Hüseyin Kaplan
@husey4n6🕵️♂️🏴Digital Forensic Engineer | CyberSecurity | AdliBilisim | CTI | #linux #Writeup
Similar User
@bdullahC
@eredot_pkfr
@_d4rkbrain
@_erdemss_
@MBerkaySoylu
@Nedrian0
@korcankaraokcu
@baydarmazlum
@baranertemir1
@canumaydev
@wedply
@zul3yh
@AlexandreCyber
Free Offensive Security Notes (OSCP, OSWE, OSEP, OSED) OSCP NOTES AD: drive.google.com/file/d/14jirVK… OSCP Notes : drive.google.com/file/d/1eYUaea… OSWE Notes: drive.google.com/file/d/1KIc_qs… OSEP Notes: drive.google.com/file/d/1L9mfwf… OSED Notes: drive.google.com/file/d/1_mPHr3… #oscp #osed #oswe #osep #osce³…
Popular SharpHound collection methods. All → Very large volume of LDAP/Kerberos traffic to DC. SMB to many systems. ExcludeDCs → Small # of conns to DC. SMB to many systems. Stealth → Small # of conns to DC. SMB to select systems. #ThreatHunting #DFIR
GitHub - CyberSecurityUP/OSCE3-Complete-Guide: OSWE, OSEP, OSED, OSEE github.com/CyberSecurityU…
Windows Privileges Cheat Sheet 🔴⚫️Full HD Image: github.com/Ignitetechnolo… #infosec #cybersecurity #hacking #pentesting
#PCAP file analysis for #EMOTET #Malware using #OpenSource tool #arkime soon InshAllah will be added to #ELK_DFIR_VM, Network #Forensics #DFIR
Apple TV 4 with iOS 14.7. Jailbreak with @checkra1n Full file system with @ElcomSoft and @MagnetForensics Processing with @AlexisBrignoni iLEAPP and @iamevltwin APOLLO Nice :)
Strange PPT maldoc with low detection rates since 2022-02-02. MD5: c0060c0741833af67121390922c44f91 PPT file>wscript.exe>powershell.exe>rundll32.exe [+]Exec wscript when user moves mouse [+]Wscript exec powershell [+]PS download the XORed DLL. [+]Exec it using rundll32.exe
![doc_guard's tweet image. Strange PPT maldoc with low detection rates since 2022-02-02.
MD5: c0060c0741833af67121390922c44f91
PPT file>wscript.exe>powershell.exe>rundll32.exe
[+]Exec wscript when user moves mouse
[+]Wscript exec powershell
[+]PS download the XORed DLL.
[+]Exec it using rundll32.exe](https://pbs.twimg.com/media/FcpvslFXwAEcoRJ.jpg)
Day 6 #100DaysOfSigma How to possibly catch a zero day on a web server, look for suspicious children from the server process. Sigma: Shells Spawned by Web Servers github.com/SigmaHQ/sigma/… NSA recommended child process list to baseline: media.defense.gov/2020/Jun/09/20… Happy Huntin'
SOLIDBIT Ransomware Note:
Thanks to @BushidoToken for the samples, I share the Yara rules for the ransomware Solidbit, Darky Lock, Lockbit Black, Maui. The samples are available on Bazaar. github.com/StrangerealInt…
Malware Analysis & Reverse Engineering MindMap: #infosec #cybersecurity #pentesting #oscp #informationsecurity #hacking #cissp #redteam #technology #DataSecurity #CyberSec #Hackers #tools #bugbountytips #Linux #websecurity #Network #NetworkSecurity #cybersecurityawareness
#DFIR @DFRWS recently published some research I worked on about iOS settings for: 📱⏱🔒Display Auto-Lock 📱⏱🔐Require Passcode dfir.pubpub.org/pub/khnqi0ff Additional iOS 15 details can be found via by blog: theforensicscooter.com/2021/09/05/ios…
Active Directory "WriteOwner" DACL abuse, now in Python 🐍 github.com/SecureAuthCorp… And icymi, "WriteDACL" abuse, also in Python now 🐍 github.com/SecureAuthCorp… One DACL abuse is left implementing, "Logon script"
Best search🔍engines for Pentesters and Security Professionals. → Shodan .io → Censys .io → Hunter .io → ZoomEye .org → WiGLE .net → PublicWWW .com → Pulsedive .com → intelx .io → reposify .com → viz. greynoise .io Which one is your favourite?😇
Some time ago, I have published the tool allowing you to craft a token containing TrustedInstaller. Today, the Mk2 version appeared: no psexec.exe required, less talkative and with a bit cleaner code. The C source code and the compiled EXE, as usual: github.com/gtworek/PSBits…
sss.lunizz.com icin bulut uzerine bir kaynak derliyorum, onemli youtube videolarini ve turkce alt yazili olanlari topladim. bildiginiz guzel, turkce veya turkce alt yazi eklenebilen ucretsiz kaynaklari listelermisiniz? ekleyelim.. tesekkurler, simdiden.
Log4j Exploitation Detection Rule gist.github.com/Neo23x0/e4c8b0… #CyberSecurity #log4j
Amazon’un CEO’su Jeff Bezos'un telefonun hacklenmesi olayını duymayanınız kalmamıştır diye düşünüyorum.Bu telefonun(iPhone) forensics incelemesini FTI Consulting firması yapmış.Hazırladıkları raporu merak ediyorsanız aşağıdaki linkten indirebilirsiniz. s3.documentcloud.org/documents/6668…
United States Trends
- 1. Iran 249 B posts
- 2. #4YearsOfEvermore 5.395 posts
- 3. #instagramdown 47,4 B posts
- 4. #idegen N/A
- 5. Teel 6.311 posts
- 6. $VNTR 6.132 posts
- 7. West Point 43,6 B posts
- 8. Crochet 22,9 B posts
- 9. White Sox 10,4 B posts
- 10. Christopher Wray 35,3 B posts
- 11. #facebookdown 25,9 B posts
- 12. WhatsApp 419 B posts
- 13. New Jersey 116 B posts
- 14. Tucker 52 B posts
- 15. Austin Butler 8.357 posts
- 16. Pentagon 37,3 B posts
- 17. Gabriel Jesus 5.579 posts
- 18. Sinema 9.518 posts
- 19. $TSLA 39,7 B posts
- 20. Winged Eagle 2.524 posts
Who to follow
-
Abdullah 🇹🇷
@bdullahC -
Erdoğan Yoksul
@eredot_pkfr -
#./Burak
@_d4rkbrain -
Harun ERDEM
@_erdemss_ -
Just Hunt
@MBerkaySoylu -
Nadeem Elnabawy
@Nedrian0 -
Korcan
@korcankaraokcu -
Mazlum BAYDAR
@baydarmazlum -
erto
@baranertemir1 -
Can Umay
@canumaydev -
Wedeploy Technologies
@wedply -
Zu
@zul3yh -
Alexandre
@AlexandreCyber
Something went wrong.
Something went wrong.