Blog

SQL Injection

SQL injection is a web security vulnerability that allows an attacker to interfere with the queries that an application makes to its database.

ATT&CK

What is Threat Intelligence? Threat intelligence is actionable knowledge and insight on adversaries and their malicious activities enabling defenders and their organizations to reduce harm through better security decision-making. Sergio Caltagirone Training: https://attack.mitre.org/resources/training/cti/

Books

Wish List The Art of Network Penetration Testing The Modern Security Operations Center Human Hacking

SonicWall Switches

SonicOS 6.5.4.6 introduces support for all models of the SonicWall Switch. Links Product Page SonicWall Switch FAQs Getting Started Guide Deploy With High Availability UTM

Mimikatz

LSA Protection Bypass Check if LSA runs as a protected process. The variable for “RunAsPPL” will be set to 0x1 in HKLM\SYSTEM\CurrentControlSet\Control\Lsa. Upload mimidriver.sys from the mimikatz repo to the same folder as mimikatz.exe, then import. Remove the protection flags from the lsass.exe process.

Loading…

Something went wrong. Please refresh the page and/or try again.


Follow My Blog

Get new content delivered directly to your inbox.