unSafe.sh - 不安全
我的收藏
今日热榜
公众号文章
导航
Github CVE
Github Tools
编码/解码
文件传输
Twitter Bot
Telegram Bot
Rss
黑夜模式
Adversarial SysAdmin - The Key to Effective Living off the Land
In my previous role, we frequently employed ‘living off the land’ strategies, rarely using...
2024-10-27 21:58:44 | 阅读: 6 |
收藏
|
ZephrSec - Adventures In Information Security - blog.zsec.uk
pwd
php
passwd
(Re)Building the Ultimate Homelab NUC Cluster - Part 1
Explore my blog series on building a NUC cluster with Proxmox! Learn about connecting hosts, se...
2024-9-8 19:21:35 | 阅读: 10 |
收藏
|
ZephrSec - Adventures In Information Security - blog.zsec.uk
homarr
proxmox
portainer
download
volume1
Side-by-Side with HelloJackHunter: Unveiling the Mysteries of WinSxS
This post explores Windows Side-by-Side (WinSxS) and DLL hijacking, deep-diving some tooling I'...
2024-5-12 17:1:42 | 阅读: 7 |
收藏
|
ZephrSec - Adventures In Information Security - blog.zsec.uk
windows
winsxs
fileversion
powershell
hijacking
BlackVue Dashcams - It's not a bug, it is a feature
Blackvue cloud connected dashcams leak your location and allow anyone to view your video feed w...
2024-3-16 07:41:34 | 阅读: 15 |
收藏
|
ZephrSec - Adventures In Information Security - blog.zsec.uk
blackvue
cloud
dashcam
colin
security
Failing Upwards: Put on your own mask before assisting others (Pt2)
Reflecting on my experiences with various leaders, managers, and bosses, I've gained insights i...
2024-1-29 00:43:8 | 阅读: 16 |
收藏
|
ZephrSec - Adventures In Information Security - blog.zsec.uk
leadership
qualities
maintaining
zephrsnaps
experiences
Failing Upwards (or not) (Pt1)
If you find yourself on the path of leading a team, make sure you set critical baselines with y...
2024-1-29 00:42:48 | 阅读: 19 |
收藏
|
ZephrSec - Adventures In Information Security - blog.zsec.uk
teaching
leadership
security
taught
learnt
Security For Everyone - 2023 Update
This post will go through some of the steps you can take as an individual to secure the account...
2023-8-20 18:3:30 | 阅读: 10 |
收藏
|
ZephrSec - Adventures In Information Security - blog.zsec.uk
security
bitwarden
lastpass
advice
WebSockets are a Pain - A Journey in Learning and Leveraging
Before I dive in and show examples of implementations that worked, it is worth doing a quick ex...
2023-4-3 16:5:7 | 阅读: 8 |
收藏
|
ZephrSec - Adventures In Information Security - blog.zsec.uk
websockets
caddy
client
github
c2
Ticket Fraud Scammers - An Investigation
If you're reading this, it's a blog post that's not my regular write-up but more of an investig...
2023-2-24 20:14:47 | 阅读: 9 |
收藏
|
ZephrSec - Adventures In Information Security - blog.zsec.uk
raise
tweets
hypothesis
gig
LTR102 - Published Finally!
Hello Everyone, This a short blog post to announce I have finally published my second boo...
2022-12-24 02:20:46 | 阅读: 8 |
收藏
|
ZephrSec - Adventures In Information Security - blog.zsec.uk
paul
career
advice
security
morgan
BYODC - Bring Your Own Domain Controller
Over the years, I've been doing internal testing and compromising domains; adding machines to the d...
2022-11-5 01:19:42 | 阅读: 10 |
收藏
|
ZephrSec - Adventures In Information Security - blog.zsec.uk
machine
ntds
windows
dit
ntdsutil
Multiple Paths to Compromise An Environment
Attack paths and compromising systems are something we, as attackers, thrive in. Many areas of...
2022-10-5 00:10:12 | 阅读: 7 |
收藏
|
ZephrSec - Adventures In Information Security - blog.zsec.uk
network
passwords
attacker
security
ZTH-CH4: Hook & Sling - Phishing For Gold
To this date, phishing is one of the most prevalent first stages of entry to an organisation, a...
2022-9-26 17:41:48 | 阅读: 9 |
收藏
|
ZephrSec - Adventures In Information Security - blog.zsec.uk
phishing
phish
stages
coerce
HoneyPoC is Dead - Long Live Disinformation
This short blog post explains what each tool does and overviews the use/reason for the release. R...
2022-9-22 10:9:45 | 阅读: 7 |
收藏
|
ZephrSec - Adventures In Information Security - blog.zsec.uk
autopoc
github
sandboxspy
base32
overviews
Free Audi MMI Maps and Speedcams Update 2024
Update Audi Maps and Speedcams for free; files and steps are included for Maps 2022/2023. All w...
2022-8-24 18:7:52 | 阅读: 10 |
收藏
|
ZephrSec - Adventures In Information Security - blog.zsec.uk
mmi
audi
pocketgps
cameras
navigation
Free Audi MMI Maps and Speedcams Update 2022/2023
Update Audi Maps and Speedcams for free; files and steps are included for Maps 2022/2023. All w...
2022-8-24 18:7:52 | 阅读: 13 |
收藏
|
ZephrSec - Adventures In Information Security - blog.zsec.uk
mmi
audi
navigation
cameras
pocketgps
Orchestrating deployment of @myexploit2600's hacklab with Ansible and Vagrant [REDUX]
Deploy your hacklab using Ansible and Vagrant for fast, repeatable results. Building on the wor...
2022-7-26 22:10:3 | 阅读: 16 |
收藏
|
ZephrSec - Adventures In Information Security - blog.zsec.uk
windows
hacklab
playbook
machine
workstation
Azure Attack Paths: Common Findings and Fixes (Part 1)
Learning about cloud penetration testing is nothing new, but it is undoubtedly an area where a lot...
2022-6-19 23:57:53 | 阅读: 10 |
收藏
|
ZephrSec - Adventures In Information Security - blog.zsec.uk
powershell
cloudshell
azuread
client
microsoft
Understanding Cobalt Strike Profiles - Updated for Cobalt Strike 4.6
A deep dive into specifics around cobalt strike malleable c2 profiles and key information that...
2022-4-13 18:53:0 | 阅读: 10 |
收藏
|
ZephrSec - Adventures In Information Security - blog.zsec.uk
beacon
c2
memory
limits
proxy
Chasing the Silver Petit Potam to Domain Admin
Exploiting Petit Potam in a different way to force some downgrade and protocol attacks.I wa...
2022-2-20 10:59:23 | 阅读: 8 |
收藏
|
ZephrSec - Adventures In Information Security - blog.zsec.uk
ntlmv1
responder
dc01
silver
Previous
-26
-25
-24
-23
-22
-21
-20
-19
Next