Mathstodon

0 posts0 participants0 posts today

ς๏гєɭคภς0๔3г :verified:Your exploit dev training journey starts right here! Corelan’s “Expert-Level Stack” exploit dev course for Windows 11 delivers unmatched depth, quality, and hands-on experience. What our students say on the <a href="https://infosec.exchange/tags/Corelan" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Corelan</a> Stack course:🗣️ “Peter will refute about every single thing you might have learned so far related to the topic in other courses… and then teach you it the right way from the ground up”See for yourself: 👉🏼👉🏼👉🏼 <a href="https://bit.ly/corelan-training" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://bit.ly/corelan-training</a><a href="https://infosec.exchange/tags/corelan" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#corelan</a> <a href="https://infosec.exchange/tags/stack" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#stack</a> <a href="https://infosec.exchange/tags/exploitdev" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#exploitdev</a> <a href="https://infosec.exchange/tags/win11" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#win11</a>

ς๏гєɭคภς0๔3г :verified:Moving from Slack to Discord. You're welcome to join, hang out, contribute to the community. Be nice. discord.gg/DjfR5ntXrb <a href="https://infosec.exchange/tags/corelancommunity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#corelancommunity</a> <a href="https://infosec.exchange/tags/corelantraining" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#corelantraining</a> <a href="https://infosec.exchange/tags/exploitdev" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#exploitdev</a> <a href="https://infosec.exchange/tags/safeplace" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#safeplace</a>

postmodernAlready enjoying the <a href="https://exploits.club/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://exploits.club/</a> newsletter. Don't let the "coming soon..." website fool you, the content is high quality.<a href="https://infosec.exchange/tags/exploitdev" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#exploitdev</a> <a href="https://infosec.exchange/tags/ExploitDevelopment" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ExploitDevelopment</a>

postmodernTIL <a href="https://blog.exploits.club/" rel="nofollow noopener noreferrer" target="_blank">exploits.club</a> and <a href="https://bug.directory/" rel="nofollow noopener noreferrer" target="_blank">bug.directory</a>.<a href="https://infosec.exchange/tags/exploitsclub" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#exploitsclub</a> <a href="https://infosec.exchange/tags/bugdirectory" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#bugdirectory</a> <a href="https://infosec.exchange/tags/exploitdev" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#exploitdev</a>

postmodernHow common is RC4 vs. RC5 in the wild? I assume there's still plenty of vulnerable legacy software out there that's still using RC4. Would still supporting RC4 be useful for writing exploits or diminishing returns? <a href="https://infosec.exchange/tags/exploitdev" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#exploitdev</a> <a href="https://infosec.exchange/tags/ExploitDevelopment" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ExploitDevelopment</a>

ronin-rbronin-exploits 1.0.6 and 1.1.0.rc2 have been released. <a href="https://ronin-rb.dev/blog/2024/06/28/ronin-exploits-1.0.6-and-1-1-0-rc2-released.html" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://ronin-rb.dev/blog/2024/06/28/ronin-exploits-1.0.6-and-1-1-0-rc2-released.html</a> <a href="https://infosec.exchange/tags/ronin" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ronin</a> <a href="https://infosec.exchange/tags/roninrb" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#roninrb</a> <a href="https://infosec.exchange/tags/ruby" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ruby</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/securitytools" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#securitytools</a> <a href="https://infosec.exchange/tags/exploitdev" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#exploitdev</a> <a href="https://infosec.exchange/tags/opensource" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#opensource</a>

postmodernHow useful would you say a command injection payload that exfils a single file via <code>curl</code> to a webserver might be? Do you think it should be built-in to a framework or offered as a 3rd-party thing? <a href="https://infosec.exchange/tags/pentesting" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#pentesting</a> <a href="https://infosec.exchange/tags/exploitdev" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#exploitdev</a> <a href="https://infosec.exchange/tags/payloads" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#payloads</a>

postmodernFor a tool that compiles C payloads, how would you prefer to specify the cross-compiler? <a href="https://infosec.exchange/tags/payloads" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#payloads</a> <a href="https://infosec.exchange/tags/pentesting" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#pentesting</a> <a href="https://infosec.exchange/tags/redteaming" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#redteaming</a> <a href="https://infosec.exchange/tags/exploitdev" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#exploitdev</a>

postmodernWhat is a good example vulnerability that I could use to write a "How To Write An Exploit" style tutorial? <a href="https://infosec.exchange/tags/exploitdev" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#exploitdev</a> <a href="https://infosec.exchange/tags/xdev" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#xdev</a> <a href="https://infosec.exchange/tags/vulndev" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#vulndev</a>

