├── docs ├── screens │ ├── msf1.png │ ├── msf2.png │ ├── mimikatz1.png │ ├── mimikatz2.png │ ├── quasar1.jpg │ ├── quasar2.jpg │ ├── quasar3.png │ ├── seclists1.png │ ├── vx-pass.png │ ├── historical.png │ ├── webshell_hidden_backdoor.jpg │ └── webshell_hidden_backdoor2.png ├── assets │ ├── images │ │ └── lolsecissues-logo.png │ └── css │ │ └── style.scss ├── _config.yml └── README.md ├── README.md └── LICENSE /docs/screens/msf1.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Neo23x0/LOLSecIssues/main/docs/screens/msf1.png -------------------------------------------------------------------------------- /docs/screens/msf2.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Neo23x0/LOLSecIssues/main/docs/screens/msf2.png -------------------------------------------------------------------------------- /docs/screens/mimikatz1.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Neo23x0/LOLSecIssues/main/docs/screens/mimikatz1.png -------------------------------------------------------------------------------- /docs/screens/mimikatz2.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Neo23x0/LOLSecIssues/main/docs/screens/mimikatz2.png -------------------------------------------------------------------------------- /docs/screens/quasar1.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Neo23x0/LOLSecIssues/main/docs/screens/quasar1.jpg -------------------------------------------------------------------------------- /docs/screens/quasar2.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Neo23x0/LOLSecIssues/main/docs/screens/quasar2.jpg -------------------------------------------------------------------------------- /docs/screens/quasar3.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Neo23x0/LOLSecIssues/main/docs/screens/quasar3.png -------------------------------------------------------------------------------- /docs/screens/seclists1.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Neo23x0/LOLSecIssues/main/docs/screens/seclists1.png -------------------------------------------------------------------------------- /docs/screens/vx-pass.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Neo23x0/LOLSecIssues/main/docs/screens/vx-pass.png -------------------------------------------------------------------------------- /docs/screens/historical.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Neo23x0/LOLSecIssues/main/docs/screens/historical.png -------------------------------------------------------------------------------- /docs/assets/images/lolsecissues-logo.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Neo23x0/LOLSecIssues/main/docs/assets/images/lolsecissues-logo.png -------------------------------------------------------------------------------- /docs/screens/webshell_hidden_backdoor.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Neo23x0/LOLSecIssues/main/docs/screens/webshell_hidden_backdoor.jpg -------------------------------------------------------------------------------- /docs/screens/webshell_hidden_backdoor2.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Neo23x0/LOLSecIssues/main/docs/screens/webshell_hidden_backdoor2.png -------------------------------------------------------------------------------- /docs/_config.yml: -------------------------------------------------------------------------------- 1 | remote_theme: pages-themes/minimal@v0.2.0 2 | plugins: 3 | - jekyll-remote-theme 4 | title: LOL Sec Issues 5 | description: A collection of funny security issues 6 | show_downloads: false 7 | logo: /assets/images/lolsecissues-logo.png -------------------------------------------------------------------------------- /docs/assets/css/style.scss: -------------------------------------------------------------------------------- 1 | --- 2 | --- 3 | 4 | @import "{{ site.theme }}"; 5 | 6 | body { 7 | background-color: #050913; 8 | color: #cecece; 9 | } 10 | 11 | h1, h2, h3, strong { 12 | color: #cecece; 13 | } 14 | 15 | .wrapper { 16 | width: 980px; 17 | } 18 | 19 | section { 20 | width: 700px; 21 | } -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- 1 | # LOLSecIssues 2 | 3 | Cybersecurity's lighter side: a collection of the most amusing misunderstandings and missteps from newcomers to offensive security tools. A repository where naiveté in infosec is met with humor. 4 | 5 | [Here](https://neo23x0.github.io/LOLSecIssues/) is the website to this repository. 6 | -------------------------------------------------------------------------------- /docs/README.md: -------------------------------------------------------------------------------- 1 | # LOLSecIssues 2 | 3 | Cybersecurity's lighter side: a collection of the most amusing misunderstandings and missteps from newcomers to offensive security tools. A repository where naiveté in infosec is met with humor. 