White Paper

The “Windows Downdate” vulnerability, identified and demonstrated by researcher Anon Leviev, is a downgrade attack technique that leverages Windows Update mechanisms to reintroduce older, vulnerable versions of system files. By circumventing normal update verification checks, this attack allows malicious actors to downgrade essential system components like the Windows kernel, Hyper-V hypervisor, and other critical drivers, …

Windows Downdate: Downgrade Attacks Using Windows Updates and Beyond Read More »

Post-exploitation in red teaming involves navigating and exploiting a compromised system to achieve deeper control and further access to sensitive data and networks. This phase follows initial access and lateral movement, focusing on persistence, privilege escalation, and data exfiltration. Key techniques include system enumeration to gather information such as running processes, installed software, and user …

Art of Post-Exploitation Read More »

“ROP Gadget Unleashed” delves into the intricacies of Return-Oriented Programming (ROP) and its significance in modern exploitation techniques. The article elucidates how attackers leverage existing code snippets, or “gadgets,” within a program’s memory to craft malicious payloads, thus circumventing traditional security mechanisms like Data Execution Prevention (DEP). By chaining these gadgets together, which typically end …

ROP Gadget Unleashed Read More »

Introduction from raidforum to intelxbroker Threat intelligence and OSINT (Open Source Intelligence) are powerful tools in identifying individuals behind online aliases or nicknames, especially within hacker forums like BreachForums. OSINT relies on the analysis of publicly available data, such as social media profiles, posts, and online interactions, to uncover hidden identities. In the case of …

Pompompurin Hacker : An OSINT & Threat Intelligence Analysis Read More »

Overview System Binary Proxy Execution leverages legitimate Windows binaries (e.g., rundll32.exe, mshta.exe) to execute malicious code. These binaries are trusted by the OS, allowing attackers to bypass security controls like antivirus and application whitelisting by using these tools to proxy malicious actions. Historical Context This technique gained prominence as security defenses improved. Traditional malware detection …

System Binary Proxy Execution Read More »

1. Introduction to Artificial Intelligence (AI) 1.1 What is AI? Artificial Intelligence (AI) involves the simulation of human intelligence processes by machines, particularly computer systems. These processes include learning (acquiring information and rules for using the information), reasoning (using rules to reach approximate or definite conclusions), and self-correction. AI can handle tasks that typically require …

Practical LLM Attack Scenarios Read More »

Section 1: Understanding LLMs and Their Role in Bug Bounty Hunting Introduction to Large Language Models Overview of what LLMs are Large Language Models (LLMs) are advanced AI models trained on vast amounts of text data. They can understand, generate, and manipulate human language. LLMs, like GPT-4, are designed to predict the next word in …

Practical Use of Large Language Models (LLMs) in Bug Bounty Hunting Read More »

DLL hijacking is a technique where an attacker exploits the way applications load Dynamic Link Libraries (DLLs) in Windows. When an application is launched, it searches for necessary DLLs in specific directories. If an attacker places a malicious DLL with the same name as a legitimate one in a directory that’s searched first, the application …

Adaptive DLL Hijacking Read More »

Red teamers, who are cybersecurity professionals specializing in emulating potential attackers to test the defenses of an organization, rely on a variety of gadgets and devices to conduct their activities. The Hacker’s Hardware Toolkit on GitHub, curated by yadox666, offers an extensive list of such tools, emphasizing their practical applications in security assessments. Among the …

Red Teamer Gadgets Read More »

Wireless Technology and Frequency Spectrum Overview Understanding the frequency spectrum and its various applications is crucial for professionals working with wireless technologies. This document outlines the frequency ranges and associated technologies, providing insights into their usage and characteristics. Frequency Bands and Technologies Tools and Commands To work effectively with these frequencies and technologies, various tools …

A Red Teamer’s Guide to Wi-Fi Exploits Read More »

In the ever-evolving landscape of cybersecurity, the tools and techniques employed by both defenders and attackers are constantly advancing. Among the myriad of tools available, Mimikatz stands out as a particularly powerful and versatile utility that has become a staple in the arsenals of both security professionals and malicious actors. Developed by Benjamin Delpy, Mimikatz …

Mimikatz Comprehensive Guide Read More »

Active Directory Certificate Services (AD CS) is a crucial component of enterprise security infrastructure, providing services for public key cryptography. However, misconfigurations and vulnerabilities within AD CS can be exploited for domain escalation, persistence, and certificate theft. These exploits leverage weaknesses in certificate templates, enrollment services, access control lists (ACLs), and other AD CS components. …

Pwning the Domain: AD CS Read More »