C# implementation of GetProcAddress
GetProcAddress implementation in C# using only the ReadProcessMemory API call.
jeringuilla - Process injection framework in C#
jeringuilla is a tool for easy process injection. It implements several types of process injection and uses dynamic function loading using delegates and AES to encrypt payloads and strings, so the function names are not easiliy retrievable.
Portswigger Labs Writeups
I solved and created writeups for each Apprentice and Practitioner-level Portswigger lab. In this post you can find the payloads and information about the vulnerability type for each step of the exam.
Can i pwn you?
Please?
Riello UPS Restricted Shell Bypass
During a pentest we found Riello UPS systems can have their restricted configuration shell bypassed to gain full underlying operating system access.
Avoiding EDRs creating a new process
Code snippet to create a process using the PROCESS_CREATION_MITIGATION_POLICY_BLOCK_NON_MICROSOFT_BINARIES_ALWAYS_ON flag, which blocks 3rd party DLLs to be injected in it (such as EDR DLLs).
Authenticated RCE in Weblogic Servers
Weblogic servers are popular in pentests as outdated versions have RCE vulnerabilities with public exploits. However, you can exploit them uploading WAR files as well.