Exploit for the CVE-2023-23397

https://github.com/api0cradle/CVE-2023-23397-POC-Powershell

Multiple Internet to Baseband RCE Vulnerabilities in Samsung Exynos Modems
https://googleprojectzero.blogspot.com/2023/03/multiple-internet-to-baseband-remote-rce.html

CVE-2023-23415:
ICMP RCE Vulnerability
https://github.com/wh-gov/CVE-2023-23415

Exploiting Node.js deserialization bug for RCE
https://sking7.github.io/articles/1601216121.html

Internet Control Message Protocol (ICMP) Remote Code Execution Vulnerability

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-23415

Cronos is Windows 10/11 x64 ring 0 rootkit. Cronos is able to hide processes, protect and elevate them with token manipulation.
https://github.com/XaFF-XaFF/Cronos-Rootkit

600+ Writeups about #BugBounty

https://github.com/devanshbatham/Awesome-Bugbounty-Writeups

Pwning the TP-Link AX1800 WiFi 6 Router: Uncovered and Exploited a Memory Corruption Vulnerability(CVE-2023-28760, critical RCE vulnerability in TP-Link AX1800 Wi-Fi 6 Routers).
https://www.tecsecurity.io/blog/tp-link_ax1800

Exploit for CVE-2023-28760
https://github.com/TecR0c/exploits/tree/main/CVE-2023-28760

ROPfuscator is a fine-grained code obfuscation framework for C/C++ programs using ROP (return-oriented programming)

https://pepe.runas.rocks/papers/ROPfuscator-WOOT23.pdf

https://github.com/ropfuscator/ropfuscator

Planning To Take Certified Ethical Hacker (CEH)? Here are github repo with 125 questions and answers to help you prep for the test
https://github.com/ryh04x/CEH-Exam-Questions

Acunetix v15.5 - 28 Mar 2023

Windows: https://www.mirrored.to/files/U6ARSI5A/Acunetix-v15.5-Windows-Pwn3rzs-CyberArsenal.7z_links
Linux: https://www.mirrored.to/files/X2X422VE/Acunetix-v15.5-Linux-Pwn3rzs-CyberArsenal.7z_links
Password: Pwn3rzs

Changelog:
Too long for post, refer here:
https://www.acunetix.com/changelogs/acunetix-premium/v15-5-28-march-2023/

Ultimate XXE Beginner Guide
https://thexssrat.medium.com/ultimate-xxe-beginner-guide-f3bd123b1f4a

WinRAR SFX archives can run PowerShell without being detected

https://www.crowdstrike.com/blog/self-extracting-archives-decoy-files-and-their-hidden-payloads/

Potato privilege escalation in Windows Server 2012 - 2022, Windows 8 - 11
https://github.com/BeichenDream/GodPotato

XSS automation tool helps hackers identify and exploit cross-site scripting vulnerabilities in web apps. Tests for reflected/persistent XSS
https://github.com/EmperialX/XSS-Automation-Tool

DJI Mavic 3 Drone Research Part 1: Firmware Analysis
https://www.nozominetworks.com/blog/dji-mavic-3-drone-research-part-1-firmware-analysis/

burpgpt - Burp Suite extension that integrates OpenAI's GPT to perform an additional passive scan for discovering highly bespoke vulnerabilities, and enables running traffic-based analysis of any type
https://github.com/aress31/burpgpt