 2024
compliance
sec
concept
Jan 09, 2024
GitHub Actions
stub
sec/tool
Jan 08, 2024
ADSearch
sec/tool
Jan 08, 2024
AS-REP roasting
sec/attack
ad
ttp/07-credential-access
Jan 08, 2024
Bash
sec/linux/cmd
sec/tool
Jan 08, 2024
Burp Suite
sec/tool
Jan 08, 2024
CSRF
ttp/07-credential-access
sec/clientside
Jan 08, 2024
Cobalt Strike UAC bypass
sec/attack
sec/uacbypass
ttp/05-privilege-escalation
sec/windows
Jan 08, 2024
Cobalt Strike beacon command list
sec/tool
ttp/03-execution
ttp/11-c2
ttp/08-discovery
ttp/07-credential-access
ttp/09-lateral-movement
sec/pivoting
Jan 08, 2024
Cobalt Strike elevated persistence via WMI events
ttp/04-persistence
sec/windows
Jan 08, 2024
Cobalt Strike elevated persistence via service creation
ttp/04-persistence
sec/windows
sec/system
Jan 08, 2024
Cobalt Strike persistence through COM hijacking
sec/windows
ttp/04-persistence
Jan 08, 2024
Cobalt Strike persistence through registry autorun
sec/windows
ttp/04-persistence
Jan 08, 2024
Cobalt Strike persistence via startup folder
sec/windows
ttp/04-persistence
Jan 08, 2024
Cobalt Strike persistence via task scheduler
sec/windows
ttp/04-persistence
Jan 08, 2024
Cobalt Strike
sec/tool
ttp/11-c2
Jan 08, 2024
Distributed Component Object Model
ad
sec/windows
concept
protocol
Jan 08, 2024
DCSync
sec/domainadmin
ttp/07-credential-access
Jan 08, 2024
FTP non-interactive file upload
sec/fileupload
how-to
sec/linux
Jan 08, 2024
GPP cPassword attack
ttp/05-privilege-escalation
ttp/07-credential-access
ad
sec/domainuser
Jan 08, 2024
HTA reverse shell via msfvenom
sec/attack
sec/revshell
ttp/02-initial-access
Jan 08, 2024
HTML application attack
sec/attack
ttp/02-initial-access
Jan 08, 2024
HTTP server oneliners
how-to
sec/tool
Jan 08, 2024
HTTP tunneling through deep packet inspection
sec/pivoting
sec/windows
status/to-improve
how-to
Jan 08, 2024
IPv4-to-IPv4 proxy via netsh
sec/pivoting
sec/windows
how-to
Jan 08, 2024
IPv6 DNS spoofing
sec/attack
ad
ttp/09-lateral-movement
ttp/07-credential-access
sec/windows
Jan 08, 2024
John The Ripper
sec/tool
Jan 08, 2024
JuicyPotato
sec/tool
sec/exploit
sec/windows
ttp/05-privilege-escalation
Jan 08, 2024
Kerberoasting
ad
sec/attack
ttp/05-privilege-escalation
ttp/09-lateral-movement
Jan 08, 2024
Metasploit
sec/tool
ttp/11-c2
Jan 08, 2024
Meterpreter
sec/tool
ttp/11-c2
Jan 08, 2024
Microsoft Office macro attack
sec/attack
ttp/02-initial-access
sec/clientside
sec/windows
Jan 08, 2024
Mimikatz
sec/tool
ttp/07-credential-access
ttp/09-lateral-movement
Jan 08, 2024
NOP slide
concept
sec/pwn
Jan 08, 2024
Object Linking and Embedding
sec/attack
sec/windows
ttp/09-lateral-movement
ad
sec/clientside
Jan 08, 2024
PHP wrapper
sec/rce
ttp/02-initial-access
Jan 08, 2024
PowerShell Empire
sec/tool
ttp/11-c2
Jan 08, 2024
PowerShell
software
sec/fileupload
sec/filedownload
Jan 08, 2024
PowerUpSQL
how-to
ttp/08-discovery
sec/tool
Jan 08, 2024
PowerView
ttp/08-discovery
sec/tool
resources
Jan 08, 2024
PrintNightmare
ad
sec/windows
ttp/05-privilege-escalation
Jan 08, 2024
PsExec
ad
sec/windows
ttp/09-lateral-movement
sec/smb
sec/pivoting
sec/localadmin
Jan 08, 2024
RCE via log file poisoning
sec/attack
sec/rce
ttp/02-initial-access
sec/windows
sec/linux
Jan 08, 2024
RDP hijacking
sec/attack