Ringzer0Finding deserialization bugs in Solarwinds: <a href="https://www.zerodayinitiative.com/blog/2023/9/21/finding-deserialization-bugs-in-the-solarwind-platform" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.zerodayinitiative.com/blog/2023/9/21/finding-deserialization-bugs-in-the-solarwind-platform</a> <a href="https://infosec.exchange/tags/exploitdev" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#exploitdev</a>

postmodernWhat is currently missing from <a href="https://github.com/ronin-rb/ronin-exploits#readme" rel="nofollow noopener noreferrer" target="_blank">ronin-exploits</a> and <a href="https://github.com/ronin-rb/ronin-payloads#readme" rel="nofollow noopener noreferrer" target="_blank">ronin-payloads</a> for beginners wanting to learn exploit/payload development? I keep seeing people in InfoSec educational Discord servers recommending Metasploit for beginner exploit-dev. I think Metasploit is way too complicated for beginner exploit-dev and it's exploits/payloads contain way too much messy and unnecessary boilerplate code compared to <a href="https://github.com/ronin-rb/ronin-payloads#readme" rel="nofollow noopener noreferrer" target="_blank">ronin-payloads</a>/<a href="https://github.com/ronin-rb/ronin-exploits#readme" rel="nofollow noopener noreferrer" target="_blank">ronin-exploits</a>. Metasploit is clearly better suited for exploiting old CVEs and learning how to pentest a Windows environment, due to it's corpus of exploits and meterpreter. I really think <a href="https://github.com/ronin-rb/ronin-exploits#readme" rel="nofollow noopener noreferrer" target="_blank">ronin-exploits</a> and <a href="https://github.com/ronin-rb/ronin-payloads#readme" rel="nofollow noopener noreferrer" target="_blank">ronin-payloads</a>, or even just loading <a href="https://github.com/ronin-rb/ronin-support#readme" rel="nofollow noopener noreferrer" target="_blank">ronin-support</a> into a Ruby script, are much better suited for beginners than Metasploit, but I can't seem to get through to anyone.PS: I know about pwntools. I am not asking about pwntools, I'm asking about ronin-exploits and ronin-payloads specifically in this context. <a href="https://infosec.exchange/tags/exploitdev" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#exploitdev</a> <a href="https://infosec.exchange/tags/xdev" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#xdev</a> <a href="https://infosec.exchange/tags/infosectraining" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosectraining</a>

ς๏гєɭคภς0๔3г :verified:ONE more chance to take our popular Bootcamp in 2023 anywhere in the world. We’re setting up camp in beautiful Croatia (Zagreb). High-quality materials, real class, real instructor (AND the perfect prep for our heap exploitation class). Seats are selling fast! What are you waiting for?? <a href="https://deep-conference.com/predeep-bootcamp/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://deep-conference.com/predeep-bootcamp/</a>  <a href="https://infosec.exchange/tags/corelan" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#corelan</a> <a href="https://infosec.exchange/tags/windows11" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#windows11</a> <a href="https://infosec.exchange/tags/exploitdev" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#exploitdev</a>

sk3wHere is my writeup for CVE-2023-28244, if you are interested in that sort of thing: <a href="https://terrapinlabs.io/posts/cve-2023-28244/" rel="nofollow noopener noreferrer" target="_blank">https://terrapinlabs.io/posts/cve-2023-28244/</a><a href="https://infosec.exchange/tags/ExploitDev" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ExploitDev</a> <a href="https://infosec.exchange/tags/CVE" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CVE</a> <a href="https://infosec.exchange/tags/CVE_2023_28244" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CVE_2023_28244</a> <a href="https://infosec.exchange/tags/kerberos" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#kerberos</a>

ronin-rbEver wondered how to port an existing Metasploit exploit to <a href="https://github.com/ronin-rb/ronin-exploits#readme" rel="nofollow noopener noreferrer" target="_blank">ronin-exploits</a>? Well, we now have a guide for that! <a href="https://ronin-rb.dev/blog/2023/05/31/new-guide-porting-metasploit-exploits-to-ronin-exploits.html" rel="nofollow noopener noreferrer" target="_blank">https://ronin-rb.dev/blog/2023/05/31/new-guide-porting-metasploit-exploits-to-ronin-exploits.html</a> <a href="https://infosec.exchange/tags/ronin" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ronin</a> <a href="https://infosec.exchange/tags/metasploit" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#metasploit</a> <a href="https://infosec.exchange/tags/exploits" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#exploits</a> <a href="https://infosec.exchange/tags/exploitdev" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#exploitdev</a> <a href="https://infosec.exchange/tags/ruby" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ruby</a>

