Exploiting Microsoft Office and delivering a payload using Microsoft DDE

Windows provides several methods for transferring data between applications. One method is to use the Dynamic Data Exchange (DDE) protocol. The DDE protocol is a set of messages and guidelines. It sends messages between applications that share data and uses shared memory to exchange data between applications. Applications can use the DDE protocol for one-time … Read moreExploiting Microsoft Office and delivering a payload using Microsoft DDE

Kali VMWare Tools Installation

It is very important that you install VMware Tools in the guest operating system. With the VMware Tools SVGA driver installed, Workstation supports significantly faster graphics performance. The VMware Tools package provides support required for shared folders and for drag and drop operations. Other tools in the package support synchronization of time in the guest … Read moreKali VMWare Tools Installation

Wordlists to use in Kali for password cracking

Wordlists are invaluable when looking at breaking passwords. Wordlists are used over brute force as they’re made up of real words and phrases that people would generally use as passwords. Wordlists can be faster to process before looking at brute-force password cracking. There are now a horde of wordlists available to use; some of which … Read moreWordlists to use in Kali for password cracking

Kali 2018.2 VirtualBox Guest Additions

Guest Additions are designed to be installed inside a virtual machine after the guest operating system has been installed. They consist of device drivers and system applications that optimize the guest operating system for better performance and usability. Kali using Gnome 3 will be slow performing if you do not have the guest additions installed. … Read moreKali 2018.2 VirtualBox Guest Additions

Gaining Administrative Access (Metasploit) – MS15-051

This document will start from you having an open session to a target machine. This will exploit allow you to migrate the malicious process to the SYSTEM user using a variability in Microsoft Windows (MS15_051) Microsoft Description: This security update resolves vulnerabilities in Microsoft Windows. The more severe of these vulnerabilities could allow elevation of … Read moreGaining Administrative Access (Metasploit) – MS15-051