HTTP Parameter Pollution (HPP) This blog post was written by Rodney Kariuki Introduction HTTP Parameter Pollution (HPP) is a type of injection attack that occurs when a target system accepts multiple parameters with the same name and handles them in a manner that might be insecure or unexpected. [...]
DNS TUNNELING FOR DEFENCE EVASION AND COMMAND AND CONTROL This blog post was written by Alex Maina. Introduction Before we look at exploiting DNS through DNS tunneling we need to understand DNS and how it is critical to an organization’s infrastructure. DNS is used to translate IP addresses into domain [...]
CAPTURING NET-NTLM V2 HASHES VIA OUTLOOK SIGNATURES This blog post was written by Dharmik Karania. Introduction Today, it is possible to craft a malicious email that allows an adversary to capture NetNTLMV2 hashes without requiring any form of interaction with the user. The user only has to click open the [...]
PERSISTENCE: COMMON USERLAND TECHNIQUES (PART 2) This blog post was written by Dharmik Karania and Amarjit Labhuram Introduction In Persistence Part 1, we looked at a couple of Userland Persistence Techniques. In this blog, we continue with other techniques which include Dynamic Link Library (DLL) Hijacking through [...]
PERSISTENCE: COMMON USERLAND TECHNIQUES (PART 1) This blog post was written by Amarjit Labhuram. Introduction Getting an initial foothold during a red team operation can be time consuming and come with its own challenges. Once an operator has a command and control channel established into the client [...]
