mr.d0x
C:\Users\mr.d0x> whoami_
Phishing With Google's Domain
October 20, 2021A quick and easy way to bypass link analyzers by hiding behind Google’s domain.
Continue Reading →Spoofing Vulnerabilities In GDrive and OneDrive
October 20, 2021Google Drive and OneDrive contain spoofing vulnerabilities that can aid attackers with phishing
Continue Reading →
Leveraging VirtualBox During Engagements
August 4, 2021If you run into VirtualBox on a machine during an engagement try some of these methods
Continue Reading →
Easy Bounty With Exposed Buckets & Blobs
July 26, 2021A simple guide on finding exposed AWS S3 buckets and Azure Blobs
Continue Reading →
Discovering Zero-Day Vulnerabilities in McAfee Products
June 9, 2021Discovery and exploitation of two Zero-Day vulnerabilities affecting Mcafee Agent < 5.7.4 and McAfee Drive Encryption < 7.2.9.5
Continue Reading →
Spoofing and Attacking With Skype
February 2, 2021Skype is plagued with spoofing vulnerabilities that Microsoft did not think need ‘immediate security servicing’
Continue Reading →
Abusing McAfee Vulnerabilities and Misconfigurations
January 17, 2021Unpatched or misconfigured McAfee components will make life much easier during a penetration test or red team assessment
Continue Reading →Dumping LSASS With Adplus Debugging Tool
January 9, 2021A continuation of my series into abusing Microsoft’s debugging tools for red teams. This time I show how to create a memory dump of LSASS with the Adplus debugging tool
Continue Reading →Execution and AWL Bypass Using LOLBin Remote.exe
January 7, 2021Masquerading execution behind the Microsoft signed binary remote.exe
Continue Reading →