Author | Lightnews

GitHub - eversinc33/NetRunner: A .NET assembly tracer using Harmony for runtime method interception.

r1cksec @r1cksec.bsky.social · 1d

A .NET assembly tracer using Harmony for runtime method interception🕵️‍♂️

github.com/eversinc33/N...

#infosec #cybersecurity #pentest #redteam #windows

A .NET assembly tracer using Harmony for runtime method interception. - eversinc33/NetRunner

Practical Known Plaintext Attack Against ZIP Files

r1cksec @r1cksec.bsky.social · 3d

Great post about how to crack password protected zip archives using known plaintext attack🕵️‍♂️

badoption.eu/blog/2025/04...

#infosec #cybersecurity #pentest #redteam #zip

Sometimes in a network far away, which is most of the time not yours, you might encounter ZIP files protected with passwords. For example, for source code archives, there is quite a good chance to dec...

badoption.eu

1 5

r1cksec @r1cksec.bsky.social · 6d

Windows protocol library, including SMB and RPC implementations, among others🕵️‍♂️

github.com/trustedsec/T...

#infosec #cybersecurity #pentest #redteam #windows #opensource

GitHub - trustedsec/Titanis: Windows protocol library, including SMB and RPC implementations, among others.

Windows protocol library, including SMB and RPC implementations, among others. - trustedsec/Titanis

GitHub - 0xagil/Clickfix-Email

4

r1cksec @r1cksec.bsky.social · 7d

This repository contains a proof of concept demonstrating the ClickFix attack technique via email - a CSS-based social engineering attack where visible text differs from the actual copied content🕵️‍♂️

github.com/0xagil/Click...

#infosec #cybersecurity #redteam #pentest #phishing #email #opensource

Contribute to 0xagil/Clickfix-Email development by creating an account on GitHub.

GitHub - 0xflux/Wyrm: The dragon in the dark. A red team post exploitation framework for testing security controls during red team assessments.

4

r1cksec @r1cksec.bsky.social · 8d

The dragon in the dark. A red team post exploitation framework for testing security controls during red team assessments🕵️‍♂️

github.com/0xflux/Wyrm

#infosec #cybersecurity #pentest #redteam #c2 #opensource

The dragon in the dark. A red team post exploitation framework for testing security controls during red team assessments. - GitHub - 0xflux/Wyrm: The dragon in the dark. A red team post exploitat...

GitHub - Esonhugh/ysoysoserial.net: a golang based dotnet ysoserial poc generation tool. Operated by cursor and metasploit

Reposted by r1cksec

malmoeb.bsky.social @malmoeb.bsky.social · 11d

Today I learned: SeManageVolumePrivilege

While reading the HTB write-up for Certificate, I learned about SeManageVolumePrivilege. [1]

A video by Grzegorz Tworek goes into great detail about how to abuse SeManageVolumePrivilege.[2]

1 2

r1cksec @r1cksec.bsky.social · 9d

A golang based dotnet ysoserial poc generation tool. Operated by cursor and metasploit🕵️‍♂️

github.com/Esonhugh/yso...

#infosec #cybersecurity #pentest #redteam #opensource

a golang based dotnet ysoserial poc generation tool. Operated by cursor and metasploit - Esonhugh/ysoysoserial.net

XWizard: From XML to ShellExec Using Wizardry - Hackcraft

1 6

r1cksec @r1cksec.bsky.social · 10d

How attackers can craft XML files to achieve command exeuction in the context of the XWizard ecosystem🕵️‍♂️

www.hackcraft.gr/2025/10/xwiz...

#infosec #cybersecurity #pentest #redteam

This article highlights unexplored attack surfaces in the XWizard ecosystem and aims to inspire research to discover additional exploitation primitives.

www.hackcraft.gr

r1cksec @r1cksec.bsky.social · 12d

This site can be used to analyze email headers🕵️‍♂️

mha.azurewebsites.net/pages/mha.html

#infosec #cybersecurity #pentest #redteam #phishing #email

Message Header Analyzer

mha.azurewebsites.net

GitHub - Shac0x/Wonka: Wonka is a sweet Windows tool that extracts Kerberos tickets from the Local Security Authority (LSA) cache. Like finding a ticket, but for security research and penetration test...

r1cksec @r1cksec.bsky.social · 13d

A Windows tool that extracts Kerberos tickets from the Local Security Authority (LSA) cache🕵️‍♂️

github.com/Shac0x/Wonka

#infosec #cybersecurity #pentest #redteam #kerberos

Wonka is a sweet Windows tool that extracts Kerberos tickets from the Local Security Authority (LSA) cache. Like finding a ticket, but for security research and penetration testing! 🎫 - Shac0x/Wonka

TALOS-2025-2243 || Cisco Talos Intelligence Group - Comprehensive Threat Intelligence

r1cksec @r1cksec.bsky.social · 14d

A specially crafted repository can lead to an arbitrary code execution in TruffleHog version 3.90.2🕵️‍♂️

talosintelligence.com/vulnerabilit...

#infosec #cybersecurity #pentest #redteam #git #opensource

talosintelligence.com

Revisiting Browser Cache Smuggling

r1cksec @r1cksec.bsky.social · 15d

How attackers can exploit browser-cache-smuggling in combination with COM hijacking🕵️‍♂️

medium.com/@danemeth90/...

