• Skip to main content
  • Skip to primary sidebar
  • Skip to secondary sidebar
  • Skip to footer
  • Google Dorks
  • Shodan Queries
  • Malware Sources
  • Privacy Policy

PenTestIT

Your source for all things Information Security!

You are here: Home / 2018 / Archives for April 2018

Archives for April 2018

UPDATE: P4wnP1 v0.1.0-alpha1

Posted: 5 years ago by @pentestit 22114 views

P4wnP1 update time guys and this time it is the P4wnP1 v0.1.0-alpha1, the first pre-built image! It has almost been a year since I last posted about this Raspberry Pi based, customizable USB attack platform and yet, what an update! Read on! Read more about UPDATE: P4wnP1 v0.1.0-alpha1

List of Adversary Emulation Tools

Posted: 5 years ago by @pentestit 136335 views
Updated: August 6, 2020 at 5:12 pm

Every once in a while, the security industry brings forth a new buzz word and introduces terminologies that sound über cool and generate lot's of interest. One such word going around now-a-days is automated "adversary emulation". Let's first understand what this really means. Adversary emulation/simulation offers a method to test a network’s resilience against an advanced Read more about List of Adversary Emulation Tools

UPDATE: OWASP Dependency-Check 3.1.2

Posted: 5 years ago by @pentestit 9485 views

My first post about this open source OWASP project was about an older version. This post discusses the changes made to the open source software composition analysis utility in the latest release yesterday. This is the OWASP Dependency-Check 3.1.2! Most importantly NVD urls were updated. Earlier, they used to point Read more about UPDATE: OWASP Dependency-Check 3.1.2

AutoSploit = Shodan/Censys/Zoomeye + Metasploit

Posted: 5 years ago by @pentestit 22559 views

AutoSploit

I know, I know that you already have read about AutoSploit and used it probably since word got out about this auto exploitation tool some two months ago. However, between then and now, a lot has changed with the tool and this post is about that. Read more about AutoSploit = Shodan/Censys/Zoomeye + Metasploit

Apache JMeter RMI Code Execution PoC (CVE-2018-1297)

Posted: 5 years ago by @pentestit 13019 views
Updated: April 10, 2018 at 3:49 am

Recently, I read about a remote code execution (RCE) vulnerability; CVE-2018-1297, that affects yet another Apache product - JMeter. As you might know, "The Apache JMeter™ application is open source software, a 100% pure Java application designed to load test functional behavior and measure performance." The CVE Mitre page does not mention a lot of details, mentioning just that Read more about Apache JMeter RMI Code Execution PoC (CVE-2018-1297)

Next Page »

Primary Sidebar

Search

  • Email
  • Facebook
  • GitHub
  • Twitter

More to See

UPDATE: Merlin v0.9.0

September 15, 2020 By Black

UPDATE: Kali Linux 2020.3 Release

August 27, 2020 By Black

Popular Posts

  • UPDATE: Empire 3.0.1 23 views
  • List of Adversary Emulation Tools 22 views
  • UPDATE: Covenant v0.5 21 views
  • UPDATE: Kali Linux 2020.1 Release 18 views
  • List of Open Source C2 Post-Exploitation Frameworks 18 views
  • UPDATE: Empire 3.2.3 14 views
  • UPDATE: Infection Monkey 1.7.0 12 views
  • UPDATE: FudgeC2 0.5.4 10 views
  • UPDATE: Prowler 2.0 Beta 9 views
  • List of Operating Systems for OSINT (Open-Source Intelligence) 9 views

Secondary Sidebar

Categories

  • Docker Security
  • Fuzzing
  • Malware Analysis
  • Offensive Security
  • Open Source
  • OSINT
  • Penetration Testing
  • Reverse Engineering
  • Site News
  • Tool Updates
  • Tools
  • Vulnerability Assessment
  • Web Application Security
  • Wireless

Archives

  • September 2020
  • August 2020
  • July 2020
  • June 2020
  • May 2020
  • April 2020
  • March 2020
  • February 2020
  • January 2020
  • December 2019
  • November 2019
  • October 2019
  • September 2019
  • August 2019
  • July 2019
  • June 2019
  • May 2019
  • April 2019
  • March 2019
  • February 2019
  • January 2019
  • December 2018
  • November 2018
  • October 2018
  • September 2018
  • August 2018
  • July 2018
  • May 2018
  • April 2018
  • March 2018
  • February 2018
  • January 2018
  • December 2017
  • November 2017
  • October 2017
  • September 2017
  • August 2017
  • July 2017
  • June 2017
  • May 2017
  • April 2017
  • March 2017

Footer

Featured Post

WordSteal: Steal NTLM Hashes from a Remote Computer!

June 14, 2017 By Black

This is a short post about WordSteal, an open source Python script that steals Microsoft NTLM hashes for you. It does so by leveraging the Metasploit toolkit to steal Microsoft NTLM hashes containing a malicious image payload. It has been known for quiet some time that Microsoft Word versions upwards of Office 95 allow us toRead more about WordSteal: Steal NTLM Hashes from a Remote Computer!

Recent

  • UPDATE: Empire v3.4.0
  • UPDATE: Merlin v0.9.0
  • UPDATE: Kali Linux 2020.3 Release
  • UPDATE: FudgeC2 0.5.7
  • UPDATE: PoshC2 v6.0

Tags

Adversary Emulation (18) Anchore (9) APT2 (15) Brute Force (15) CALDERA (9) Cross-Site Scripting (8) cuc (11) docker (34) docker scan (10) dockerscan (12) Empire (11) Empire Project (10) Infection Monkey (7) Invoke-Phant0m (8) Kali Linux (25) malware analysis (9) man-in-the-middle (8) Metasploit (32) Microsoft Windows (38) Mimikatz (28) MITRE ATT&CK™ (20) Nmap (34) open source (109) OSINT (14) OSRFramework (17) OWASP (13) OWASP Dependency-Check (14) penetration testing (26) penetration testing toolkit (25) post-exploitation (27) PowerShell (42) python (73) Raspberry Pi (10) RedSnarf (13) Responder (14) Shodan (7) Short Post (10) software composition analysis (13) SQL injection (10) Sysdig Falco (9) vulnerability assessment (21) Web Application Security (20) WiFi (12) Wireshark (11) WordPress (9)

Copyright © 2023 - PenTestIT | Information shared to be used for LEGAL purposes only!