4 | 5 | --- 6 | 7 | ## Quasar RAT 8 | 9 | ### AV Detection -> RAT in IT department 10 | 11 | ![quasar screenshot](./screens/quasar1.jpg) 12 | 13 | [Link to the issue](https://github.com/quasar/Quasar/issues/670) 14 | 15 | ### When download the binaries, my antivirus warns me 16 | 17 | ![quasar screenshot](./screens/quasar2.jpg) 18 | 19 | [Link to the issue](https://github.com/quasar/Quasar/issues/712) 20 | 21 | ### Does this have a Virus? 22 | 23 | ![quasar screenshot](./screens/quasar3.png) 24 | 25 | [Link to the issue](https://github.com/quasar/Quasar/issues/658) 26 | 27 | --- 28 | 29 | ## Mimikatz 30 | 31 | ### How should I run Mimikatz? 32 | 33 | ![mimikatz1](./screens/mimikatz1.png) 34 | 35 | [Link to the issue](https://github.com/gentilkiwi/mimikatz/issues/78) 36 | 37 | ### Release Binaries Contain a Virus 38 | 39 | ![mimikatz2](./screens/mimikatz2.png) 40 | 41 | [Link to the issue](https://github.com/gentilkiwi/mimikatz/issues/114) 42 | 43 | --- 44 | 45 | ## Metasploit Framework 46 | 47 | ### LHOST and RHOST 48 | 49 | ![msf1](./screens/msf1.png) 50 | 51 | [Link to the issue](https://github.com/rapid7/metasploit-framework/issues/13509) 52 | 53 | ### Virus? 54 | 55 | ![msf1](./screens/msf2.png) 56 | 57 | [Link to the issue](https://github.com/rapid7/metasploit-framework/issues/11511) 58 | 59 | 60 | --- 61 | 62 | ## Web Shells 63 | 64 | ### Hidden Backdoor in Web Shell 1 65 | 66 | ![tennc webshell](./screens/webshell_hidden_backdoor.jpg) 67 | 68 | [Link to the issue](https://github.com/tennc/webshell/issues/27) 69 | 70 | ### Hidden Backdoor in Web Shell 2 71 | 72 | ![tennc webshell](./screens/webshell_hidden_backdoor2.png) 73 | 74 | [Link to the issue](https://github.com/trustedsec/ptf/issues/303) 75 | 76 | --- 77 | 78 | ## SecLists 79 | 80 | ### Remove my password from lists so hackers won't be able to hack me 81 | 82 | ![tennc webshell](./screens/seclists1.png) 83 | 84 | [Link to the issue](https://github.com/danielmiessler/SecLists/pull/155) 85 | 86 | --- 87 | 88 | ## Twitter 89 | 90 | ### VX Underground Password 91 | 92 | ![vx pwd](./screens/vx-pass.png) 93 | 94 | [Link to the tweet](https://x.com/vxunderground/status/1689739200646578176?s=20) 95 | 96 | --- 97 | 98 | ## Historical 99 | 100 | ### Type in you password - it gets replaced with * 101 | 102 | ![history password](./screens/historical.png) 103 | -------------------------------------------------------------------------------- /LICENSE: -------------------------------------------------------------------------------- 1 | Creative Commons Legal Code 2 | 3 | CC0 1.0 Universal 4 | 5 | CREATIVE COMMONS CORPORATION IS NOT A LAW FIRM AND DOES NOT PROVIDE 6 | LEGAL SERVICES. DISTRIBUTION OF THIS DOCUMENT DOES NOT CREATE AN 7 | ATTORNEY-CLIENT RELATIONSHIP. CREATIVE COMMONS PROVIDES THIS 8 | INFORMATION ON AN "AS-IS" BASIS. CREATIVE COMMONS MAKES NO WARRANTIES 9 | REGARDING THE USE OF THIS DOCUMENT OR THE INFORMATION OR WORKS 10 | PROVIDED HEREUNDER, AND DISCLAIMS LIABILITY FOR DAMAGES RESULTING FROM 11 | THE USE OF THIS DOCUMENT OR THE INFORMATION OR WORKS PROVIDED 12 | HEREUNDER. 13 | 14 | Statement of Purpose 15 | 16 | The laws of most jurisdictions throughout the world automatically confer 17 | exclusive Copyright and Related Rights (defined below) upon the creator 18 | and subsequent owner(s) (each and all, an "owner") of an original work of 19 | authorship and/or a database (each, a "Work"). 20 | 21 | Certain owners wish to permanently relinquish those rights to a Work for 22 | the purpose of contributing to a commons of creative, cultural and 23 | scientific works ("Commons") that the public can reliably and without fear 24 | of later claims of infringement build upon, modify, incorporate in other 25 | works, reuse and redistribute as freely as possible in any form whatsoever 26 | and for any purposes, including without limitation commercial purposes. 27 | These owners may contribute to the Commons to promote the ideal of a free 28 | culture and the further production of creative, cultural and scientific 29 | works, or to gain reputation or greater distribution for their Work in 30 | part through the use and efforts of others. 31 | 32 | For these and/or other purposes and motivations, and without any 33 | expectation of additional consideration or compensation, the person 34 | associating CC0 with a Work (the "Affirmer"), to the extent that he or she 35 | is an owner of Copyright and Related Rights in the Work, voluntarily 36 | elects to apply CC0 to the Work and publicly distribute the Work under its 37 | terms, with knowledge of his or her Copyright and Related Rights in the 38 | Work and the meaning and intended legal effect of CC0 on those rights. 