Forwarded from 卩ro 爪Cracker
CVE-2022-35256: HTTP Request Smuggling in NodeJS https://feed.prelude.org/p/cve-2022-35256
f33d by Prelude
CVE-2022-35256
HTTP Request Smuggling in NodeJS
Forwarded from Biała Bł
Hacking Bluetooth enabled mobile phones and beyond.pdf
353.6 KB
Forwarded from 卩ro 爪Cracker
CVE-2022-41974: Authorization bypass
CVE-2022-41973: Symlink attack
https://www.qualys.com/2022/10/24/leeloo-multipath/leeloo-multipath.txt
CVE-2022-41973: Symlink attack
https://www.qualys.com/2022/10/24/leeloo-multipath/leeloo-multipath.txt
Forwarded from 卩ro 爪Cracker
Viper
Viper is a graphical intranet penetration tool, which modularizes and weaponizes the tactics and technologies commonly used in the process of Intranet penetration.
Viper integrates basic functions such as bypass anti-virus software, intranet tunnel, file management, command line and so on.
Viper has integrated 80+ modules, covering Resource Development / Initial Access / Execution / Persistence / Privilege Escalation
/ Defense Evasion / Credential Access / Discovery / Lateral Movement / Collection and other categories
Viper's goal is to help red team engineers improve attack efficiency, simplify operation and reduce technical threshold
Viper supports running native msfconsole in browser and multi - person collaboration
https://github.com/FunnyWolf/Viper
Viper is a graphical intranet penetration tool, which modularizes and weaponizes the tactics and technologies commonly used in the process of Intranet penetration.
Viper integrates basic functions such as bypass anti-virus software, intranet tunnel, file management, command line and so on.
Viper has integrated 80+ modules, covering Resource Development / Initial Access / Execution / Persistence / Privilege Escalation
/ Defense Evasion / Credential Access / Discovery / Lateral Movement / Collection and other categories
Viper's goal is to help red team engineers improve attack efficiency, simplify operation and reduce technical threshold
Viper supports running native msfconsole in browser and multi - person collaboration
https://github.com/FunnyWolf/Viper
Forwarded from 卩ro 爪Cracker
PowerHub
PowerHub is a convenient post exploitation tool for PowerShell which aids a pentester in transferring data, in particular code which may get flagged by endpoint protection. Check out the Wiki!
Features:
▫️ Fileless
▫️ Stateless
▫️ Cert pinning
▫️ String "obfuscation" by RC4 encryption
▫️ Choose your AMSI Bypass
▫️ Transparent aliases for in-memory execution of C# programs
https://github.com/AdrianVollmer/PowerHub
PowerHub is a convenient post exploitation tool for PowerShell which aids a pentester in transferring data, in particular code which may get flagged by endpoint protection. Check out the Wiki!
Features:
▫️ Fileless
▫️ Stateless
▫️ Cert pinning
▫️ String "obfuscation" by RC4 encryption
▫️ Choose your AMSI Bypass
▫️ Transparent aliases for in-memory execution of C# programs
https://github.com/AdrianVollmer/PowerHub
Forwarded from 卩ro 爪Cracker
TCP/IP Vulnerability CVE-2022–34718 PoC Restoration and Analysis
https://ift.tt/PA5RrJh
Submitted October 28, 2022 at 09:04AM by sanitybit
via reddit https://ift.tt/lo2qpXd
https://ift.tt/PA5RrJh
Submitted October 28, 2022 at 09:04AM by sanitybit
via reddit https://ift.tt/lo2qpXd
Medium
Analysis and Summary of TCP/IP Protocol Remote Code Execution Vulnerability CVE-2022–34718
An Analysis of Remote Code Execution Vulnerability CVE-2022–34718
Forwarded from 卩ro 爪Cracker
ayaopay_ayao.7z
83.4 KB
www.ayaopay.com Database
👍7
Forwarded from 亗Lone Warrior亗
https://hacklido.com/d/66-yara-language
A blog on YARA Language for beginner Malware analysts and digital forensics researchers.
A blog on YARA Language for beginner Malware analysts and digital forensics researchers.
HACKLIDO
What is YARA language?
What is YARA??? YARA is a type of language where we write rules to detect strings, files, file formats etc. Which will ultimately help us in detecting mal...
👍1
Amazon AWS Certifications Courses Worth Thousands of Dollars are available FREE on Amazon Store
Not sure Till how much this offer will be available, But add them in your account to watch and complete certification later :)
Reference Link
#hacker_bano_chutiya_nhe ❤️❤️
Not sure Till how much this offer will be available, But add them in your account to watch and complete certification later :)
Reference Link
#hacker_bano_chutiya_nhe ❤️❤️
👍4🔥1