Ringzer0📢 Don’t forget to sign up for one of our advanced hands-on <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> trainings! The first week of <a href="https://infosec.exchange/tags/RETURN23XPLOIT" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#RETURN23XPLOIT</a> is only a few days away. Our trainings offer hands-on instruction from top industry experts. In week 1, learn <a href="https://infosec.exchange/tags/Diffing" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Diffing</a>, <a href="https://infosec.exchange/tags/ExploitDev" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ExploitDev</a>, <a href="https://infosec.exchange/tags/ARM64" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ARM64</a>, <a href="https://infosec.exchange/tags/ReverseEngineering" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ReverseEngineering</a>, <a href="https://infosec.exchange/tags/IDAPro" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#IDAPro</a> & more. Don't miss out!<a href="https://ringzer0.training/" rel="nofollow noopener noreferrer" target="_blank">https://ringzer0.training/</a><a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/training" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#training</a>

Ringzer0Level up your <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a> skills with <a href="https://infosec.exchange/tags/RETURN23XPLOIT" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#RETURN23XPLOIT</a>! Our trainings offer hands-on instruction from top industry experts. In week 1, learn <a href="https://infosec.exchange/tags/Diffing" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Diffing</a>, <a href="https://infosec.exchange/tags/ExploitDev" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ExploitDev</a>, <a href="https://infosec.exchange/tags/ARM64" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ARM64</a>, <a href="https://infosec.exchange/tags/ReverseEngineering" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ReverseEngineering</a>, <a href="https://infosec.exchange/tags/IDAPro" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#IDAPro</a> & more. Don't miss out!<a href="https://ringzer0.training/" rel="nofollow noopener noreferrer" target="_blank">https://ringzer0.training/</a><a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/training" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#training</a>

RairiiI don't think I posted one here yet, so:<a href="https://haqueers.com/tags/introduction" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#introduction</a> <a href="https://haqueers.com/tags/introductions" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#introductions</a> I'm into <a href="https://haqueers.com/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> - I've done application/bootloader/embedded <a href="https://haqueers.com/tags/ReverseEngineering" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ReverseEngineering</a> / <a href="https://haqueers.com/tags/reversing" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#reversing</a> but also know my way around <a href="https://haqueers.com/tags/appsec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#appsec</a> and <a href="https://haqueers.com/tags/websec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#websec</a> and <a href="https://haqueers.com/tags/ExploitDev" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ExploitDev</a> :)I like <a href="https://haqueers.com/tags/SoftwarePreservation" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SoftwarePreservation</a> (keep copying those floppies and dumping all the rare media!)I like <a href="https://haqueers.com/tags/gameing" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#gameing</a> <a href="https://haqueers.com/tags/gaming" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#gaming</a> but haven't really played anything that much recently. Historically I've enjoyed <a href="https://haqueers.com/tags/pokemon" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#pokemon</a> (I have a wood carving of blaziken on my wall!) <a href="https://haqueers.com/tags/mario" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#mario</a> <a href="https://haqueers.com/tags/metroid" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#metroid</a> <a href="https://haqueers.com/tags/halo" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#halo</a> <a href="https://haqueers.com/tags/fifa" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#fifa</a> - I prefer using console because I prefer to work on my PC and big games take up so much disk space these days! (Not to mention I've heard about lots of invasive anti-cheat that flags just having typical reversing tools open!)I don't like cats, I prefer <a href="https://haqueers.com/tags/dogs" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#dogs</a> :)I like watching sports sometimes - association <a href="https://haqueers.com/tags/football" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#football</a>, <a href="https://haqueers.com/tags/tennis" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#tennis</a>, <a href="https://haqueers.com/tags/snooker" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#snooker</a> mainly.

postmodernDoes anyone have an example of an exploit that sends multiple HTTP requests to two different hosts? Has that edge-case ever occurred or does every HTTP based exploit target a single host? <a href="https://infosec.exchange/tags/exploitdev" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#exploitdev</a>

postmodernHow should XSS exploits be printed out? <a href="https://infosec.exchange/tags/xss" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#xss</a> <a href="https://infosec.exchange/tags/poll" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#poll</a> <a href="https://infosec.exchange/tags/websecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#websecurity</a> <a href="https://infosec.exchange/tags/exploits" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#exploits</a> <a href="https://infosec.exchange/tags/exploitdev" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#exploitdev</a>

postmodernLegacy exploit dev question: when generating NOP padding for shellcode, how do you think about it? Especially relevant for RISC architectures where the NOP instruction is more than one byte. <a href="https://infosec.exchange/tags/exploitdev" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#exploitdev</a> <a href="https://infosec.exchange/tags/oldsec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#oldsec</a>

Recent searches

Search options

Administered by:

Server stats:

#exploitdev