Kerberoasting Simplified
Introduction As Kerberos is an authentication protocol it is possible to perform brute-force attacks against it (providing we are careful). Kerberos brute-force has a lot
Kerberoasting initial: AS-REP Roasting
Introduction AS-REP roasting is an attack that is often-overlooked in my opinion it is not extremely common as you have to explicitly set Accounts Does not Require
Herpaderping process– Evading Windows Defender Security
Evading windows defender security is always an interesting topic for information security professionals. When designing products for securing Windows platforms, many engineers in this field
Powershell Restrictions bypasses
In most mature environments and in most of these tests, access to command line tools is restricted. Employees typically cannot spawn Command Prompt or PowerShell.
Decrypting IOS apps Essentials
Frida way:- Step 1: Install Frida on the system (Mac/Windows) and iPhone I’m using my Linux pentesting box and installed Frida using #pip install Frida-tools Step 2: install
Mysql UDF Basics and Exploitation
So what is a UDF? It is a way to extend MySQL with a new function that works like a native (built-in) MySQL function; i.e.,
The art of file uploading :- pro level
I have recently published a blog post on use of .XAMLX files to execute command on an IIS based application. This blog has been has
Creating Rooted AVD in Android Studio
For a security enthusiast, a rooted Android device is essential to perform dynamic assessments of Android applications. They either rely on a physical device or
Insecure Data storage Analysis of iOS Applications
One might think that we are done with the static analysis of the application, but it is not so. We still need to look further
Analyze the Local Data Storage Of IPA from iOS device
.IPA is the package file for an iOS application. The difference is that an .IPA file can only be installed on a non-jailbroken iPhone via