OSCP-BoF
zenith
Our great sponsors
| OSCP-BoF | zenith | |
|---|---|---|
| 2 | 1 | |
| 64 | 119 | |
| - | - | |
| 0.0 | 2.7 | |
| almost 3 years ago | about 2 years ago | |
| Python | Python | |
| GNU General Public License v3.0 only | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
OSCP-BoF
-
For whatever reason, I am having a lot of trouble grasping buffer overflows. What is your favorite resource/video that spelled it out for you when you learned?
And then once you get the concepts, https://github.com/3isenHeiM/OSCP-BoF for the practical methodology (I'm the author).
- 1st attempt, 80+ points. My experience and some unpopular opinions inside.
zenith
-
Zenith: Linux kernel RCE exploit for NetUSB driver
Axel Souchet published the Zenith exploit used at Pwn2Own Austin 2021.
What are some alternatives?
dostackbufferoverflowgood
Zeratool - Automatic Exploit Generation (AEG) and remote flag capture for exploitable CTF problems
SUID3NUM - A standalone python script which utilizes python's built-in modules to enumerate SUID binaries, separate default binaries from custom binaries, cross-match those with bins in GTFO Bin's repository & auto-exploit those, all with colors! ( ͡~ ͜ʖ ͡°)
paracosme - Paracosme is a zero-click remote memory corruption exploit that compromises ICONICS Genesis64 which was demonstrated successfully on stage during the Pwn2Own Miami 2022 competition.
raptor_infiltrate20 - #INFILTRATE20 raptor's party pack.
TireFire - Automate the scanning and enumeration of machines externally while maintaining complete control over scans shot to the target. Comfortable GUI-ish platform. Great for OSCP/HTB type Machines as well as penetration testing.
try-harder - "Try Harder" is a cybersecurity retro game designed to simulate 100 real-world scenarios that will help you prepare for the Offensive Security Certified Professional (OSCP) exam, all while offering an immersive experience and retro aesthetic. Enter Real commands correctly, move to the next host, and get a point. Can you get 100?
SUDO_KILLER - A tool designed to exploit a privilege escalation vulnerability in the sudo program on Unix-like systems. It takes advantage of a specific misconfiguration or flaw in sudo to gain elevated privileges on the system, essentially allowing a regular user to execute commands as the root user.
Interlace - Easily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.
Win7Blue - Scan/Exploit - EternalBlue MS17-010 - Windows 7 32/64 Bits
Buffer_Overflow - Don't let buffer overflows overflow your mind