someguyonmastodonMar 6

I just popped a SYSTEM shell on a Windows 7 machine using my own penetration testing framework written entirely in Rust.

Amatsumara is a full exploitation framework including dynamic module loading via C FFI, interactive console, session management, 154 exploit modules, all built in Rust. Tonight I finished implementing EternalBlue (MS17-010) from scratch. Heap grooming, the SrvOs2FeaListToNt integer overflow, kernel shellcode, SrvNet buffer corruption, OS detection to automatically route between Win7 and Win8 exploit paths.

Now I have to try to find a way to sleep and not keep messing around in excitement.

#Rust #RustLang #Infosec #Cybersecurity #PenTesting #EternalBlue #MS17010 #ExploitDevelopment #CTF #TryHackMe #RedTeam #Hacking #OpenSource

Katherine M. MossDec 16, 2018
The latest The Windows Server Daily! https://paper.li/Cambridgeport90/1544401976?edition_id=aec1a1b1-00ca-11e9-aee0-002590a5ba2d Thanks to @[email protected] @[email protected] @[email protected] #ms17010
The Windows Server Daily

Windows server, Windows 10, Administration by Katherine Moss

Smart Security Scan™May 15, 2017
Our scanner has now an improved #EternalBlue #DoublePulsar check. https://www.smartsecurityscan.com/ #MS17010 Check your systems today. #WannaCry #Free