Advertisement · 728 × 90

Posts by Yehuda Smirnov

Post image

Excited to release a tool I've been working on lately - ShareFiltrator

ShareFiltrator finds credentials exposed in SharePoint/OneDrive via the Search API (_api/search/query) and also automates mass downloading of the discovered items.

Blog: blog.fndsec.net/2025/04/02/b...

1 year ago 1 0 0 0
Preview
GitHub - CrowdStrike/sccmhound: A BloodHound collector for Microsoft Configuration Manager A BloodHound collector for Microsoft Configuration Manager - CrowdStrike/sccmhound
1 year ago 6 3 0 0

Thank you! Bofhound has been incredible for us!

1 year ago 0 0 0 0
Post image Post image

Excited to share a tool I've been working on - ShadowHound.
ShadowHound is a PowerShell alternative to SharpHound for Active Directory enumeration, using native PowerShell or ADModule (ADWS). As a bonus I also talk about some MDI detections and how to avoid them.

blog.fndsec.net/2024/11/25/s...

1 year ago 32 10 0 1
How To Use MSSQL CLR Assembly To Bypass EDR BackgroundA few days ago, I dealt with a blackmail incident involving an MSSQL database, which potentially evaded EDR detection. I intend to share the entire process. Upon analyzing the situation, I f
1 year ago 4 5 0 0
Preview
GitHub - matro7sh/myph: shellcode loader for your evasion needs shellcode loader for your evasion needs. Contribute to matro7sh/myph development by creating an account on GitHub.
1 year ago 5 4 0 0
Preview
GitHub - som3canadian/Mythic_NimSyscallPacker_Wrapper: Mythic C2 wrapper for NimSyscallPacker Mythic C2 wrapper for NimSyscallPacker. Contribute to som3canadian/Mythic_NimSyscallPacker_Wrapper development by creating an account on GitHub.
1 year ago 6 4 0 0
Advertisement
Preview
Pots and Pans, AKA an SSLVPN - Palo Alto PAN-OS CVE-2024-0012 and CVE-2024-9474 Note: Since this is 'breaking' news and more details are being released, we're updating this post as more details become available (and as we think of better memes). Mash that F5 key every so often fo...

Favorite quote from WatchTowr's blog about PAN-OS vuln:

> I guess auto_prepend_file actually has legitimate use besides writing PHP exploits.

labs.watchtowr.com/pots-and-pan...

1 year ago 3 1 1 0
TrustedSec Tech Brief - November 2024
TrustedSec Tech Brief - November 2024 YouTube video by TrustedSec

TrustedSec Tech Brief

00:30 - NTLM Hash Disclosure Zero-Day
01:45 - Task Scheduler Vulnerability
02:30 - Exchange Server Issues
03:15 - AD Certificate Services Flaw
04:00 - Vulnerability Breakdown
04:45 - Palo Alto Zero-Day
05:30 - FortiGate VPN Update

www.youtube.com/watch?v=3mSD...

1 year ago 61 21 3 1
Preview
Last Week in Security (LWiS) - 2024-11-18 Arc browser RCE (@RenwaX23), more Fortinet woes (@SinSinology), PowerHuntShares v2 (@_nullbind), make_token_cert (@freefirex2), BOFs without DFR (@netbiosX), and more!

Arc browser RCE, more Fortinet woes (@sinsinology.bsky.social), PowerHuntShares v2, make_token_cert, BOFs without DFR (@netbiosx.bsky.social), and more!

blog.badsectorlabs.com/last-week-in...

1 year ago 5 2 0 0

AdobeFips - Adobe Reader Lolbin

www.hexacorn.com/blog/2024/11...

1 year ago 9 5 1 0
Post image

Beyond good ol’ Run key, Part 144

www.hexacorn.com/blog/2024/11...

1 year ago 23 10 1 0