The Return of Aggressor TikiSpawn & TikiLoader Mods Dynamic XML... 2019-06-26 09:00:00 | 阅读: 66 | 收藏 | rastamouse.me tikispawn shellcode msbuild tikiloader ppid

TikiVader Usage I’ve added a new experimental project to TikiTorch,... 2019-06-15 09:00:00 | 阅读: 54 | 收藏 | rastamouse.me tikivader evade millage tikitorch

TikiSpawn & MSBuild XML Closing The main... 2019-06-13 09:00:00 | 阅读: 189 | 收藏 | rastamouse.me tikispawn microsoft msbuild usingtask windows

This work is licensed under a Creative Commons Attribution-ShareAlike 4.0 International License. ... 2019-05-28 09:00:00 | 阅读: 50 | 收藏 | rastamouse.me creative attribution sharealike licensed

Weaponizing Privileged File Writes with Windows Collector Service Design Ethos CVE-2019-0841 SystemCollector Demo... 2019-04-27 09:00:00 | 阅读: 99 | 收藏 | rastamouse.me 0841 malicious windows collector

Weaponizing CVE-2019-0841 with LAPS Foothold Exploit CVE-2019-0841 Ad... 2019-04-13 09:00:00 | 阅读: 82 | 收藏 | rastamouse.me sinfo pinfo admpwd laps gpupdate

EWS - InstallApp Why EWS? Password Spraying Managed API McAfee For Out... 2019-03-21 09:00:00 | 阅读: 73 | 收藏 | rastamouse.me ews beef owa exchange mcafee

TikiTorch When TikiTorch was first rel... 2019-03-20 09:00:00 | 阅读: 71 | 收藏 | rastamouse.me tikispawn shellcode ppid tikispawnas tikiloader

About Written in Go, Hugo is an open source static site generator availabl... 2019-02-28 09:00:00 | 阅读: 58 | 收藏 | rastamouse.me github hugo spf13 notable chroma

GPO Abuse - Part 2 Before we can really dive into modifying GPOs, we need to try and un... 2019-01-13 09:00:00 | 阅读: 326 | 收藏 | rastamouse.me sysvol testlab gpt gpo 4fbe

GPO Abuse - Part 1 Enumeration Create GPOs GP-Link... 2019-01-06 09:00:00 | 阅读: 551 | 收藏 | rastamouse.me testlab gpo

AmsiScanBuffer Bypass - Part 4 It Just Doesn’t Work It Just Crashes As 2018 rapidly... 2018-12-31 09:00:00 | 阅读: 107 | 收藏 | rastamouse.me bypass powershell marshal

AmsiScanBuffer Bypass - Part 3 Bypass Primer AMSI_RESULT_CLEAN In Part 2, we enginee... 2018-11-01 09:00:00 | 阅读: 80 | 收藏 | rastamouse.me bypass marshal r8d

AmsiScanBuffer Bypass - Part 2 Generate Stager AMSI Bypass HTA In Part 1, we had... 2018-10-31 09:00:00 | 阅读: 106 | 收藏 | rastamouse.me bypass 214 beacon powershell payload

A Lesson in .NET Framework Versions With the emergence of more C# and .NET tooling, I occasionally see p... 2018-09-19 09:00:00 | 阅读: 64 | 收藏 | rastamouse.me seatbelt windows esc moral emergence

Enumerating AppLocker Config Remote Enumeration Local Enumeration Very quick post... 2018-09-08 09:00:00 | 阅读: 157 | 收藏 | rastamouse.me deny gpo publisher remote applocker

RDPClip This is just a quick post to demonstrate some interesting aspects of... 2018-06-09 09:00:00 | 阅读: 49 | 收藏 | rastamouse.me dmz2 rasta clipboard 680 beacon

CSharp, DotNetToJScript, XSL Example 1 32-bit Shellcode Compile to DLL... 2018-05-15 09:00:00 | 阅读: 284 | 收藏 | rastamouse.me xsl shellcode p0wnedshell

Review: Active Directory Attacks for Red and Blue Teams Along with Cn33liz, I recently had the pleasure of assisting Nikhil... 2018-05-05 09:00:00 | 阅读: 44 | 收藏 | rastamouse.me forest pth nikhil jenkins applocker

A View of Persistence C2 vs Privilege C2 Userland vs Elevated... 2018-03-22 09:00:00 | 阅读: 65 | 收藏 | rastamouse.me fs01 rasta windows testlab c2