siyahsapka.org

Don't Learn to hack, hack to LEARN

Sayfalar

  • Home
  • Services
  • Articles
  • whoami
Showing posts with label OSCE. Show all posts
Showing posts with label OSCE. Show all posts

Wednesday, November 7, 2018

Antivirus Evasion Tools

http://www.securitysift.com/pecloak-py-an-experiment-in-av-evasion/

https://github.com/Veil-Framework/Veil
Posted by Ali Okan Yüksel at 12:39 PM No comments:
Email ThisBlogThis!Share to XShare to FacebookShare to Pinterest
Labels: OSCE, pentes, reverse engineering

Thursday, November 1, 2018

SEH - Structured Exception Handler EXPLOITATION

Attack:

https://www.exploit-db.com/docs/english/17505-structured-exception-handler-exploitation.pdf


Defense:

https://support.microsoft.com/en-us/help/956607/how-to-enable-structured-exception-handling-overwrite-protection-sehop

References:

https://www.symantec.com/security_response/attacksignatures/detail.jsp?asid=61000
https://www.rapid7.com/resources/structured-exception-handler-overwrite-explained/ (Watch it)
Posted by Ali Okan Yüksel at 10:59 AM No comments:
Email ThisBlogThis!Share to XShare to FacebookShare to Pinterest
Labels: Exploit Development, OSCE
Older Posts Home
Subscribe to: Posts (Atom)

Popular Posts

  • QRadar: SSH to host fails with error "No ECDSA host key is known for and you have requested strict checking"
    Troubleshooting ...
  • radius performance testing with radperf tool
    RADPERF Authentication, Authorization, and Accounting. Performance, scalability, load testing, and validation. One of the most critical s...
  • ut8mb3 ve utf8mb4 arasındaki fark nedir?
    utf8mb3 ve utf8mb4, karakter kodlaması olarak UTF-8'i kullanan MySQL veritabanı sütunlarının karakter setini belirtmek için kullanılan t...
  • QRadar SOAR: How to increase partition size by using a new disk on RHEL with LVM
     Steps: Steps to add a new hard disk to LVM on IBM Security SOAR appliance running Red Hat Linux with LVM support: 1....
  • Xcode - develop for iOS and macOS Xcode 15.0.1 Unable to get list of installed Simulator runtimes
    Error: Xcode - develop for iOS and macOS Xcode 15.0.1 Unable to get list of installed Simulator runtimes Solution: $ xcodebuild -download...
  • nmap: smb enumeration
    Enumeration, in the context of cybersecurity, refers to the process of discovering information about a target system or network. This can in...
  • How to send a command line mail by mutt with a gmail account?
    Mutt is an open-source, text-based email client used in command-line interfaces. Known for its simplicity, flexibility, and powerful feat...
  • How add a Tenable Vulnerability Management (formerly Tenable.io) Scanner to Tenable Security Center
    https://docs.tenable.com/security-center/6_2/Content/AddTenableioScanner.htm?Highlight=Add%20Tenable%20Scanner  * Note: By default, Tenable...
  • Tenable Security Center: Successful Scan Results Not Appearing in the Scan Result
     Solution: Check time settings in the filter.  
  • AWS Certified Cloud Practitioner exam notes
    Before attending AWS Cloud Practitioner courses, I was thinking that this program is just for newbies. But after taking the course and passi...

