Windows

SDDL Security Descriptors

6 minute read

Some notes to myself to use as a reference guide and to gain a better understanding of the privileges and rights assigned to Windows services in the form of SDDL security descriptor strings.

Active Directory Security Checklist

1 minute read

I recently came across the Active Directory Pro blog post Top 25 Active Directory Security Best Practices. It’s a great read for anyone interested in AD security. I decided to type up the 25 points onto my blog so I could quickly reference them easily when required.

Windows Security Identifiers

8 minute read

Instead of having to check the Microsoft docs every time I needed to identify a mysterious SID, I decided to type up the table here so I can reference it easily when required.

DLL Shells

2 minute read

Quick post covering a few different ways to create and generate malcious DLLs for reverse/bind shells and for command execution.

Back to Top ↑

Snippets

Tmux Snippets

less than 1 minute read

Collection of simple/handy commands and my .tmux.conf.

Python Snippets

3 minute read

Collection of basic Python code templates I’ve developed and/or used on various occasions.

Back to Top ↑

Active Directory

Active Directory Security Checklist

1 minute read

I recently came across the Active Directory Pro blog post Top 25 Active Directory Security Best Practices. It’s a great read for anyone interested in AD security. I decided to type up the 25 points onto my blog so I could quickly reference them easily when required.

Back to Top ↑

Defence

Active Directory Security Checklist

1 minute read

I recently came across the Active Directory Pro blog post Top 25 Active Directory Security Best Practices. It’s a great read for anyone interested in AD security. I decided to type up the 25 points onto my blog so I could quickly reference them easily when required.

Back to Top ↑

Enumeration

Back to Top ↑

Tools

Release: headi

less than 1 minute read

headi is a simple HTTP header injection tool written in Go. It automates the process of attempting to bypass forbidden errors on application resources by utilising specific HTTP headers (listed in the following section).

Release: clovery

less than 1 minute read

Clovery is a Cloud Discovery tool written in Go. Based on a supplied wordlist it checks for open AWS, GCP, Alibaba, and Azure cloud storage and services.

Back to Top ↑

Python

Python Snippets

3 minute read

Collection of basic Python code templates I’ve developed and/or used on various occasions.

Back to Top ↑

Shells

DLL Shells

2 minute read

Quick post covering a few different ways to create and generate malcious DLLs for reverse/bind shells and for command execution.

Back to Top ↑

Web Apps

Back to Top ↑

XSS

Back to Top ↑

Networking

Networking Snippets

less than 1 minute read

Collection of snippets for basic network configuration and IP/CIDR ranges.

Back to Top ↑

Review

Back to Top ↑