A script to automate privilege escalation with CVE-2023-22809 vulnerability
https://github.com/n3m1dotsys/CVE-2023-22809-sudoedit-privesc

qscan - Quick Network Scanner
https://github.com/0xor0ne/qscan
+ its companion command line tool qsc:
https://github.com/0xor0ne/qscan/tree/main/qsc

LinWinPwn - Active Directory Vulnerability Scanner.

Scan with the help of impacket, bloodhound, crackmapexec, ldapdomaindump, lsassy, smbmap, kerbrute, adidnsdump, and more.

#AD #scan #windows

https://github.com/lefayjey/linWinPwn

Script for automation of exploitation CVE-2023-22809 vulnerability to gain a root shell.

The script checks if the current user has access to run the sudoedit or sudo -e command for some file with root privileges. If it does it opens the sudoers file for the attacker to introduce the privilege escalation policy for the current user and get a root shell.

Linux Kernel Defence Map (v.5.13)
shows the relationships between vulnerability classes, exploitation techniques, bug detection mechanisms, and defence technologies
https://github.com/a13xp0p0v/linux-kernel-defence-map

A Fully Undetectable C2 Server That Communicates Via Google SMTP to evade Antivirus Protections and Network Traffic Restrictions
https://github.com/machine1337/gmailc2

A Stealthy Lsass Dumper - can abuse ProcExp152.sys driver to dump PPL Lsass, no dbghelp.lib calls
https://github.com/OmriBaso/RToolZ

Adobe Acrobat Reader - CVE-2023-21608 - Remote Code Execution Exploit
https://github.com/hacksysteam/CVE-2023-21608

This map lists the essential techniques to bypass anti-virus and EDR
https://github.com/CMEPW/BypassAV

#Infographics
"Network Nightmare" Mindmap, 2023.

// It is a mindmap for conducting network attacks. It will be useful to pentesters/red team operators

CUDA Program Intro and Reverse
https://bbs.kanxue.com/thread-275989.htm

#Fuzzing
1. Firefly - smart black-box fuzzer for WebApp testing
https://blog.yeswehack.com/yeswerhackers/firefly-smart-black-box-fuzzer-web-applications
2. WEB API fuzzing
https://github.com/vulntinker/FUA

"Source Code Audit on Git for Open Source Technology Improvement Fund (OSTIF)", 2023.

MFA Phishing using noVNC and AWS
https://medium.com/@psychsecurity/mfa-phishing-using-novnc-and-aws-ebc781b4d093

Rustproofing Linux
Part 1 - Leaking Addresses:
https://research.nccgroup.com/2023/02/06/rustproofing-linux-part-1-4-leaking-addresses
Porting Linux Kernel Bugs to Rust:
https://github.com/nccgroup/rustproofing-linux
Part 2 - Race Conditions:
https://research.nccgroup.com/2023/02/08/rustproofing-linux-part-2-4-race-conditions
Part 3 - Integer Overflows:
https://research.nccgroup.com/2023/02/14/rustproofing-linux-part-3-4-integer-overflows
PoC, which guards against copying the full 4GB+ of data: https://github.com/nccgroup/rustproofing-linux/blob/main/poc/poc_vuln_int_ovf.c
Part 4 - Shared Memory:
https://research.nccgroup.com/2023/02/16/rustproofing-linux-part-4-4-shared-memory

Direct Kernel Object Manipulation (DKOM) Attacks on ETW Providers
https://securityintelligence.com/posts/direct-kernel-object-manipulation-attacks-etw-providers

CVE-2022-39952:
Unauthenticated RCE in Fortinet FortiNAC
https://github.com/Florian-R0th/CVE-2022-39952

CVE-2023-23752:
CMS Joomla - unauthorized access to webservice endpoints
https://github.com/WhiteOwl-Pub/CVE-2023-23752