Categories

  • linux (65)
  • pentest (50)
  • redhat (21)
  • python (18)
  • network security (17)
  • qradar (14)
  • bash (13)
  • reverse engineering (8)
  • security (8)
  • Tenable (6)
  • kernel (6)
  • openshift (6)
  • oracle (6)
  • Symantec Endpoint Protection (4)
  • freebsd (4)
  • freeradius (4)
  • macos (4)
  • shell (4)
  • Adli Bilişim (3)
  • Exploit Development (3)
  • Malware analysis (3)
  • SOAR (3)
  • Windows (3)
  • bind9 (3)
  • docker (3)
  • git (3)
  • linux containers (3)
  • nmap (3)
  • resilient (3)
  • siem (3)
  • ssl (3)
  • syslog (3)
  • web development (3)
  • zfs (3)
  • Learning (2)
  • Network (2)
  • OS X (2)
  • OSCE (2)
  • Offensive Security (2)
  • QRadar SOAR (2)
  • Veritas (2)
  • aws (2)
  • data storage (2)
  • github (2)
  • httpd (2)
  • ipv6 (2)
  • java (2)
  • json (2)
  • kafka (2)
  • malware (2)
  • music (2)
  • mysql (2)
  • nginx (2)
  • ntp (2)
  • php (2)
  • php oracle (2)
  • podman (2)
  • radius (2)
  • reverse proxy (2)
  • snmp (2)
  • sqlite3 (2)
  • ssh (2)
  • sudo (2)
  • tcpdump (2)
  • timezone (2)
  • vmware (2)
  • wireshark (2)
  • Anti-spam (1)
  • AppSec (1)
  • Apple (1)
  • Blockchain (1)
  • C++ (1)
  • DevOps (1)
  • Download (1)
  • Edge Computing (1)
  • Firefox (1)
  • Google Dorks (1)
  • IRQ (1)
  • Infoscale (1)
  • Jira (1)
  • Makefile (1)
  • Memory (1)
  • NEBS (1)
  • Penetration Testing (1)
  • Powershell (1)
  • SQL Injection (1)
  • ShmooCon (1)
  • Software Defined Radio (1)
  • Squid (1)
  • Storage Foundation (1)
  • Veritas Cluster Server (1)
  • Veritas Operations Manager (1)
  • Virtualization (1)
  • alternatives (1)
  • ansible (1)
  • apache (1)
  • awk (1)
  • beautifulsoup (1)
  • betabot (1)
  • bigdata (1)
  • bigvideo.js (1)
  • blackhat (1)
  • blue-team (1)
  • book (1)
  • botnet (1)
  • bower (1)
  • bruce (1)
  • build-essentials (1)
  • buildah (1)
  • centos (1)
  • certificate (1)
  • checkpoint (1)
  • cloud security (1)
  • cloudera (1)
  • code (1)
  • comm (1)
  • coredump (1)
  • curl (1)
  • daemontools (1)
  • database (1)
  • date (1)
  • ddos (1)
  • dialog (1)
  • django (1)
  • ebowla (1)
  • editcap (1)
  • emacs (1)
  • enumeration (1)
  • epel (1)
  • etcd (1)
  • ethernet (1)
  • fifo (1)
  • flutter (1)
  • fuser (1)
  • gettimeofday (1)
  • govc (1)
  • grub (1)
  • hadoop (1)
  • haproxy (1)
  • hpux (1)
  • http (1)
  • httperf (1)
  • integration (1)
  • iphone (1)
  • ipmi (1)
  • ipmitool (1)
  • iscsiadm (1)
  • jailbreak (1)
  • jvm (1)
  • loggen (1)
  • mitmf (1)
  • mongodb (1)
  • moongen (1)
  • mount (1)
  • multicast (1)
  • nagios (1)
  • netcat (1)
  • nic (1)
  • nsa-leaked-hack-tools (1)
  • nsca (1)
  • openfiler (1)
  • openjdk (1)
  • opensource (1)
  • os watcher (1)
  • osx (1)
  • packet sniffing (1)
  • payload (1)
  • pcap (1)
  • pentes (1)
  • port-mirroring (1)
  • ps (1)
  • qemu (1)
  • raspberry pi (1)
  • rdp (1)
  • remi (1)
  • replication (1)
  • ripe (1)
  • rpm (1)
  • rsync (1)
  • screen (1)
  • sed (1)
  • signals (1)
  • snmptrap (1)
  • solaris (1)
  • ssmtp (1)
  • stress testing (1)
  • suricata (1)
  • swap (1)
  • swapspace (1)
  • switch (1)
  • sysdig (1)
  • syslog-ng (1)
  • tac (1)
  • tampermonkey (1)
  • tokumx (1)
  • torrent (1)
  • tzdata (1)
  • unix (1)
  • varnish (1)
  • vim (1)
  • virtualbox (1)
  • volfied (1)
  • vvr (1)
  • wireless hacking (1)
  • wkhtmltopdf (1)
  • yum (1)

Bookmarks

  • OWASP
  • Hacker Rank
  • İbrahim Baliç Youtube Channel
  • g0tm1lk blog
  • Shells Archive

Blog Archive

  • ▼  2024 (3)
    • ▼  September (1)
      • nmap: smb enumeration
    • ►  January (2)
  • ►  2023 (8)
    • ►  December (1)
    • ►  November (1)
    • ►  October (2)
    • ►  August (1)
    • ►  June (1)
    • ►  March (1)
    • ►  February (1)
  • ►  2022 (23)
    • ►  December (1)
    • ►  November (1)
    • ►  October (1)
    • ►  September (1)
    • ►  August (14)
    • ►  July (1)
    • ►  June (1)
    • ►  January (3)
  • ►  2021 (11)
    • ►  December (5)
    • ►  October (2)
    • ►  August (2)
    • ►  June (1)
    • ►  January (1)
  • ►  2020 (31)
    • ►  December (4)
    • ►  November (2)
    • ►  October (7)
    • ►  September (2)
    • ►  July (3)
    • ►  June (3)
    • ►  May (7)
    • ►  April (1)
    • ►  January (2)
  • ►  2019 (12)
    • ►  December (1)
    • ►  October (2)
    • ►  July (4)
    • ►  June (3)
    • ►  April (2)
  • ►  2018 (48)
    • ►  December (1)
    • ►  November (4)
    • ►  October (18)
    • ►  September (9)
    • ►  May (6)
    • ►  April (1)
    • ►  March (6)
    • ►  February (2)
    • ►  January (1)
  • ►  2017 (44)
    • ►  December (7)
    • ►  November (2)
    • ►  October (1)
    • ►  September (4)
    • ►  August (5)
    • ►  July (5)
    • ►  June (3)
    • ►  May (1)
    • ►  March (4)
    • ►  February (8)
    • ►  January (4)
  • ►  2016 (65)
    • ►  December (7)
    • ►  November (3)
    • ►  October (5)
    • ►  September (1)
    • ►  August (5)
    • ►  July (1)
    • ►  June (6)
    • ►  May (3)
    • ►  April (5)
    • ►  March (9)
    • ►  February (5)
    • ►  January (15)
  • ►  2015 (83)
    • ►  November (2)
    • ►  October (11)
    • ►  September (4)
    • ►  August (3)
    • ►  July (6)
    • ►  June (4)
    • ►  May (6)
    • ►  April (6)
    • ►  March (5)
    • ►  February (11)
    • ►  January (25)
  • ►  2014 (10)
    • ►  December (8)
    • ►  November (2)
Awesome Inc. theme. Powered by Blogger.