#蓝队工具 Sysmon 事件模拟实用程序,可用于模拟攻击以生成 Sysmon 事件日志,以测试 Blue 团队的 EDR 检测和关联规则
https://github.com/ScarredMonk/SysmonSimulator
https://github.com/ScarredMonk/SysmonSimulator
GitHub
GitHub - ScarredMonk/SysmonSimulator: Sysmon event simulation utility which can be used to simulate the attacks to generate the…
Sysmon event simulation utility which can be used to simulate the attacks to generate the Sysmon Event logs for testing the EDR detections and correlation rules by Blue teams. - ScarredMonk/SysmonS...
CVE-2021-44521 – 利用 Apache Cassandra 用户定义函数进行远程代码执行
https://jfrog.com/blog/cve-2021-44521-exploiting-apache-cassandra-user-defined-functions-for-remote-code-execution/
https://jfrog.com/blog/cve-2021-44521-exploiting-apache-cassandra-user-defined-functions-for-remote-code-execution/
海康威视未经身份验证的 RCE (CVE-2021-36260)
https://github.com/rapid7/metasploit-framework/pull/16204
https://github.com/rapid7/metasploit-framework/pull/16204
GitHub
Hikvision Unauthenticated RCE (CVE-2021-36260) by jbaines-r7 · Pull Request #16204 · rapid7/metasploit-framework
Description
This module exploits an unauthenticated command injection in a variety of Hikvision IP cameras (CVE-2021-36260). The module inserts a command into an XML payload used with an HTTP PUT r...
This module exploits an unauthenticated command injection in a variety of Hikvision IP cameras (CVE-2021-36260). The module inserts a command into an XML payload used with an HTTP PUT r...
sshd辅助CVE-2021-26708(Linux内核)漏洞利用提权
https://mp.weixin.qq.com/s/C3h-T0clMcNolZEnnuJPJA
https://mp.weixin.qq.com/s/C3h-T0clMcNolZEnnuJPJA
Weixin Official Accounts Platform
堡垒靶场:sshd辅助CVE-2021-26708(Linux内核)漏洞利用提权