David Cyber Security

💥 Exciting update and launch competition! 📢 Folks, I'm happy to announce another important milestone for @PwnedLabs - the launch of the 𝗠𝗶𝗰𝗿𝗼𝘀𝗼𝗳𝘁 𝗖𝗹𝗼𝘂𝗱 𝗔𝘁𝘁𝗮𝗰𝗸 𝗮𝗻𝗱 𝗗𝗲𝗳𝗲𝗻𝘀𝗲 𝗕𝗼𝗼𝘁𝗰𝗮𝗺𝗽 - and our first certification! 𝗧𝗼 𝘄𝗶𝗻 𝗮 𝘃𝗼𝘂𝗰𝗵𝗲𝗿, 𝗷𝘂𝘀𝘁 𝗹𝗶𝗸𝗲 𝗮𝗻𝗱 𝗿𝗲𝘁𝘄𝗲𝗲𝘁 𝘁𝗵𝗶𝘀 𝗽𝗼𝘀𝘁. 5 vouchers are available and will be drawn randomly. This comprehensive 4-week bootcamp and its structured learning path provide students with foundational concepts, essential security tools and techniques, and instruction in attacking and defending Azure and Microsoft 365 environments. Students who successfully complete the 4-week bootcamp and structured learning path can then attempt the exam lab to try and earn the 𝗠𝗶𝗰𝗿𝗼𝘀𝗼𝗳𝘁 𝗖𝗹𝗼𝘂𝗱 𝗥𝗲𝗱 𝗧𝗲𝗮𝗺 𝗣𝗿𝗼𝗳𝗲𝘀𝘀𝗶𝗼𝗻𝗮𝗹 (𝗠𝗖𝗥𝗧𝗣) certification. This has been one of the main things that our community has been asking for. What can you expect to learn? -> bootcamps.pwnedlabs.io/mcrtp-bootcamp

🍯Introducing Respotter Respotter is a Responder honeypot! It helps you catch attackers and red teams as soon as they spin up Responder in your environment. github.com/lawndoc/Respot…

The amount of free training courses available these days for #cybersecurity is wild. People ask me if its worth paying for a specific course? First, have you seen all the free material out there? Lets dig into a selection! 👇

#Wireshark? No, network tracing is built in to Windows so can get a trace without installing anything & analyse with Wireshark. Get etl2pcapng from @github to convert etl output to pcap format for Wireshark techcommunity.microsoft.com/t5/core-infras…

Anything that can't go on forever will eventually stop. 40 years of declining worker power shattered the American Dream (TM), producing multiple generations whose children fared worse than their parents, cratering faith in institutions and hope for a better future. 1/

Pre-built statically linked and stripped binaries (gdb, socat, busybox, tcpdump, strace, lsof, ...) for multiple architectures (arm, aarch64, aarch64, powerpc, riscv64, i586, x86_64, ...): github.com/leommxj/prebui…

If you're not containerizing your neo4j database for Bloodhound, you're doing it wrong. docker run -itd -p 7687:7687 -p 7474:7474 --env NEO4J_AUTH=neo4j/YOURPASSWORD -v $(pwd)/neo4j:/data neo4j:4.4-community Instantly transferrable and redeployable for colleagues. #RedTeamTips

If you're on an engagement, keep an eye out for the SPN HTTP/<company>.kerberos.okta.com. It provides delegated auth to Okta for a compromised AD user (and usually doesn't require MFA when proxied). getST.py -spn HTTP/company.kerberos.okta.com.

JavaScript Analysis for Pentesters | kpwn.de kpwn.de/2023/05/javasc…

100 Days of Hacking! Day 60 #Special ⬇ ~# Hacking CI/CD 🔥 Pentesting CI/CD Methodology github.com/carlospolop/ha… A deliberately vulnerable CI/CD environment. Learn CI/CD security through multiple challenges github.com/cider-security… Awesome CI/CD Security github.com/myugan/awesome… Thinking Like a Hacker: Stealing Secrets with a Malicious GitHub Action blog.gitguardian.com/thinking-like-… Hacking CI/CD (Basic Pipeline Poisoning) youtube.com/watch?v=fcibOy… Real-world stories of how we’ve compromised CI/CD pipelines news.ycombinator.com/item?id=299653… Visualizing CI/CD from an attacker’s perspective cidersecurity.io/blog/insights/… Automating Penetration Testing in a CI/CD Pipeline stelligent.com/2016/04/28/aut… #cybersecurity #Pentesting #Hacking #bugbountytips #infosec #cybersecuritytips #redteam #CTF #pwn #100DaysOfHacking #networksecurity #Software #coding #programming #computer #devops

From internet bxmbn.medium.com/how-i-test-for…

Last week I had an opportunity to give an online lecture about containers to students at Kyoto University. medium.com/nttlabs/the-in… Thank you to @daisuke_k sensei for inviting me.

The NSA has a free Ghidra debugging class if anyone is interested 👇 ghidra/GhidraDocs/GhidraClass/Debugger at master · NationalSecurityAgency/ghidra · GitHub github.com/NationalSecuri…

For those that haven't played with smbcrawler by @mr_mitm - You should give it a shot, it's really well done: github.com/SySS-Research/…

RunAsPasswd - github.com/Sq00ky/RunAsPa… There's been a few scenarios where I've wanted to use the runas command in Windows, but haven't been in a fully interactive shell, meaning I could never input the password. So I built a clone that adds a -p / --password flag :D

Enjoyed this medium post. It has some excellent recommendations for studying Active Directory. Chisel stuff is spot on. 👇 “AD FOR OSCP (Active Directory Guide)” by Abhishekgk link.medium.com/SSaz6xsdqzb

New Video!🚨🚨 Just posted the latest episode from the cloud hacking series! In this episode of cloud hacking we take a look at the common vulnerabilities and attacks in a cloud infrastructure. 👉🏼 youtu.be/d6QYhkzUQZ8

Releasing a NFS Client today, it's written in Go, has file list, upload, download, delete, make directory and delete directory functions without having to mount the drive or permissions (locally) to do so. This can be super helpful from a Win host. github.com/mubix/nfsclient

Capsulecorp AD Pentest (Hyper-v) The Capsulecorp Pentest is a small virtual network managed by Vagrant and Ansible on Hyper-V. It contains four Windows virtual machines configured with various vulnerable services. This project can be used to learn net… t.me/hackgit/8145

Need a full AD lab with 20 windows servers +Kali+win logging+sysmon+splunk to test attack techniques and review the resulting telemetry ? Attack Range has your covered in ~30m ⌨️python attack_range.py build Config🔗gist.github.com/mvelazc0/77013… Attack Range 🔗 github.com/splunk/attack_…