Search

You can find the results of your search below.

Matching pagenames:

Fulltext results:

Obfuscation: polymorphic in-memory decoder @en:it-security:blog
47 Hits, Last modified:
d at disguising shellcode as a UUID in the source code. This also worked well, but the shellcode was rec... amed. The decoder starts with this instruction: <code asm> _start: jmp short call_decoder ; Begin of JMP-CALL-POP </code> ''%%JMP-CALL-POP%%'' is a technique that allows us to execute code independently of memory. In this first step, we n
Shellcode Injection Part 4 @en:it-security:blog
47 Hits, Last modified:
of ''calc.exe'' on a Windows computer * 64-bit code * Avoid null bytes ===== Preparations ===== =... t from [[https://www.ired.team/offensive-security/code-injection-process-injection/finding-kernel32-base... e used for the structure of the shellcode. ===== Code: Step by step ===== You can also find the complete code on [[https://github.com/psycore8/nosoc-shellcode/
Buffer overflow in the 64-bit stack - Part 3 @en:it-security:blog
40 Hits, Last modified:
ssue a system command when calling the function <code gdb> [-------------------------------------code-------------------------------------] 0x4011de <vuln... >: mov eax,0x0 0x4011f7 <vuln+134>: leave </code> \\ \\ ===== Dependencies ===== * socat mod [[... ps://docs.pwntools.com/en/stable/install.html)) <code bash> python3 -m pip install --upgrade pip python
n8n installation with Docker Compose @en:linux
38 Hits, Last modified:
an) ===== ==== 1.1 Uninstall old versions ==== <code bash> sudo apt-get remove docker docker-engine docker.io containerd runc </code> ==== 1.2 Repo installation ==== === 1.2.1 Update apt and activate HTTPS === <code bash> sudo apt-get update sudo apt-get install... tc/apt/sources.list.d/docker.list > /dev/null </code> === 1.2.2 Add Docker GPG Key === <code bash>
n8n installation with Docker Compose @en:linux:n8n
38 Hits, Last modified:
an) ===== ==== 1.1 Uninstall old versions ==== <code bash> sudo apt-get remove docker docker-engine docker.io containerd runc </code> ==== 1.2 Repo installation ==== === 1.2.1 Update apt and activate HTTPS === <code bash> sudo apt-get update sudo apt-get install... tc/apt/sources.list.d/docker.list > /dev/null </code> === 1.2.2 Add Docker GPG Key === <code bash>
Buffer overflow in the 64-bit stack - part 1 @en:it-security:blog
36 Hits, Last modified:
ileges.((https://www.ired.team/offensive-security/code-injection-process-injection/binary-exploitation/6... s://github.com/longld/peda/blob/master/README)) <code bash> git clone https://github.com/longld/peda.gi... peda echo "source ~/peda/peda.py" >> ~/.gdbinit </code> \\ \\ ==== Deactivate ASLR ==== ASLR must be de... ivated so that memory areas are not randomised. <code bash> echo 0 | sudo tee /proc/sys/kernel/randomiz
Open IRC channel @en:irc
32 Hits, Last modified:
yet familiar with these, you can use the command <code mirc>/rules</code> command in your IRC client. ===== Step 1: Create the channel ===== To create this channel, enter the following: <code mirc>/join #DeinChannel</code> The Deinchannel will of course be named after the respective channel na
Shellcode Injection Part 1 @en:it-security:blog
31 Hits, Last modified:
rmat | | > shell.c | Save to the file shell.c | <code bash> msfvenom -p windows/shell_reverse_tcp LHOST... ta_ga_nai -i 8 -b '\x00\x0d\x0a' -f c > shell.c </code> \\ \\ ===== C++ Injector ===== We create a new ... = 540; int main(int argc, char** argv) { char* code; printf("#nosoc - expecttheunexpected"); code = (char*)VirtualAlloc(NULL, size, MEM_COMMIT,PAGE_E
Helpful NMAP scanner commands @en:it-security
30 Hits, Last modified:
=== Command Set ===== ==== Discover Hosts ==== <code bash> export IPRANGE='172.16.0.0/16' nmap -e tun0 -sn -v -oA pingscan $IPRANGE </code> ==== Parse Results ==== <code bash> grep Up pingscan.gnmap | awk '{print$2}' > 172_16_ping_ips.txt </code> ==== Discover Services ==== <code bash> nmap -
