草泥马之家

Windows与.Net.....

PowerShell

PowerShell恶意代码分析辅助：调试CLR

借助Windbg脚本进行更为有效的PowerShell Hook。

Tags： PowerShell windbg

WinDbg

调教Windbg：移植预览版数据模型拓展

把预览版windbg的数据模型移植到传统版本上。

Tags： windbg

WinDbg

用WinDbg监视mysql查询

将WinDbg当成mysql实时监视器来用~

Tags： mysql windbg

‹‹ 1 ››

搜索

最近发表

最新留言

Now try the ysoserial.net directly, in fact, I was submitted a pull request for it a few years ago.You just need to use `ActivitySurrogateSelectorFromFile` and pass your own backdoor assembly to generate the payload, this is the large byte array named `stub` in the source.And, if the .net framework installed on the target server is updated(I forgot the exact time, maybe after 2020), the `ActivitySurrogateDisableTypeCheck` payload is also needed, this is the small byte array named `v48disablecheck` in the source.Have fun.
Hi All.plz update code.thanks A lot.
Hey currently in an active pentest and wanted to check out your Sharepoint CVE that just dropped. Any way to contact you and discuss?
Hi.plz Update cve-2017-7269https://github.com/zcgonvh/cve-2017-7269-tool
Hello first of all very thankful for your writeup and work done on the poc and rce.Wanted to ask you how did you generate the payload? where from etc.I tried generating the exact payload of your poc for example and didnt manage to get the same result or a result that worked.I need to generate my payload from zero so if you'd be able to explain how did you do that or give the source code of yours it will be very helpfulThanks alot
I'm sorry it took me some time to find my report, I've sent you an email, please check it.
Hi,I'am currently having some difficulty in trying to reproduce the CVE-2023-21706 and CVE-2023-21710 of yours, can you give me some hints.Nguyen
6
我收回这句话，当我没说，解压密码找到了
压缩包双击打开，仔细看工具栏那里，有个《注释》选项，点开里面就是解压密码，其实楼主的名字就是解压密码

分类归档

RSS

联系方式: zcgonvh#at#qq.com

Copyright GMH's Home. Powered By Z-Blog.