pspy
Seatbelt
| pspy | Seatbelt | |
|---|---|---|
| 8 | 8 | |
| 4,510 | 3,482 | |
| - | 1.2% | |
| 0.0 | 6.1 | |
| over 1 year ago | about 1 month ago | |
| Go | C# | |
| GNU General Public License v3.0 only | GNU General Public License v3.0 or later |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
pspy
-
Ask HN: What's the big deal with Go (Golang)?
* https://github.com/DominicBreuker/pspy
When you deploy them they just work. Compare that to compiled C++ code you often face issues with the deployment in my experience. And production machines usually do not ship compilers.
-
Need help getting rid of malware "perfcc / perfctl"
Configure auditd to log everything. Then use ausearch and aureport to inspect the events. You could also configure rsyslog to send the logs to a remote grafana server. There're a lot of tools you could use: falco, tracee, osquery, go-auditd+elastic, pspy , ...
-
LinPEAS
Literally using this right now on a pentest looking for privesc in some Linux boxes - the great thing about this tool is it's a shell script that's portable and does a significant amount of enumeration - big time saver. Feel as if it's better then the most others out there.
The second go-to tool after Linpeas is pspy which "allows you to see commands run by other users, cron jobs, etc. as they execute" [1]
[1] https://github.com/DominicBreuker/pspy
-
Tips to improve speed during CTFs
skipping processes (use tools such as pspy)
-
I passed with 100 points on second attempt AMA
I also forgot https://github.com/DominicBreuker/pspy obviously for linux privesc
-
What are some underrated (legal) tools that you have used during the OSCP that no one talks about or knows?
-
Startup CTF room, priv esc
It’s not in crontab either. You need to use a tool like pspy to find it.
-
alpha-sudo - my first emacs package
All you need to do is run a tool like ps or top often enough and eventually you'll catch a short-lived process exposing sensitive data in its command line. In fact, people wrote specialized scripts doing that at fast enough speed to catch them: https://github.com/DominicBreuker/pspy
Seatbelt
-
Allowed tools for OSCP
I'm taking my OSCP exam next Wednesday and was just wondering on what tools are actually prohibited and which are not. I'm specifically referring to linpeas, winpeas, seatbelt. I often times run these tools when I've exausted my enumeration methods for a quick find. Are these tools allowed on the AD set and the individual machines?
-
Cannot Load .NET assemblies in memory!
However, whenever I tried to run Seatbelt or similar software, it keeps failing at Load_3() with the error code 0x8007000b.
-
What are the alternative tools for wmic on cmd?
I'd recommend poking around at github and see what you find. A good starting point is WinPEAS if you're looking for automation. Seatbelt might also be helpful
-
Hardening Best Practices: Materials for Windows 10/11
Seatbelt: https://github.com/GhostPack/Seatbelt
- I passed with 100 points on second attempt AMA
- AzureDevOps + Github Question
- GhostPack/Seatbelt - Seatbelt is a C# project that performs a number of security oriented host-survey "safety checks" relevant from both offensive and defensive security perspectives.
What are some alternatives?
PEASS-ng - PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)
hackenv - Manage and access your Kali Linux or Parrot Security VM from the terminal (SSH support + file sharing, especially convenient during CTFs, Hack The Box, etc.) :rocket::wrench:
OSCP-Priv-Esc - Mind maps / flow charts to help with privilege escalation on the OSCP.
traitor - :arrow_up: :skull_and_crossbones: :fire: Automatic Linux privesc via exploitation of low-hanging fruit e.g. gtfobins, pwnkit, dirty pipe, +w docker.sock
Windows11_Hardening - a collection about Windows 11
PrivEsc-MindMap
Ryujinx - Experimental Nintendo Switch Emulator written in C#
feroxbuster - A fast, simple, recursive content discovery tool written in Rust.
PrivescCheck - Privilege Escalation Enumeration Script for Windows
exec-assembly - Execute .NET assemblies in Memory!