Quick Reverse Shell Evading AV Detection
by Quickly build a simple reverse shell that evades Windows Anti-Virus (AV) detection using default Kali Linux tools. Mitigation recommendations are presented at the end of the article for defense fortification.
Category: Attack
Hardware Attacks
There are some attacks that you can use to test the physical security of the target’s hosts, rather than testing them from a purely virtual space. Note that these tests are technical in nature, and usually involve vulnerabilities in how the host’s hardware is configured. Also, these attacks are not OS-specific—because they are hardware-based, they […]
Apple macOS and iOS Vulnerabilities
Apple has a strong reputation for security. Even so, all software has flaws, no matter how carefully you test it. CVEdetails.com lists over 4,000 vulnerabilities related to Apple products, with over 2,000 attributed to Mac OS X and over 1,400 related to iPhone iOS. Both the phone and desktop operating systems derive some of their […]
Sandbox Escapes
A sandbox is any environment used to isolate a computer process away from other processes, as well as the host. The process that is being isolated is called the guest. The computer that houses the sandbox (with guest) is called the host. A sandbox escape is any type of exploit that allows the guest process […]
Specialized Systems
Mobile Devices Mobile devices, particularly smartphones and tablets, are an important tool in many organizations. In today’s world, an employee’s mobile device might be just as attractive to an attacker because it can hold sensitive company data and private personal data, not to mention its usefulness as an authentication mechanism. Therefore, it may be in […]
Common Attack Techniques
The specific attacks a pen test team chooses will depend on the target environment. However, there are common attacks that every chief information security officer (CISO) should worry about. These include: Social engineering, including phishing and malware distribution Injection attacks, including SQL injection, cross-site scripting (XSS), cross-site request forgery (XSRF), and directory traversal Denial of […]