Skip to content
0xsp SRD – Security Research & Development
  • Home
  • Guide
  • Projects
Mon 29 Jun 7:10 PM

Loading

Web attacks payloads collections
offensive

Web attacks payloads collections

a collection of commonly used payloads needed for web application testing (fuzzing), the payloads have been collected from different resources and will…

April 19, 2022 · 1 min
Bypass Symantec Email Security.cloud
offensive

Bypass Symantec Email Security.cloud

During attack Simulation, you may face Symantec Email Security Cloud (Message Lab ) while conducting a phishing campaign. Message Lab stops known…

April 19, 2022 · 2 min
unique attacks with 0xsp mongoose red
offensive

unique attacks with 0xsp mongoose red

In this blog, I am going to explain some of the unique features of 0xsp mongoose, which I am sure most of…

April 19, 2022 · 3 min
offensive cheatsheet
offensive

offensive cheatsheet

Gathering information Stage port scanning Nmap Network exploration tool and security/ port scanner nmap [Scan Type] [Options] {target specification} HOST DISCOVERY: -sL:…

April 19, 2022 · 12 min
Covert DNS C&C for Red teaming Ops
security research & development (SRD)

Covert DNS C&C for Red teaming Ops

introduction DNS is one of the core services of the current Internet. It is used not only for obvious benign purposes but…

April 19, 2022 · 5 min
Footprints of Mailgun Phishing Campaigns
security research & development (SRD)

Footprints of Mailgun Phishing Campaigns

Introduction Recently Mailgun security team published an article on their blog warning internet users about new scammed email messages targeting users and…

April 19, 2022 · 6 min
Smuggling via Windows services display name – Lateral movement
security research & development (SRD)

Smuggling via Windows services display name – Lateral movement

Introduction During red teaming operation, Lateral movement or known as an east-west movement refers to the technique to move deeper into a…

April 19, 2022 · 4 min
Local administrator is not just with Razer.. it is possible for ALL
security research & development (SRD)

Local administrator is not just with Razer.. it is possible for ALL

There is more? Recently a Security researcher @jonhat discovered a zero-day vulnerability in the plug-and-play Razer Synapse installation that allows users to…

April 19, 2022 · 3 min
handy techniques to bypass environment restrictions
offensive

handy techniques to bypass environment restrictions

through a red teaming assessment you may face some of the restrictions due to policy enforcement / EDR / app whitelisting ..etc.,…

April 19, 2022 · 6 min
Gophish on Digital Ocean with Blacklist Range
offensive

Gophish on Digital Ocean with Blacklist Range

Intro Gophish is a powerful, easy-to-use, open-source phishing toolkit meant to help pentesters and businesses conduct real-world phishing simulations. This user guide…

April 19, 2022 · 2 min

Posts navigation

‹ Newer 1 2 3 4 Older ›