ttp/09-lateral-movement
ad
sec/windows
sec/localadmin
Jan 08, 2024
Responder
sec/tool
ttp/07-credential-access
Jan 08, 2024
Rubeus
sec/tool
ttp/09-lateral-movement
Jan 08, 2024
S4U2Self abuse
ttp/09-lateral-movement
ad
sec/windows
Jan 08, 2024
SMB enumeration
sec/smb
ttp/08-discovery
Jan 08, 2024
SMTP Enumeration
ttp/08-discovery
sec/userenum
Jan 08, 2024
SQL injection
status/to-atomize
sec/attack
ttp/02-initial-access
ttp/07-credential-access
Jan 08, 2024
SQLRecon
ttp/08-discovery
sec/tool
Jan 08, 2024
SSH local port forwarding
sec/pivoting
how-to
Jan 08, 2024
SSH reverse dynamic proxy
sec/pivoting
how-to
Jan 08, 2024
SSH reverse tunnel
sec/pivoting
how-to
Jan 08, 2024
SharpView
sec/tool
ttp/08-discovery
ad
Jan 08, 2024
Terraform
sec/tool
Jan 08, 2024
UAC Bypass via fodhelper.exe
sec/uacbypass
ttp/05-privilege-escalation
sec/windows
Jan 08, 2024
UAC bypass
sec/uacbypass
ttp/05-privilege-escalation
sec/windows
Jan 08, 2024
URL file attack
sec/attack
ad
sec/windows
sec/clientside
ttp/02-initial-access
Jan 08, 2024
WMI
sec/windows
concept
Jan 08, 2024
Windows Remote Management (WinRM)
sec/windows
ttp/09-lateral-movement
Jan 08, 2024
Windows enumeration
ttp/08-discovery
sec/windows
Jan 08, 2024
Windows local service enumeration
sec/windows
ttp/08-discovery
Jan 08, 2024
Wireshark
sec/tool
Jan 08, 2024
XSS session hijacking
sec/attack
sec/clientside
ttp/02-initial-access
Jan 08, 2024
ZeroLogon
sec/attack
ad
ttp/05-privilege-escalation
Jan 08, 2024
cewl
sec/tool
Jan 08, 2024
client fingerprinting
sec/clientside
ttp/00-reconnaissance
Jan 08, 2024
common Windows exploits
sec/exploit
sec/tool
ttp/05-privilege-escalation
Jan 08, 2024
crib-dragging
sec/attack
ctf/crypto
concept
Jan 08, 2024
crowbar
sec/tool
ttp/02-initial-access
Jan 08, 2024
crunch
sec/tool
Jan 08, 2024
custom PowerShell AD searcher
how-to
sec/tool
Jan 08, 2024
dump and crack domain cached credentials
sec/domainadmin
ttp/07-credential-access
ad
sec/windows
Jan 08, 2024
exe2hex
sec/fileupload
sec/tool
ttp/03-execution
Jan 08, 2024
execute shellcode via buffer overflow on x86
sec/attack
sec/pwn
how-to
Jan 08, 2024
exploiting constrained delegation via Mimikatz
sec/attack
ad
sec/localadmin
ttp/09-lateral-movement
Jan 08, 2024
file download via TFTP
sec/filedownload
how-to
Jan 08, 2024
file download
sec/filedownload
how-to
Jan 08, 2024
file upload via VBScript
sec/fileupload
how-to
Jan 08, 2024
forcing NTLM authentication
ttp/02-initial-access
ttp/09-lateral-movement
sec/clientside
Jan 08, 2024
format string exploit
sec/attack
sec/pwn
concept
Jan 08, 2024
gdb
sec/tool
Jan 08, 2024
golden ticket
ttp/04-persistence
ad
sec/windows
sec/domainadmin
Jan 08, 2024
hashcat
sec/tool
ttp/07-credential-access
Jan 08, 2024
hydra
sec/tool
ttp/02-initial-access
Jan 08, 2024
impacket
sec/tool
Jan 08, 2024
kwprocessor
sec/tool
Jan 08, 2024
lateral movement via DCOM
ttp/09-lateral-movement
sec/windows
ad
Jan 08, 2024
local file inclusion
sec/attack
ctf/web
ttp/02-initial-access
ttp/07-credential-access
Jan 08, 2024
mail server attacks
sec/attack
ttp/02-initial-access
Jan 08, 2024
man-in-the-middle
concept
sec/attack
Jan 08, 2024
man
sec/linux/cmd
software
Jan 08, 2024
massscan
sec/tool
ttp/08-discovery
Jan 08, 2024
medusa
sec/tool
