0xsp SRD - Security Research & Development

0xsp SRD - Security Research & Development https://validator.w3.org/feed/docs/rss2.html Covert DNS C&C for Red teaming Ops Backdoor discovered in PLDT home fiber routers Porting Backdoors – Windows rootkits via RESTful API Service Privilege Escalation cheatsheet Projects Active Directory (Attack & Defense ) Follina – CVE-2022-30190 RTF combined attacks against XDR 0xsp-mongoose RED Hunting Windows Credentials (CredUIPromptForWindowsCredentials) bypass restricted command prompt for none-privileged users Web attacks payloads collections Bypass Symantec Email Security.cloud unique attacks with 0xsp mongoose red offensive cheatsheet Footprints of Mailgun Phishing Campaigns Smuggling via Windows services display name – Lateral movement Local administrator is not just with Razer.. it is possible for ALL handy techniques to bypass environment restrictions Gophish on Digital Ocean with Blacklist Range Defeat the Castle – Bypass AV & Advanced XDR solutions. bypass endpoint with XLM weaponization red team cheatsheet Red Teaming Toolkit Collection Hello world! Implementing Hell’s Gate in Zig – Part 1 Building mini c2c in Pascal – Part 2 Building mini c2c in Pascal – Part 1 Guide Publications The Hidden Risk: Compromising Notepad Cowriter’s Bearer Tokens Navigating Embedded Payload Extraction from RDP Files – Defence evasion Building mini c2c in Pascal – part 3 Abuse Cloudflare Zerotrust for C2 channels How I Leveraged WMI to Enumerate a Process Modules and Their Base Addresses Mortar Loader v2 MalewareBytes Support tool – SAM hash dump?