All posts by Magdalena Jarzębska

03

Aug'21

Nebula - Cloud C2 Framework, which offers reconnaissance, enumeration, exploitation, post exploitation on AWS

Nebula is a Cloud and (hopefully) DevOps Penetration Testing framework. It is build with modules for each provider and each …

Read More

02

Aug'21

gimmeSH - a tool that generates a custom cheatsheet for Reverse Shell, File Transfer and Msfvenom

For pentesters who don't wanna leave their terminals. Few Words gimmeSH, is a tool that generates a custom cheatsheet for Reverse …

Read More

28

Jul'21

How to Detect Suspicious IP Addresses by Oğuzhan Öztürk

One of the most important talents a cybersecurity expert must have is the ability to detect and block a suspicious …

Read More

26

Jul'21

ppmap - a scanner/exploitation tool written in GO, which leverages Prototype Pollution to XSS by exploiting known gadgets

A simple scanner/exploitation tool written in GO which automatically exploits known and existing gadgets (checks for specific variables in the …

Read More

23

Jul'21

The 10 Commandments of Cybersecurity That Work by Kitson Pereira

It is difficult to put a proper estimate on the cost of cybersecurity breaches. Several studies put the current value …

Read More

23

Jul'21

Dystopia - a low to medium multithreaded Ubuntu Core honeypot coded in Python

Low to medium Ubuntu Core honeypot coded in Python. Quick Guide Installation Arguments dstat Features Optional login prompt Logs who …

Read More

22

Jul'21

Backstab - a tool to kill antimalware protected processes

Kill EDR Protected Processes Have these local admin credentials but the EDR is standing in the way? Unhooking or direct …

Read More

22

Jul'21

Orbitaldump - a simple multi-threaded distributed SSH brute-forcing tool written in Python

A simple multi-threaded distributed SSH brute-forcing tool written in Python. How it Works When the script is executed without the --proxies switch, …

Read More

21

Jul'21

CORS vulnerability

The vulnerability is a mechanism for accessing data of other origins through AJAX1 requests. Sites use CORS to bypass the …

Read More

19

Jul'21

Exegol - a fully featured and community-driven hacking environment

TL;DR: Exegol is a community-driven hacking environment, powerful and yet simple enough to be used by anyone in day to …

Read More
© HAKIN9 MEDIA SP. Z O.O. SP. K. 2013