“EDRKillShifter” is a type of malware specifically designed to disable Endpoint Detection and Response (EDR) security software on a system, allowing attackers to carry out malicious activities like deploying ransomware without detection; it is considered a sophisticated tool often used by cybercriminals to evade security measures. Key points about EDRKillShifter: Function: Its primary purpose is Read More …
New Video – Assembly Primer For Hackers – Hello World
This is new video I found some time ago, when I was entertaining the thought of getting the OSCP. Assembly Primer For Hackers – Hello World
Current members of the US Congress by wealth
What is the average net worth by state? This is always a fun page to check in once and awhile on, to see what the congress critters are up to. Currently it is based on 2018-2019 numbers, but even then I though Nancy Pelosi would be much higher up the list. Also surprised that Rick Read More …
Chicago Toymaker 3000 Exhibit
One of the best things to do in Chicago is the Museum of Science and Industry.Museum of Science & Indusrty#chicago #thingstodo #kidactivities Put the power of modern automation to work in Toymaker 3000, where robots assemble custom toy tops—even entertaining you while you wait. #toys #automation Watch the entire process of manufacturing a toy on Read More …
How to change user agent in nmap
NMAP How to change user agent You can find the default value in /usr/share/nmap/nselib/http.lua (At the beginning of the file, a couple of lines after the comments) local USER_AGENT = stdnse.get_script_args(‘http.useragent’) or “Mozilla/5.0 (compatible; Nmap Scripting Engine; http://nmap.org/book/nse.html)” You can change the value with this line local USER_AGENT = stdnse.get_script_args(‘http.useragent’) or “Mozilla/5.0 (compatible; MSIE 9.0; Read More …
AWS Notes – AWS Pentesting
An Opinionated Ramp Up Guide to AWS Pentesting https://awssecuritydigest.com/articles/opinionated-ramp-up-guide-to-aws-pentesting https://medium.com/@MorattiSec/my-aws-pentest-methodology-14c333b7fb58 Understanding the Shared Responsibility Model https://www.wiz.io/academy/shared-responsibility-model fwd:cloudsec https://fwdcloudsec.org/ AWS Customer Support Policy for Penetration Testing https://aws.amazon.com/security/penetration-testing/ Also, read this and follow the AWS pentesting rules. Cloud Tests One is a review of the external facing posture, which you can consider adjacent to a traditional External Read More …
Looking at Attack Surface Mapping
Hot Take Incomming……. Warning…… I am going to come right out and say it, and it will sound completely arrogant, but I think the majority of Attack Surface Mapping vendors out there are doing it wrong. ASM for those who are new to blogs like these, stands for Attack Surface Mapping. This process is meant Read More …
New Lyrics :: Golden Brown
The music for the most part is done, and just really doing final tweeks to those. Started to record vocals today, as I am good with where the lyrics are at right now. The verses are from my time working restaurant jobs. They tell of my experience, emotions, and the things I specifically remember from Read More …
Backyard Chickens – Video List
Backyard Chickens – Day 112 Video List Baby Chickens Chilling – Irakere Babalú Ayé Dual Baby Chickens Baby Chickens La Oreja de Van Gogh Taylor and Gaga walk by camera Bea feeds Chicks, Nuria frees them LCD Soundsystem
AuKill EDR Post
Summary AuKill is a malicious software, often used by ransomware groups, designed to disable endpoint detection and response (EDR) security solutions on a system, essentially allowing attackers to bypass security measures before deploying ransomware by terminating EDR processes using a vulnerable, outdated driver like the Process Explorer driver from Sysinternals; effectively “killing” the EDR functionality. Key points about Read More …