#infosec #cybersecurity #pentest #redteam #phishing #windows

I recently came across an article detailing a campaign using browser cache smuggling and ClickFix to deliver malware to a system. I found…

medium.com

2 5

r1cksec @r1cksec.bsky.social · 18d

ClickForClickOnce - Generate configurable clickonce payloads🕵️‍♂️

github.com/whokilleddb/...

#infosec #cybersecurity #pentest #redteam #opensource

GitHub - whokilleddb/ClickForClickOnce: ClickForClickOnce - Generate configurable clickonce payloads

ClickForClickOnce - Generate configurable clickonce payloads - whokilleddb/ClickForClickOnce

GitHub - protectai/modelscan: Protection against Model Serialization Attacks

2 4

r1cksec @r1cksec.bsky.social · 21d

Protection against Model Serialization Attacks🕵️‍♂️

github.com/protectai/mo...

#infosec #cybersecurity #pentest #redteam #opensource #ai

Protection against Model Serialization Attacks. Contribute to protectai/modelscan development by creating an account on GitHub.

GitHub - Nomad0x7/sekken-enum: adws enumeration bof

r1cksec @r1cksec.bsky.social · 22d

A Beacon Object File (BOF) for Active Directory enumeration through Active Directory Web Services (ADWS) compatible with BOFHound🕵️‍♂️

github.com/Nomad0x7/sek...

#infosec #cybersecurity #pentest #redteam #windows #opensource

adws enumeration bof. Contribute to Nomad0x7/sekken-enum development by creating an account on GitHub.

GitHub - nyxgeek/onedrive_user_enum: onedrive user enumeration - pentest tool to enumerate valid o365 users

r1cksec @r1cksec.bsky.social · 23d

Time-based user enum via Basic Auth in Azure against Autodiscover🕵️‍♂️

github.com/nyxgeek/oned...

#infosec #cybersecurity #pentest #redteam #osint

onedrive user enumeration - pentest tool to enumerate valid o365 users - nyxgeek/onedrive_user_enum

When Azure Relay Becomes a Red Teamer’s Highway – Hackers Hermanos

r1cksec @r1cksec.bsky.social · 26d

A post about how Azure Relay Bridge (azbridge) can be abused by red teams to tunnel C2 traffic through Microsofts Azure Service Bus infrastructure🕵️‍♂️

hackerhermanos.com/azbridge

#infosec #cybersecurity #pentest #redteam #cloud #micorosoft

hackerhermanos.com

1 1

r1cksec @r1cksec.bsky.social · 28d

On r1cksec.de it is possible to search for URLs based on my cheatsheets🕵️‍♂️

#infosec #cybersecurity #redteam #pentest #malware #threatintel #dfir

GitHub - r1cksec/cheatsheets: Collection of knowledge about information security

r1cksec @r1cksec.bsky.social · Oct 6

New cheatsheets pushed🕵️‍♂️

github.com/r1cksec/chea...

#infosec #cybersecurity #pentest #redteam #cloud #malware #dfir

Collection of knowledge about information security - r1cksec/cheatsheets

Living off the land: stealing NetNTLM hashes

1 2

r1cksec @r1cksec.bsky.social · Oct 4

A collection of different methods of stealing NetNTLM hashes🕵️‍♂️

www.securify.nl/blog/living-...

#infosec #cybersecurity #pentest #redteam #windows #activedirectory

Securify provides reality checks to lower security risks and build up resilience against threats. Agile Security, Pentesting (scenario-based) and Red Teaming.

www.securify.nl

GitHub - toneillcodes/EntraID-API-Library: A collection of useful API endpoints for security operators and administrators

r1cksec @r1cksec.bsky.social · Oct 3

A collection of useful API endpoints for security operators and administrators🕵️‍♂️

github.com/toneillcodes...

#infosec #cybersecurity #pentest #redteam #cloud

A collection of useful API endpoints for security operators and administrators - toneillcodes/EntraID-API-Library

GitHub - KittenBusters/CharmingKitten: Exposing CharmingKitten's malicious activity for IRGC-IO devision Counterintelligence devision (1500)

r1cksec @r1cksec.bsky.social · Oct 2

Exposing CharmingKitten's malicious activity for IRGC-IO devision Counterintelligence devision (1500)🕵️‍♂️

github.com/KittenBuster...

#infosec #cybersecurity #threatintel #malware #dfir

Exposing CharmingKitten's malicious activity for IRGC-IO devision Counterintelligence devision (1500) - KittenBusters/CharmingKitten

GitHub - TwoSevenOneT/WSASS: This is the tool to dump the LSASS process on modern Windows 11

r1cksec @r1cksec.bsky.social · Oct 1

This is the tool to dump the LSASS process on modern Windows 11🕵️‍♂️

github.com/TwoSevenOneT...

#infosec #cybersecurity #pentest #redteam #windows #opensource

This is the tool to dump the LSASS process on modern Windows 11 - TwoSevenOneT/WSASS

GitHub - Maldev-Academy/MaldevAcademyLdr.2: RunPE implementation with multiple evasive techniques

r1cksec @r1cksec.bsky.social · Sep 30

RunPE implementation with multiple evasive techniques🕵️‍♂️

github.com/Maldev-Acade...

#infosec #cybersecurity #pentest #redteam #windows #opensource

RunPE implementation with multiple evasive techniques - Maldev-Academy/MaldevAcademyLdr.2