jabes
@jbz0.bsky.social
I'm creating a port scanner that uses GoRoutines from Golang to be fast, link: github.com/jbzq/Gosniffer
GitHub - jbzq/Gosniffer: Web Crawler written in golang
Web Crawler written in golang. Contribute to jbzq/Gosniffer development by creating an account on GitHub.
github.com
May 25, 2025 at 2:31 PM
I'm creating a port scanner that uses GoRoutines from Golang to be fast, link: github.com/jbzq/Gosniffer
Reposted by jabes
Really great blog post about bypassing BitLocker using "PXE soft reboot" (even if PXE boot is disabled in the BIOS).
"Windows BitLocker -- Screwed without a Screwdriver"
👉 neodyme.io/en/blog/bitl...
👉 media.ccc.de/v/38c3-windo...
"Windows BitLocker -- Screwed without a Screwdriver"
👉 neodyme.io/en/blog/bitl...
👉 media.ccc.de/v/38c3-windo...
Windows BitLocker -- Screwed without a Screwdriver
Breaking up-to-date Windows 11 BitLocker encryption -- on-device but software-only
neodyme.io
January 20, 2025 at 10:03 AM
Really great blog post about bypassing BitLocker using "PXE soft reboot" (even if PXE boot is disabled in the BIOS).
"Windows BitLocker -- Screwed without a Screwdriver"
👉 neodyme.io/en/blog/bitl...
👉 media.ccc.de/v/38c3-windo...
"Windows BitLocker -- Screwed without a Screwdriver"
👉 neodyme.io/en/blog/bitl...
👉 media.ccc.de/v/38c3-windo...
Reposted by jabes
New blog post on the abuse of the IDispatch COM interface to get unexpected objects loaded into a process. Demoed by using this to get arbitrary code execution in a PPL process. googleprojectzero.blogspot.com/2025/01/wind...
Windows Bug Class: Accessing Trapped COM Objects with IDispatch
Posted by James Forshaw, Google Project Zero Object orientated remoting technologies such as DCOM and .NET Remoting make it very easy ...
googleprojectzero.blogspot.com
January 30, 2025 at 6:37 PM
New blog post on the abuse of the IDispatch COM interface to get unexpected objects loaded into a process. Demoed by using this to get arbitrary code execution in a PPL process. googleprojectzero.blogspot.com/2025/01/wind...
Reposted by jabes
Meta Confirms Zero-Click WhatsApp Spyware Attack Targeting 90 Journalists, Activists
Meta Confirms Zero-Click WhatsApp Spyware Attack Targeting 90 Journalists, Activists
thehackernews.com
February 1, 2025 at 6:06 AM
Meta Confirms Zero-Click WhatsApp Spyware Attack Targeting 90 Journalists, Activists
Reposted by jabes
In case if you wonder what broke #ProcessHollowing on Windows 11 24H2, I have something for you: hshrzd.wordpress.com/2025/01/27/p...
Process Hollowing on Windows 11 24H2
Process Hollowing (a.k.a. RunPE) is probably the oldest, and the most popular process impersonation technique (it allows to run a malicious executable under the cover of a benign process). It is us…
hshrzd.wordpress.com
January 26, 2025 at 11:55 PM
In case if you wonder what broke #ProcessHollowing on Windows 11 24H2, I have something for you: hshrzd.wordpress.com/2025/01/27/p...
Reposted by jabes
I'm glad to release the tool I have been working hard on the last month: #KrbRelayEx
A Kerberos relay & forwarder for MiTM attacks!
>Relays Kerberos AP-REQ tickets
>Manages multiple SMB consoles
>Works on Win& Linux with .NET 8.0
>...
GitHub: github.com/decoder-it/K...
A Kerberos relay & forwarder for MiTM attacks!
>Relays Kerberos AP-REQ tickets
>Manages multiple SMB consoles
>Works on Win& Linux with .NET 8.0
>...
GitHub: github.com/decoder-it/K...
November 25, 2024 at 5:31 PM
I'm glad to release the tool I have been working hard on the last month: #KrbRelayEx
A Kerberos relay & forwarder for MiTM attacks!
>Relays Kerberos AP-REQ tickets
>Manages multiple SMB consoles
>Works on Win& Linux with .NET 8.0
>...
GitHub: github.com/decoder-it/K...
A Kerberos relay & forwarder for MiTM attacks!
>Relays Kerberos AP-REQ tickets
>Manages multiple SMB consoles
>Works on Win& Linux with .NET 8.0
>...
GitHub: github.com/decoder-it/K...
This is a tool I created for pentest, it boils down to an http/https incerptator, see the documentation on github: github.com/yhk0/xgofind
#pentest #bugbounty #windows #infosec #cybersecurity #redteam
#pentest #bugbounty #windows #infosec #cybersecurity #redteam
GitHub - yhk0/xgofind: The xgofind project is a tool developed in Go to intercept and monitor HTTP and HTTPS traffic between a client and a server.
The xgofind project is a tool developed in Go to intercept and monitor HTTP and HTTPS traffic between a client and a server. - yhk0/xgofind
github.com
January 26, 2025 at 5:37 PM
This is a tool I created for pentest, it boils down to an http/https incerptator, see the documentation on github: github.com/yhk0/xgofind
#pentest #bugbounty #windows #infosec #cybersecurity #redteam
#pentest #bugbounty #windows #infosec #cybersecurity #redteam
I'm making a pentest and bug bounty tool, contributions are welcome > github.com/yhk0/exfilpro
#infosec #cybersecurity #redteam #pentest #windows
#infosec #cybersecurity #redteam #pentest #windows
January 25, 2025 at 10:11 PM
I'm making a pentest and bug bounty tool, contributions are welcome > github.com/yhk0/exfilpro
#infosec #cybersecurity #redteam #pentest #windows
#infosec #cybersecurity #redteam #pentest #windows