Lab of a Penetration Tester

Home of Nikhil "SamratAshok" Mittal

Pages

▼

Thursday, March 23, 2017

Using SQL Server for attacking a Forest Trust

Recently I started playing with the awesome PowerUpSQL tool by guys at NetSPI . I was interested in the ability to attack an Active D...

Tuesday, November 22, 2016

Exfiltration of User Credentials using WLAN SSID

I was playing with Windows Hosted Network feature couple of days back. A hopefully useful idea which came to my mind was using the name of...

Wednesday, September 21, 2016

AMSI: How Windows 10 Plans to Stop Script-Based Attacks and How Well It Does It

Update (23-Dec-2016) - I have implemented the publicly known AMSI bypasses described in this post in a PowerShell script Invoke-AmsiBypass ...

Wednesday, May 25, 2016

Practical use of JavaScript and COM Scriptlets for Penetration Testing

I have been following Casey Smith's brilliant work on JavaScript and COM Scriptlets . After looking at his work , I started playing wi...

View web version

About Me

Nikhil SamratAshok Mittal: I am a hacker, information security researcher and enthusiast. On this blog, I write about my projects, experiments and presentations.

View my complete profile

Powered by Blogger.