php 随机数 mt_rant 的利用 https://whiteknightlabs.com/2024/06/14/exploiting-gh-13690-mt_rand-in-php-in-2024 #redteam
Hashtags
OnePlus 8T Oxygen OS 11.0.10.10.KB05BA System • Newly adapted OnePlus Buds Pro and brought new powerful features • Newly added the screenshot feature for AOD • Fixed the failed issue of Navigation gestures in some scenes • Improved system stability and fixed known issues • Updated Android security patch to 2021.08 Camera • Optimized the portrait mode effect of the front camera Ambient Display • Newly added Bitmoji AOD, co-designed with Snapchat, which will liven up the ambient display with your personal Bitmoji avatar. Your avatar will update throughout the day based on your activity and things happening around you ( Path: Settings - Customization - Clock on ambient display - Bitmoji ) MD5 Full: 5e5e05c41bdec735195e026fbd89ea46 Size Full: 2.76 GB (2966856115) Downloads Oxygen OS Server 1: Full Oxygen OS Server 2: Full Color OS Global Server 1: Full Color OS Global Server 2: Full Exported by MlgmXyysd Color OTA Bot@OnePlusOTA #Oxygen#kebab#Europe#Full
搜索 #redteam
php 随机数 mt_rant 的利用 https://whiteknightlabs.com/2024/06/14/exploiting-gh-13690-mt_rand-in-php-in-2024 #redteam
Hashtags
EXE-or-DLL-or-ShellCode 作为普通 exe 执行 作为 dll 加载 + 可以调用导出函数 通过“rundll32.exe”运行 直接从 DOS (MZ) 标头作为 shellcode 执行 🔗https://github.com/Dump-GUY/EXE-or-DLL-or-ShellCode #redteam
Hashtags
虚假 reCAPTCHA 进行网络钓鱼 最近在 2024 年 8 月/9 月左右出现的社交工程和网络钓鱼诱饵的工具 https://github.com/JohnHammond/recaptcha-phish #redteam #
Hashtags
#redteam
Hashtags
#redteam
Hashtags
#redteam
Hashtags
#redteam
Hashtags
老外的红队面试题和答案 https://github.com/HadessCS/Red-team-Interview-Questions #redteam
Hashtags
Windows 内核最新提权 exp https://github.com/tykawaii98/CVE-2024-30088 #redteam
Hashtags
几款利用远程控制工具,来低成本拥有免杀技术 RdViewer远控隐蔽利用及钓鱼攻击 https://mp.weixin.qq.com/s/kt531w5hhdo-gYQ5dpziYA 免杀一切;利用Todesk企业版制作远控 https://mp.weixin.qq.com/s/R_i4CfIji78AyYp4U3yEJA 利用rustdesk绕过杀软 https://mp.weixin.qq.com/s/xLVcXi0wYk7AzRV_NLUQlw #redteam
Hashtags
HookChain 是一种绕过传统 EDR 的技术,利用 IAT Hooking、动态 SSN 解析和间接系统调用,无需修改源代码,提供隐蔽操作,挑战现有安全防御,促进对策的发展。 https://github.com/helviojunior/hookchain/ #redteam#github
用于生成邮件钓鱼的方式,可以逃脱邮件过滤 https://github.com/api0cradle/RedTeamScripts/blob/main/generate-udl.ps1 文章 https://trustedsec.com/blog/oops-i-udld-it-again #GitHub#redteam