C:\Users\Shelldon> whoami /all

Windows User & Kernel Mode Exploit Developer, Red Teamer, Security Researcher

Reflection Vulnlab

In this part of Red Team series we will talk about Reflection chain from Vulnlab. In this chain exist some cool attacks such abusing GenericAll ACL, LAPS, NTLM Relaying and DPAPI dumping. Also, there is MSSQL enumeration. First of let鈥檚 start from the nmap scan to understand what kind of services/ports are open. nmap -sC -sV -T4 -oN nmap.txt 10.10.228.197-199 Starting Nmap 7.94SVN ( https://nmap.org ) at 2024-11-05 03:47 EST Nmap scan report for 10....

November 5, 2024 路 8 min 路 1704 words 路 Shelldon

Retro Vulnlab

TLDR Nmap馃敆 SMB enum馃敆 Users list dump馃敆 Diving to pre created computer account馃敆 ADCS馃敆 Exploitation of ESC1馃敆 Welcome to the 1st part of Red Team series! In these series I will write some interesting details/attacks which will help in Red Team projects. In this post we will learn ADCS attack (ESC1) and pre-created computer accounts. Also little bit about kerberos and TGT ticket. Nmap Using nmap we can scan the machine to understand which ports/services are open...

October 23, 2024 路 6 min 路 1186 words 路 Shelldon

Dropper Using VBA

In this post we will talk about how to create a dropper using VBA and some detection stuff. First off, what is VBA and why it is useful. Well VBA stands for Visual Basic for Applications. This language very useful for creation some macros for the Microsoft Office tools. It has very interesting syntax and datatypes. To start coding in VBA we need to create a document, which can support macros....

August 23, 2024 路 4 min 路 749 words 路 Shelldon

EXP-301 Cheetsheet

Links Prep馃敆 Tools馃敆 Scripts馃敆 Vanilla buffer overflow馃敆 SEH馃敆 Egghunter馃敆 Shellcoding馃敆 DEP馃敆 ASLR馃敆 Prep EXP-301 syllabus EXP-301 some open-free materials Corelan free exploit development articles x86 Architecture x86 Assembly course Intro to Reversing (Beginners) Reversing training by Ricardo Narvaja Exploit-DB Vulnserver (github) Vulnserver (blog) Tryhackme BOF Prep room Tryhackme Brainstorm room Tryhackme Brainpan 1 room Tryhackme Gatekeeper room Tools WinDdb : debugger WinDdb cheatsheet : windbg user mode cheat sheet WinDdb themes : dark and white themes Pykd : allowing to deploy Python scripts Mona....

August 23, 2024 路 3 min 路 590 words 路 Shelldon

Bypassing DEP with VirtualAlloc

Hello World! This is my new website

August 23, 2024 路 1 min 路 7 words 路 Shelldon