Thanks to the teachers on the road of growth
Fast Open Rdpport(BypassAV) Fast Open Rdpport(BypassAV)
Some of the wordsSome days, I found when I open the RDPport maybe this action will be kill, Special the 360, So I develo
2021-10-12 Learning record
Redteam Bypass RDP
Use Basic Way To BypassUAC Use Basic Way To BypassUAC
前言铺垫于注册表、dll劫持利用的BypassUAC知识,使得基本原理更加简单易懂,具备手动尝试发现思路 UAC简介UAC(User Account Control)是微软在 Windows Vista 以后版本引入的一种安全机制,通过
2021-10-09 Learning record
Redteam Bypass UAC
Use DLL Hijack To BypassUAC(BypassAV) Use DLL Hijack To BypassUAC(BypassAV)
Some of the wordsMy main idea: Hijack the implementation based on the whitelist DLL, thereby bypassuac After a simple t
2021-10-09 Learning record
Redteam Bypass UAC
Use The Registry To Bypassuac(BypassAV) Use The Registry To Bypassuac(BypassAV)
Some of the wordsYesterday, the program can to bypassAV OR EDR, in this program I use the registry to bypassuac, now I u
2021-09-27 Learning record
Redteam Bypass UAC
Add A Scheduled Task BypassAV(WEBSHELL) Add A Scheduled Task BypassAV(WEBSHELL)
Some of the wordsAfter Windows machine obtains target Webshell in red team task, progress maintains permissions through
2021-09-20 Learning record
Redteam Bypass ScheduledTask
Add A Scheduled Task BypassAV Add A Scheduled Task BypassAV
Some of the wordsBased on the idea, I developed a small tool for adding scheduled tasks by BYpassav More personal tools
2021-09-14 Learning record
Redteam Bypass ScheduledTask
A school infrastructure system vulnerability discovery A school infrastructure system vulnerability discovery
Some of the wordsAll cases are authorized legal compliance projects. Do not carry out any penetration attacks without au
2021-09-11 Actual combat record
Redteam Logical Vulnerability Discovery Vulnerability
A financial mall vulnerability discovery A financial mall vulnerability discovery
Some of the wordsAll cases are authorized legal compliance projects. Do not carry out any penetration attacks without au
2021-09-10 Actual combat record
Logical Vulnerability Discovery Vulnerability
ConfluenceRCE【CVE-2021-26084】 ConfluenceRCE【CVE-2021-26084】
IntroductionRemote attacker in authenticated or in certain circumstances without authentication, by constructing a malic
2021-09-09 Simple repetition
Redteam RCE Confluence CVE-2021-26084
CVE-2021-1732 Windows Privilege promotion CVE-2021-1732 Windows Privilege promotion
IntroductionBITTER APT's 0day exploit, used in one of its disclosed attacks, allows ordinary user processes to be gi
2021-09-07 Learning record
Redteam Windows Privilege Promotion LPE CVE-2021-1732
MS17010 Common ETERNAL Series Attack MS17010 Common ETERNAL Series Attack
Some of the wordsMaybe talke about the 17010 you just know the ETERNALBLUE? Now I will take more way to attack the ETERN
2021-09-07 Learning record
Redteam Bypass MS17010 ETERNALCHAMPION ETERNALROMANCE ETERNALSYNERGY ETERNALBLUE
MS17010 Bypass Attack MS17010 Bypass Attack
Some of the wordsAs we all know how to attack the ms17010, now I will tell you a way to bypass the EDR OR AV, of course
2021-09-07 Learning record
Redteam Bypass MS17010 ETERNALCHAMPION ETERNALROMANCE ETERNALSYNERGY ETERNALBLUE
4 / 7