ttp/07-credential-access
Jan 08, 2024
mona.py
sec/tool
how-to
Jan 08, 2024
msfvenom
sec/tool
Jan 08, 2024
multi-time pad key recovery attack
sec/attack
ctf/crypto
concept
Jan 08, 2024
netcat
sec/tool
Jan 08, 2024
netsh
sec/tool
sec/windows/cmd
Jan 08, 2024
nmap
sec/tool
ttp/08-discovery
Jan 08, 2024
objdump
sec/tool
Jan 08, 2024
obtain golden ticket with mimikatz
sec/domainadmin
ttp/04-persistence
Jan 08, 2024
overpass-the-hash
ad
sec/attack
ttp/09-lateral-movement
sec/windows
Jan 08, 2024
pass-the-hash
ad
sec/attack
ttp/09-lateral-movement
sec/pivoting
sec/windows
Jan 08, 2024
pass-the-key
ad
sec/attack
ttp/09-lateral-movement
sec/windows
Jan 08, 2024
pass-the-ticket
ad
sec/attack
ttp/09-lateral-movement
sec/windows
Jan 08, 2024
persistence via dcsync domain admin hash dump
sec/domainadmin
ttp/04-persistence
ttp/07-credential-access
Jan 08, 2024
plink.exe
sec/tool
sec/pivoting
Jan 08, 2024
port forwarding via rinetd on Linux
sec/tool
Jan 08, 2024
print spool exploit
sec/attack
sec/windows
ttp/09-lateral-movement
ttp/05-privilege-escalation
ad
sec/domainuser
Jan 08, 2024
process injection
sec/attack
ttp/09-lateral-movement
Jan 08, 2024
radare2
sec/tool
Jan 08, 2024
redirect execution via buffer overflow on x86
sec/attack
sec/pwn
how-to
Jan 08, 2024
registry autorun via GPO
ttp/04-persistence
sec/windows
ad
sec/localadmin
Jan 08, 2024
remote MSI package installation via WMI
ad
sec/windows
ttp/09-lateral-movement
Jan 08, 2024
remote file inclusion
sec/attack
ctf/web
ttp/02-initial-access
Jan 08, 2024
remote process creation via WMI
ttp/09-lateral-movement
ad
sec/windows
sec/localadmin
Jan 08, 2024
remote scheduled task creation via WMI
ttp/09-lateral-movement
ad
sec/windows
sec/localadmin
Jan 08, 2024
remote scheduled task creation via schtask
ttp/09-lateral-movement
ad
sec/windows
sec/localadmin
Jan 08, 2024
remote service creation via WMI
ad
sec/windows
ttp/09-lateral-movement
sec/localadmin
Jan 08, 2024
remote service creation via sc.exe
ttp/09-lateral-movement
ad
sec/windows
sec/localadmin
Jan 08, 2024
remote template injection
sec/attack
ttp/02-initial-access
sec/clientside
Jan 08, 2024
resource-based constrained delegation
ttp/09-lateral-movement
ad
sec/windows
status/to-do
Jan 08, 2024
ret2csu
sec/attack
sec/pwn
concept
how-to
Jan 08, 2024
return-oriented programming
sec/attack
ctf/pwn
concept
Jan 08, 2024
rsmangler
sec/tool
Jan 08, 2024
runas.exe
sec/attack
sec/windows
sec/pivoting
ttp/09-lateral-movement
Jan 08, 2024
scheduled task credential
ttp/07-credential-access
ad
sec/windows
Jan 08, 2024
secretsdump
ad
sec/windows
ttp/07-credential-access
sec/tool
Jan 08, 2024
sed
sec/tool
Jan 08, 2024
shadow credentials attack
ttp/09-lateral-movement
ad
sec/windows
Jan 08, 2024
socat
sec/tool
sec/fileupload
sec/filedownload
sec/revshell
sec/bindshell
Jan 08, 2024
stack buffer overflow
sec/attack
concept
Jan 08, 2024
tcpdump
sec/tool
Jan 08, 2024
token impersonation
sec/attack
ttp/09-lateral-movement
ad
Jan 08, 2024
unquoted service path
sec/attack
sec/windows
ttp/05-privilege-escalation
Jan 08, 2024
weak service binary permissions
sec/attack
sec/windows
ttp/05-privilege-escalation
Jan 08, 2024
weak service permissions
sec/attack
sec/windows
ttp/05-privilege-escalation