Search the Community

Using fibers to run in-memory code in a different and stealthy way. Description A fiber is a unit of execution that must be manually scheduled by the application rather than rely on the priority-based scheduling mechanism built into Windows. Fibers are often called lightweight threads. For more detailed information about what are and how fibers work consult the official documentation. Fibers allow to have multiple execution flows in a single thread, each one with its own registers' state and stack. On the other hand, fibers are invisible to the kernel, which makes them a stealthier (and cheaper) method to execute in-memory code than spawning new threads. Advantages The use of fibers may be advantageous for some types of payloads (like a C2 beacon) for some of these reasons: Fibers allow to run in-memory code without the need of using the instructions JMP or CALL from the loader pointing to unbacked memory regions. This execution is performed without the creation of new threads, preventing the generation of callbacks from the kernel that can be collected by an EDR. The payload fiber's stack can be hidden when the payload enters on an alertable state or when it needs to wait for a pending I/O operation. This is done using a control fiber with a normal stack that runs code from disk. This "hiding" is cheaper and easier to implement that the regular thread stack spoofing process. The fibers are invisible to the kernel and all the switching procedure happens on user space, which makes it easier to hide from an EDR. [hide][Hidden Content]]

GoTestWAF is a tool for API and OWASP attack simulation, that supports a wide range of API protocols including REST, GraphQL, gRPC, WebSockets, SOAP, XMLRPC, and others. It was designed to evaluate web application security solutions, such as API security proxies, Web Application Firewalls, IPS, API gateways, and others. Changelog v0.3.1 Fixed bugs [hide][Hidden Content]]

Search WiFi geolocation data by BSSID and SSID on different public databases. Databases: Wigle Apple OpenWifi Milnikov [hide][Hidden Content]]

Bluffy is a utility which was used in experiments to bypass Anti-Virus products (statically) by formatting shellcode into realistic looking data formats. Proof-of-concept tools, such as 0xBoku's Ninja_UUID_Runner and ChoiSG's UuidShellcodeExec, inspired the initial concept for Bluffy. So far, we implemented: UUID CLSID SVG CSS CSV [hide][Hidden Content]]

OnionSearch is a Python3 script that scrapes urls on different “.onion” search engines. Currently supported Search engines ahmia darksearchio Onionland notevil darksearchenginer Phobos onionsearchserver torgle onionsearchengine tordex tor66 tormax haystack multivac evosearch deeplink [hide][Hidden Content]]

OnionSearch is a Python3 script that scrapes urls on different “.onion” search engines.OnionSearch Currently supported Search engines ahmia darksearchio Onionland notevil darksearchenginer Phobos onionsearchserver torgle onionsearchengine tordex tor66 tormax haystack multivac evosearch deeplink [hide][Hidden Content]]

[hide][Hidden Content]]

OnionSearch OnionSearch is a Python3 script that scrapes urls on different “.onion” search engines. Currently supported Search engines ahmia darksearchio Onionland notevil darksearchenginer Phobos onionsearchserver torgle onionsearchengine tordex tor66 tormax haystack multivac evosearch deeplink [hide][Hidden Content]]

Pipe different tools with google dork Scanner [hide][Hidden Content]]

Just the code of my OSINT bot searching for sensitive data leaks on different paste sites. Search terms: credentials private RSA keys Wordpress configuration files MySQL connect strings onion links links to files hosted inside the onion network (PDF, DOC, DOCX, XLS, XLSX) [HIDE][Hidden Content]]

How to crack different hasher algorithms like MD5, SHA1 using findmyhash in Kali Linux [Hidden Content]