Formatting Syntax @en:wiki
29 Hits, Last modified:
nd_strings_in_your_installation|localisation]]): <code - conf/lang/en/lang.php> <?php /** * Customizati... be modified */ $lang['js']['nosmblinks'] = ''; </code> ==== Image Links ==== You can also use an imag... t use indention for deeper levels - That's it <code> * This is a list * The second item * You... t use indention for deeper levels - That's it </code> Also take a look at the [[doku>faq:lists|FAQ on
Obfuscation: ByteSwapping @en:it-security:blog
29 Hits, Last modified:
%%''|''%%F9%%''|''%%12%%''|''%%D1%%''| ===== The code ===== ==== Step 1: Python Encoder ==== The corr... e array * Return the byte array as the result <code python> def encrypt(data: bytes, xor_key: int... e = enc_byte return bytes(transformed) </code> ==== Step 2: Assembly ==== Now the assembly mu... cancels the encryption. You can find the complete code at the end of the article. === Step 2.1: Initial
Shellcode Injection Part 3 @en:it-security:blog
24 Hits, Last modified:
ome circumstances it may be necessary to load the code for the shell in the second step. In this blog p... a file via HTTP and then execute it. \\ \\ ===== Code ===== ==== C++ source ==== First, we need a sma... e shellcode into memory and then jumps into it. <code cpp> ... //buf represents the shellcode unsigned ... jump __asm { mov eax, target jmp eax } } </code> You can find the complete code in the [[https:/
Debian Distribution Upgrade - Squeeze to Wheezy @en:linux:debian
24 Hits, Last modified:
=== 2. display the current Debian version ===== <code bash> cat /etc/debian_version 6.0.7 </code> ===== 3. update packages ===== <code bash> apt-get update apt-get upgrade apt-get dist-upgrade </code> ===== 4. customise the sources.list ===== Adap
Buffer overflow in the 64-bit stack - Part 2 @en:it-security:blog
23 Hits, Last modified:
80568|kompilierte debug binary]] from the blog. <code bash> br *vuln+73 # setze Breakpoint r < i... "/bin/sh") RIP: 0x400469 (<_init+25>: ret) </code> \\ \\ ===== Dependencies ===== What is needed? ... fer_overflow_x64|Part 1]], we also need ropper. <code bash> sudo apt install ropper </code> \\ \\ ===== Deactivate ASLR ===== ASLR must also be deactivated
Shellcode Injection Part 2 @en:it-security:blog
23 Hits, Last modified:
e tools as in part 1. You can download the source code from the [[https://github.com/psycore8/nosoc-shellcode|Github repository]]. \\ \\ ===== Code ===== ==== Explanation ==== Our code should receive the PID of the target process as a parameter at s... 'with the return value of the programme handle. <code cpp> processHandle = OpenProcess(PROCESS_ALL_ACCE
Group Managed Service Accounts @en:it-security
22 Hits, Last modified:
Update UnrealIRCD @en:linux
22 Hits, Last modified:
Obfuscation: Disguise shellcode as UUIDs @en:it-security:blog
18 Hits, Last modified:
MySQL Backup under Linux @en:linux:mysql
18 Hits, Last modified:
Debian Fileserver with Samba @en:linux:samba
18 Hits, Last modified:
Host Discovery with Metasploit database @en:it-security
16 Hits, Last modified:
Linux backup with tar @en:linux:backup
16 Hits, Last modified:
User account control under Windows Vista @en:windows:security
16 Hits, Last modified:
SMB Hardening @en:it-security
14 Hits, Last modified:
Backing up the sshd @en:linux
14 Hits, Last modified:
Windows Bluescreen Analysis @en:windows
14 Hits, Last modified:
FatCat Attack PoC @en:it-security:blog
14 Hits, Last modified:
Linux Commands Cheatsheet @en:linux
12 Hits, Last modified:
Emulated Debian under VMWare @en:linux
12 Hits, Last modified:
Privilege escalation: Windows admin thanks to Linux @en:it-security:blog
12 Hits, Last modified:
Set up SSL under Apache @en:linux:apache
11 Hits, Last modified:
Optimise mIRC Perform @en:irc
10 Hits, Last modified:
Set up iptables @en:linux
10 Hits, Last modified:
Integration of Collabora Office in OwnCloud @en:linux
