Tips, Tricks and Tools for Cyber Security Enthusiasts

PoshC2 Improved HTML Reports

Red team operators need detailed and accurate C2 report output in order to conduct high quality work. Consequently, reporting has always been a key element of PoshC2. With this update, PoshC2s reporting engine has been [...]

By Mike Bone|January 6, 2021|

CVE-2020-14418: madCodeHook Library Local Privilege Escalation

Nettitude discovered a vulnerability in the 'madCodeHook' third party library which caused a number of security products, including Cisco AMP and Morphisec Unified Threat Prevention Platform, to contain a local privilege escalation vulnerability. Since the [...]

By Kyriakos Economou|December 1, 2020|

CVE-2020-27708: Electronic Arts (EA) Origin – Local Privilege Escalation

We recently assessed the security posture of Electronic Arts Origin Client and discovered a privilege escalation issue that would allow a low privilege attacker to elevate privileges to NT AUTHORTY\SYSTEM. This has been recorded as [...]

By Tom Wilson|November 3, 2020|

Introducing PoshC2 v7.0

There have been some big improvements and new features added to PoshC2 and we're excited to announce the release of PoshC2 v7.0. More and more people have started contributing to the project and every one [...]

By Ben Turner and Doug McLeod and Rob Bone|August 20, 2020|

Detecting PoshC2 – Indicators of Compromise

As a counterpart to the release of PoshC2 version 6.0 we are providing a list of some of its Indicators of Compromise (IoCs), particularly as used out-of-the-box, as well as some other effective methods for detecting [...]

By Rob Bone|June 17, 2020|