39 | 40 | 1. Copyright and Related Rights. A Work made available under CC0 may be 41 | protected by copyright and related or neighboring rights ("Copyright and 42 | Related Rights"). Copyright and Related Rights include, but are not 43 | limited to, the following: 44 | 45 | i. the right to reproduce, adapt, distribute, perform, display, 46 | communicate, and translate a Work; 47 | ii. moral rights retained by the original author(s) and/or performer(s); 48 | iii. publicity and privacy rights pertaining to a person's image or 49 | likeness depicted in a Work; 50 | iv. rights protecting against unfair competition in regards to a Work, 51 | subject to the limitations in paragraph 4(a), below; 52 | v. rights protecting the extraction, dissemination, use and reuse of data 53 | in a Work; 54 | vi. database rights (such as those arising under Directive 96/9/EC of the 55 | European Parliament and of the Council of 11 March 1996 on the legal 56 | protection of databases, and under any national implementation 57 | thereof, including any amended or successor version of such 58 | directive); and 59 | vii. other similar, equivalent or corresponding rights throughout the 60 | world based on applicable law or treaty, and any national 61 | implementations thereof. 62 | 63 | 2. Waiver. To the greatest extent permitted by, but not in contravention 64 | of, applicable law, Affirmer hereby overtly, fully, permanently, 65 | irrevocably and unconditionally waives, abandons, and surrenders all of 66 | Affirmer's Copyright and Related Rights and associated claims and causes 67 | of action, whether now known or unknown (including existing as well as 68 | future claims and causes of action), in the Work (i) in all territories 69 | worldwide, (ii) for the maximum duration provided by applicable law or 70 | treaty (including future time extensions), (iii) in any current or future 71 | medium and for any number of copies, and (iv) for any purpose whatsoever, 72 | including without limitation commercial, advertising or promotional 73 | purposes (the "Waiver"). Affirmer makes the Waiver for the benefit of each 74 | member of the public at large and to the detriment of Affirmer's heirs and 75 | successors, fully intending that such Waiver shall not be subject to 76 | revocation, rescission, cancellation, termination, or any other legal or 77 | equitable action to disrupt the quiet enjoyment of the Work by the public 78 | as contemplated by Affirmer's express Statement of Purpose. 79 | 80 | 3. Public License Fallback. Should any part of the Waiver for any reason 81 | be judged legally invalid or ineffective under applicable law, then the 82 | Waiver shall be preserved to the maximum extent permitted taking into 83 | account Affirmer's express Statement of Purpose. In addition, to the 84 | extent the Waiver is so judged Affirmer hereby grants to each affected 85 | person a royalty-free, non transferable, non sublicensable, non exclusive, 86 | irrevocable and unconditional license to exercise Affirmer's Copyright and 87 | Related Rights in the Work (i) in all territories worldwide, (ii) for the 88 | maximum duration provided by applicable law or treaty (including future 89 | time extensions), (iii) in any current or future medium and for any number 90 | of copies, and (iv) for any purpose whatsoever, including without 91 | limitation commercial, advertising or promotional purposes (the 92 | "License"). The License shall be deemed effective as of the date CC0 was 93 | applied by Affirmer to the Work. Should any part of the License for any 94 | reason be judged legally invalid or ineffective under applicable law, such 95 | partial invalidity or ineffectiveness shall not invalidate the remainder 96 | of the License, and in such case Affirmer hereby affirms that he or she 97 | will not (i) exercise any of his or her remaining Copyright and Related 98 | Rights in the Work or (ii) assert any associated claims and causes of 99 | action with respect to the Work, in either case contrary to Affirmer's 100 | express Statement of Purpose. 101 | 102 | 4. Limitations and Disclaimers. 103 | 104 | a. No trademark or patent rights held by Affirmer are waived, abandoned, 105 | surrendered, licensed or otherwise affected by this document. 106 | b. Affirmer offers the Work as-is and makes no representations or 107 | warranties of any kind concerning the Work, express, implied, 108 | statutory or otherwise, including without limitation warranties of 109 | title, merchantability, fitness for a particular purpose, non 110 | infringement, or the absence of latent or other defects, accuracy, or 111 | the present or absence of errors, whether or not discoverable, all to 112 | the greatest extent permissible under applicable law. 113 | c. Affirmer disclaims responsibility for clearing rights of other persons 114 | that may apply to the Work or any use thereof, including without 115 | limitation any person's Copyright and Related Rights in the Work. 116 | Further, Affirmer disclaims responsibility for obtaining any necessary 117 | consents, permissions or other rights required for any use of the 118 | Work. 119 | d. Affirmer understands and acknowledges that Creative Commons is not a 120 | party to this document and has no duty or obligation with respect to 121 | this CC0 or use of the Work. 122 | --------------------------------------------------------------------------------