Here’s my implementation of the “early cascade” process injection technique. This one has a stub that patches DllMain of non-standard DLLs before they’re initialized. BOF and PE.
github.com/v1stra/Early...
github.com/v1stra/Early...
GitHub - v1stra/EarlyCascadeLoader: an implementation of the "early cascade" process injection technique that neutralizes EDR DLL initialization routines
an implementation of the "early cascade" process injection technique that neutralizes EDR DLL initialization routines - v1stra/EarlyCascadeLoader
github.com
January 17, 2025 at 12:13 PM
Here’s my implementation of the “early cascade” process injection technique. This one has a stub that patches DllMain of non-standard DLLs before they’re initialized. BOF and PE.
github.com/v1stra/Early...
github.com/v1stra/Early...
Reposted by v1stra
TIL how easy it is to ask curl to dump TLS session keys to disk 🛠️
Simply set the environment variable `SSLKEYLOGFILE=/path/to/file` 😅 Note: it also works for Firefox and Chrome
Extremely useful when combined with Wireshark 👍
Simply set the environment variable `SSLKEYLOGFILE=/path/to/file` 😅 Note: it also works for Firefox and Chrome
Extremely useful when combined with Wireshark 👍
December 20, 2024 at 11:35 AM
TIL how easy it is to ask curl to dump TLS session keys to disk 🛠️
Simply set the environment variable `SSLKEYLOGFILE=/path/to/file` 😅 Note: it also works for Firefox and Chrome
Extremely useful when combined with Wireshark 👍
Simply set the environment variable `SSLKEYLOGFILE=/path/to/file` 😅 Note: it also works for Firefox and Chrome
Extremely useful when combined with Wireshark 👍
Reposted by v1stra
still, you have time friends, LEARN C
December 10, 2024 at 5:07 PM
still, you have time friends, LEARN C
Reposted by v1stra
I'm glad to release the tool I have been working hard on the last month: #KrbRelayEx
A Kerberos relay & forwarder for MiTM attacks!
>Relays Kerberos AP-REQ tickets
>Manages multiple SMB consoles
>Works on Win& Linux with .NET 8.0
>...
GitHub: github.com/decoder-it/K...
A Kerberos relay & forwarder for MiTM attacks!
>Relays Kerberos AP-REQ tickets
>Manages multiple SMB consoles
>Works on Win& Linux with .NET 8.0
>...
GitHub: github.com/decoder-it/K...
November 25, 2024 at 5:31 PM
I'm glad to release the tool I have been working hard on the last month: #KrbRelayEx
A Kerberos relay & forwarder for MiTM attacks!
>Relays Kerberos AP-REQ tickets
>Manages multiple SMB consoles
>Works on Win& Linux with .NET 8.0
>...
GitHub: github.com/decoder-it/K...
A Kerberos relay & forwarder for MiTM attacks!
>Relays Kerberos AP-REQ tickets
>Manages multiple SMB consoles
>Works on Win& Linux with .NET 8.0
>...
GitHub: github.com/decoder-it/K...
Reposted by v1stra
If you are in cybersecurity repost this so we can all follow each other 😬
November 15, 2024 at 4:53 PM
If you are in cybersecurity repost this so we can all follow each other 😬