Injection / MITM

Network

Responderopen in new window
sniffglueopen in new window
- packet sniffer
- tcpdump alternative?
rshijackopen in new window
- tcp connection hijacker
mitm6open in new window
- Reply to DHCPv6 messages -> become the DNS nameserver -> hijack DNS responses
- Need to read more
BPF
- Writing BPF code in Rustopen in new window
- redbpfopen in new window

Web

mitmproxyopen in new window
- HTTP proxy
mitmproxy2swaggeropen in new window
- Convert mitmproxy captures to Swagger
goproxyopen in new window
- HTTP proxy library for Go
Extracting Clear-Text Credentials Directly From Chromium's Memoryopen in new window
- Remediation hereopen in new window. It's not impossible, but quite annoying for a couple vectors.

Implants

TODO: I feel like some other pages have implants that should be migrated here...

TeamsImplantopen in new window