Penetration Testing Blog

TikiTorch

TikiTorch: Process Hollowing

TikiTorch was named in homage to CACTUSTORCH by Vincent Yiu. The basic concept of CACTUSTORCH is that it spawns a new process, then uses CreateRemoteThread to run the desired shellcode within that target process. Both the process and...

Firewall Log Analysis

Web-Based Firewall Log Analysis and Reporting

Webfwlog is a flexible web-based firewall log analyzer and reporting tool. It supports standard system logs for Linux, FreeBSD, OpenBSD, NetBSD, Solaris, Irix, OS X, etc. as well as Windows XP®. Supported log file...

create ssh tunnels

mole v0.5 releases: cli app to create ssh tunnels

Mole is a cli application to create ssh tunnels, forwarding a local port to a remote address through an ssh server. Features Auto local address selection: find a port available and start listening to it, so the -local flag doesn’t need to be...

Sharp-Suite

Sharp-Suite: Penetration Testing tools in C#

Sharp-Suite SwampThing SwampThing lets you spoof process command line args (x32/64). Essentially you create a process in a suspended state, rewrite the PEB, resume and finally revert the PEB. The end result is that...