2. CVE-2022-41622:
CSRF in F5 Big-IP that leads to RCE
https://github.com/rbowes-r7/refreshing-soap-exploit

#exploit
1. CVE-2022-32899:
iPad/iOS Neural Engine Vulnerability
https://github.com/0x36/weightBufs

Data breach search engine.


1) leak check.

https://leakcheck.io/

2) intel

https://intelx.io

3) leak peek

https://leakpeek.com

4) snusbase

https://snusbase.com/

5) monitor_firefox

https://monitor.firefox.com/

6) haveibeenpwned

https://haveibeenpwned.com/

7) scattered secrets

https://scatteredsecrets.com/

8) amibreached

https://amibreached.com/

9) leak lookup

https://leak-lookup.com/

10) rslookup

https://rslookup.com/terms

Nmap scripts to detect exchange 0-day (CVE-2022-41082) vulnerability

https://github.com/Diverto/nse-exchange

Collection of vulnerable code snippets (updated every friday)
https://ift.tt/48EQnpd

Submitted November 18, 2022 at 11:06PM by hisxo
via reddit https://ift.tt/aO6z5eq

gg's hacker's ( have a good day —❤️
‼️Here we go again

Free LinkedIn Premium for everyone

#hacker_bano_chutiya_nhe 🌜👾🌛

​​SQLRecon

A C# MS-SQL toolkit designed for offensive reconnaissance and post-exploitation. For detailed usage information on each technique, refer to the wiki.

https://github.com/xforcered/SQLRecon

Details:
https://github.com/skahwah/Conference-Talks/tree/main/2022-Way-West-Hackin-Fest

Demo video:
https://vimeo.com/showcase/9606366/video/728191206

​​AlphaGolang

AlphaGolang is a collection of IDAPython scripts to help malware reverse engineers master Go binaries. The idea is to break the scripts into concrete steps, thus avoiding brittle monolithic scripts, and mimicking the methodology an analyst might follow when tackling a Go binary.

Scripts are released under GPL license (honoring Tim Strazzere's original GolangLoaderAssist which we refactored and updated for python3, props to Tim :) ). Contributions are welcome and encouraged!

https://github.com/SentineLabs/AlphaGolang

id_customer company siret ape firstname lastname email passwd birthday ip_registration

francescofitness.es

The Ultimate TOP 50 FREE Cyber Labs Resources in 2022
by RALFKAIROS

Alert to win - https://alf.nu/alert1
Attack-Defense - https://attackdefense.com
Bancocn - https://bancocn.com
Certified Secure - https://lnkd.in/gBKK-i-s
CMD Challenge - https://cmdchallenge.com
CryptoHack - https://cryptohack.org/
CTF Komodo Security - https://ctf.komodosec.com
Ctftime - https://ctftime.org/
Cyberdefenders - https://lnkd.in/gCf8v4Ju
CyberSecLabs - https://lnkd.in/gmyzMXju
EchoCTF - https://echoctf.red/
Explotation Education - https://exploit.education
Google CTF - https://lnkd.in/e46drbz8
Hack The Box - https://lnkd.in/ggfAMdQ8
Hackaflag BR - https://hackaflag.com.br/
Hacker Security - https://lnkd.in/gJbSaY3f
Hacker101 - https://ctf.hacker101.com
Hacking-Lab - https://hacking-lab.com/
Hacksplaining - https://lnkd.in/gVd9dNkK
HackTheBox - https://www.hackthebox.com
Hackthis - https://www.hackthis.co.uk
HackXpert - https://hackxpert.com/
HSTRIKE - https://hstrike.com
ImmersiveLabs - https://immersivelabs.com
LetsDefend- https://letsdefend.io/
NewbieContest - https://lnkd.in/gZ4UjDhy
OSBOXES - http://www.osboxes.org/
OverTheWire - http://overthewire.org
Penetration Testing Practice Labs - https://lnkd.in/grQev9Kk
Pentestlab - https://pentesterlab.com
PicoCTF - https://picoctf.com
PortSwigger Web Security Academy - https://lnkd.in/gAPq2ezr
Practical Pentest Labs - https://lnkd.in/gUSqv6xS
Pwn college - https://dojo.pwn.college/
PWNABLE - https://lnkd.in/gNcyqG64
RangeForce - https://lnkd.in/gGy3feqt
Root in Jail - http://rootinjail.com
Root-Me - https://www.root-me.org
SANS Challenger - https://lnkd.in/gG-5_ZPF
SmashTheStack - https://lnkd.in/gMFNTURc
TCM Security - https://lnkd.in/gbQinqvf
The Cryptopals Crypto Challenges - https://cryptopals.com
Try Hack Me - https://tryhackme.com
Vulnhub - https://www.vulnhub.com
Vulnmachines https://vulnmachines.com/
W3Challs - https://w3challs.com
WeChall - http://www.wechall.net
Zenk-Security - https://lnkd.in/g_y_p5ha
Webgoat - https://lnkd.in/gjsgegYw

if you recommand websites we missed, please share them in the comments by