Necromancer Labs

@reverseame Awesome article

LG WebOS TV Path Traversal, Authentication Bypass and Full Device Takeover #LGWebOSTV #PathTraversal #AuthenticationBypass #DeviceTakeover #Vulnerability ssd-disclosure.com/lg-webos-tv-pa…

@RobertDaleSmith lol this is awsome

If you love the movie Hackers 👉 hackers-1995.vercel.app

@oobs_io @yibarrack Great article

Technical analysis of the TP-Link ER605 Pre-Auth RCE exploit chain by @yibarrack. This writeup documents the reproduction of CVE-2024-5242, 5243, and 5244, detailing a 2-stage exploitation process to bypass ASLR on MIPS32 LE. Full report: oobs.io/posts/er605-1d…

uart-push Like scp, but for serial connections Easily get binaries (like an embbridge agent) onto an embedded device, useful when ssh and telnet can’t be used but you can achieve UART github.com/Necromancer-La…

embbridge - like adb, but edb Check out our rad interactive adb-like device bridge for embedded systems. Shell, file transfer, and firmware dumping for forensics and research. @badsectorlabs github.com/Necromancer-La…

Introducing gocmd2 – an interactive shell framework for Go, inspired by python cmd2 by Todd Leonhardt. - Interactive shell framework - Built on Cobra - Module support - Tab completion - History - Shared state & more CLI devs, you’ll love this. 🔗 github.com/Necromancerlab…

Ligolo 0.7.x: 40d1db40d00040d1dc43d1db1db43d5ecfbe778b06e32b538bd51f24eb7398 Ligolo 0.8.x: 40d40d40d00040d00043d40d40d43d70e44c2d581076ca8e0c7ff40bb556f2 Ligolo-MP 2.0.x: 00000000000000000043d43d00043de2a97eabb398317329f027c66e4c1b01 (this is also Sliver C2’s signature)

There are likely Ligolo servers on the Internet that you can connect to with a Ligolo agent. 1. Ligolo has 3 JARM signatures. 2. Ligolo-MP's JARM is the same as Sliver C2. 3. We do not advise or condone connecting to potential Ligolo servers. necromancerlabs.com/research/paper…