10 Hits, Last modified:
Postfix trivial rewrite problem @en:linux
10 Hits, Last modified:
Template help @en:vorlagen
10 Hits, Last modified:
Creating a bootable USB stick @en:windows
10 Hits, Last modified:
Set up iptables @en:linux:firewall
10 Hits, Last modified:
Integration of Collabora Office in OwnCloud @en:linux:owncloud
10 Hits, Last modified:
Provide Windows updates on the installation DVD @en:windows:essentials
10 Hits, Last modified:
IRC commands 2 @en:irc
8 Hits, Last modified:
n8n installation and operation @en:linux
8 Hits, Last modified:
Manual OpenSSL update @en:linux
8 Hits, Last modified:
Postfix Virtual Mailbox Limit @en:linux
8 Hits, Last modified:
Wallabag installation under Debian @en:linux
8 Hits, Last modified:
Linux backup with rsync @en:linux:backup
8 Hits, Last modified:
Check and optimise mysql databases @en:linux:mysql
8 Hits, Last modified:
n8n installation and operation @en:linux:n8n
8 Hits, Last modified:
Manual OpenSSL update @en:linux:openssl
8 Hits, Last modified:
Wallabag installation under Debian @en:linux:wallabag
8 Hits, Last modified:
Android - Firefox DNS over https @en:android
6 Hits, Last modified:
nmap SMBv1 Scan via Script @en:it-security
6 Hits, Last modified:
Autostart after Linux reboot @en:linux
6 Hits, Last modified:
Android - Firefox DNS over https @en:linux
6 Hits, Last modified:
Kali Linuxc: apt error - File has unexpected size @en:linux
6 Hits, Last modified:
Backup Script for Windows @en:software
6 Hits, Last modified:
Deactivate automatic data carrier check @en:windows
6 Hits, Last modified:
NTLDR missing Error message @en:windows
6 Hits, Last modified:
retrofit mail command @en:linux:debian
6 Hits, Last modified:
Manual Froxlor Reload @en:linux:froxlor
6 Hits, Last modified:
Kali Linuxc: apt error - File has unexpected size @en:linux:kali
6 Hits, Last modified:
PCFS - PsyCore Fun Script @en:archiv:coding:msl
6 Hits, Last modified:
Event log cannot be opened @en:archiv:windows:vista
6 Hits, Last modified:
ChaosDLL mIRC Script @en:software:chaosdll
5 Hits, Last modified:
mIRC with SSL @en:irc
4 Hits, Last modified:
64-Bit Stack CheatSheet @en:it-security
4 Hits, Last modified:
Buffer Overflows - Intro @en:it-security
4 Hits, Last modified:
Secure passwords @en:it-security
4 Hits, Last modified:
DelLastXFiles - delete data chronologically @en:software
4 Hits, Last modified:
Left-align taskbar under Windows 11 @en:windows
4 Hits, Last modified:
Execute repair of Windows 10 @en:windows
4 Hits, Last modified:
Courier with TLS connection @en:linux:courier
4 Hits, Last modified:
Change MySQL passwords @en:linux:mysql
4 Hits, Last modified:
Execute repair of Windows 10 @en:windows:10
4 Hits, Last modified:
Left-align taskbar under Windows 11 @en:windows:11
4 Hits, Last modified:
OSI layer cyber attacks @en:it-security
3 Hits, Last modified:
Delphi Codebase @en:archiv:coding:delphi
3 Hits, Last modified:
Android - Firefox uBlock Google Consent Block @en:android
2 Hits, Last modified:
Nickserv @en:irc
2 Hits, Last modified:
Backup Script Linux @en:linux
2 Hits, Last modified:
PlayGround @en:playground
2 Hits, Last modified:
OmegaPass / Password Generator @en:software
2 Hits, Last modified:
ausbau @en:vorlagen
2 Hits, Last modified:
drafts @en:vorlagen
2 Hits, Last modified:
progress @en:vorlagen
2 Hits, Last modified:
Template for user profile @en:vorlagen
2 Hits, Last modified:
Disable User Account Control (UAC) completely @en:windows
2 Hits, Last modified:
MySQL Operating system error number 13 @en:linux:mysql
2 Hits, Last modified:
Securely overwrite files that have already been deleted @en:windows:essentials
2 Hits, Last modified:
Bombs Script @en:archiv:coding:msl
2 Hits, Last modified:
XP takes a very long time to shut down @en:archiv:windows:performance
2 Hits, Last modified:
IRC Operator commands @en:irc
1 Hits, Last modified:
Security on the net @en:windows
1 Hits, Last modified: