Latest Events

Publication

AD & Azure security | Risks related to the DNSAdmins group

 img-slae32

In this article, we will explore the risks associated with the DNSAdmins group and why this group should be managed with great caution. This article is the first of a series dedicated to Active Directory and Azure security. The aim of these articles will be to raise awareness about topics where, during discussions or previous assessments, I have observed that many people were unaware of the associated risks...


Read More December 20, 2024
New Project

Active Directory & Azure security

 img-slae32

Launching of a new personnal project on the Active Directory and Azure security. The aim of this project will be to raise awareness about topics where, during discussions or previous assessments, I have observed that many people were unaware of security best practives or bad practices related to Active Directory or Azure security


Read More December 20, 2024
CERTIFICATION

SLAE32 | Assignment 7 - Crypter

 img-slae32

Description of the assignment

  • Create a custom crypter like the one shown in the “cryp ters” video
  • Free to use any existing encryption schema
  • Can use any programmming language

This blog post has been...


Read More October 15, 2022
CERTIFICATION

SLAE32 | Assignment 6 - Polymorph

 img-slae32

Description of the assignment

  • Take up at least 3 shellcodes from shell-Storm and create a polymorphic versions to beat the pattern matching
  • The polymorphic version cannot be larger than 150% of the existing shellcode
  • Bonus points for making it shorter in length than the original

As follows the list of shellcodes that we are going to change into polymorphic ones:

  • downloadexec
  • ...


    • Read More October 10, 2022
CERTIFICATION

SLAE32 | Assignment 5 - Msfpayload

 img-slae32

Description of the assignment

  • Take up at least 3 shellcode samples created using Msfpayload for linux/x86
  • Use GDB/NDisasm/Libemu to dissect the functionality of the shellcode
  • Present your analysis

We are going to analyse together the following shellcodes:

  • linux/x86/adduser
  • ...


Read More October 5, 2022
CERTIFICATION

SLAE32 | Assignment 4 - Encoder

 img-slae32

Description of the assignment

  • Create a custom encoding scheme like the “Insertion Encoder” we showed you;
  • PoC with using execve-stack as the shellcode to encode with your schema and execute

This blog post has been...


Read More October 4, 2022
CERTIFICATION

SLAE32 | Assignment 3 - EggHunter

 img-slae32

Description of the assignment

  • Study about the EggHunter shellcode
  • Create a working demo of the EggHunter
  • Should be configurable for different payload

This blog post has been...


Read More October 1, 2022
CERTIFICATION

SLAE32 | Assignment 2 - Reverse Shell

 img-slae32

Description of the assignment

  • Create a Shell_Reverse_TCP Shellcode:
    • Reverse connects to configured IP and Port
    • Execs Shell on sucessfull connection
  • IP and Port should be easily configurable

This blog post has been...


Read More September 14, 2022
CERTIFICATION

SLAE32 | Assignment 1 - Bind Shell

 img-slae32

Description of the assignment

  • Create a Shell_Bind_TCP Shellcode:
    • Binds to a port
    • Execs Shell on incoming connection
  • Port should be easily configurable

This blog post has been...


Read More June 25, 2017