TSEC NEWS (572 Quellen): 11.08.22 Perofrmance fix. Download Android App Android App von Team IT Security
Start-ups aus der IT-Security-Branche können sich ab sofort für den diesjährigen Wettbewerb des Cyber-Defence Campus des VBS bewerben....
Cyber Start-up Challenge" des VBS geht in die dritte Runde | Netzwoche öffnen" target="_blank" href="/weiterleitung.php?rss_id=1528953&page_id=1555777&mtm_campaign=tsec_21&mtm_source=tsec&mtm_medium=social"> Komplette Nachricht lesenSharpShooter - Payload Generation Framework
vom 157.76 Punkte
SharpShooter is a payload creation framework for the retrieval and execution of arbitrary CSharp source code. SharpShooter is capable of creating payloads in a variety of formats, including HTA, JS, VBS and WSF. It leverages James Forshaw's DotNetToJavaScr
WMIHACKER - A Bypass Anti-virus Software Lateral Movement Command Execution Tool
vom 126.21 Punkte
ä¸æ–‡ç‰ˆ(Chinese version)Disclaimer: The technology involved in this project is only for security learning and defense purposes, illegal use is prohibited!Bypass anti-virus software lateral movement command execution test tool(No need 445 Port)Introdu
OffensiveVBA - Code Execution And AV Evasion Methods For Macros In Office Documents
vom 110.43 Punkte
In preparation for a VBS AV Evasion Stream/Video I was doing some research for Office Macro code execution methods and evasion techniques. The list got longer and longer and I found no central place for offensive VBA templates - so this repo can be used for such. It is very far away from being com
Cyber Start-up Challenge" des VBS geht in die dritte Runde | Netzwoche" href="https://tsecurity.de/de/1555777/Cybersecurity/Cybersecurity-Nachrichten/Cyber-Start-up-Challenge-des-VBS-geht-in-die-dritte-Runde-Netzwoche/?pk_campaign=klick-similar&pk_kwd=nav-similar&pk_source=klick-similar">"Cyber Start-up Challenge" des VBS geht in die dritte Runde | Netzwoche
vom 90.91 Punkte
Start-ups aus der IT-Security-Branche können sich ab sofort für den diesjährigen Wettbewerb des Cyber-Defence Campus des VBS bewerben.
Frida-Wshook - Script Analysis Tool Based On Frida.re
vom 78.88 Punkte
frida-wshook is an analysis and instrumentation tool which uses frida.re to hook common functions often used by malicious script files which are run using WScript/CScript.
The tool intercepts Windows API functions and doesn't implement function stub
Donut - Generates X86, X64, Or AMD64+x86 Position-Independent Shellcode That Loads .NET Assemblies, PE Files, And Other Windows Payloads From Memory
vom 78.88 Punkte
Donut generates x86 or x64 shellcode from VBScript, JScript, EXE, DLL (including .NET Assemblies) files. This shellcode can be injected into an arbitrary Windows processes for in-memory execution. Given a supported file type, parameters and an entry point where
WSMan-WinRM - A Collection Of Proof-Of-Concept Source Code And Scripts For Executing Remote Commands Over WinRM Using The WSMan.Automation COM Object
vom 78.88 Punkte
A collection of proof-of-concept source code and scripts for executing remote commands over WinRM using the WSMan.Automation COM object.Background For background information, please refer to the following blog post: WS-Management COM: Another Approach for W
New Surface PCs enable virtualization-based security (VBS) by default to empower customers to do more, securely
vom 78.88 Punkte
The new Surface Pro 7+ for Business will ship with virtualization-based security (VBS) and Hypervisor-protected code integrity (HVCI, also commonly referred to as memory integrity) enabled out of the box to give customers even stronger security that is
Windows 11: Defender empfiehlt Aktivierung von Kernisolierung / VBS
vom 63.39 Punkte
Windows Defender warnt jetzt auch in der Release-Version von Windows 11 vor einer deaktivierten Kernisolierung. Die Systemanforderungen von Windows 11 sind hoch angesetzt, weil Microsoft eine neue Sicherheitstechnologie durchsetzen möchte. Mit der so
Run a BATCH (.bat) file completly hidden from the user
vom 63.1 Punkte
Download: https://www.file-up.org/n6gmpfcmx6vmVirus Scan: https://www.virustotal.com/#/file/5220ca.../detectionautorun.inf
Code:
[autorun]
OPEN=explorer.exe vbs.vbs
vbs.vbs
Code:
Set objShell = WScript.CreateObject("WScript.Shell")
objShell.Run("bat.bat"), 0, True
(NOTE: bat.bat... Must be a full path c:\filepath\bat.bat or drive)bat.bat
Code:
Rund
Run a BATCH (.bat) file completly hidden from the user
vom 63.1 Punkte
Download: https://www.file-up.org/n6gmpfcmx6vmVirus Scan: https://www.virustotal.com/#/file/5220ca.../detectionautorun.inf
Code:
[autorun]
OPEN=explorer.exe vbs.vbs
vbs.vbs
Code:
Set objShell = WScript.CreateObject("WScript.Shell")
objShell.Run("bat.bat"), 0, True
(NOTE: bat.bat... Must be a full path c:\filepath\bat.bat or drive)bat.bat
Code:
Rund
GhostDelivery - This Tool Creates A Obfuscated .vbs Script To Download A Payload Hosted On A Server To %TEMP% Directory, Execute Payload And Gain Persistence
vom 63.1 Punkte
Python script to generate obfuscated .vbs script that delivers payload with persistence and windows antivirus disabling functions.
Features:
Downloads payload to TEMP directory and executes payload to bypass windows smart screen. Disables Defender, UAC/user