Latest Infosec News and Articles
- Learning Linux Kernel Exploitation – Part 1 https://lkmidas.github.io/posts/20210123-linux-kernel-pwn-part-1/#Pentesting
- laravel debug rce CVE-2021-3129 https://github.com/SNCKER/CVE-2021-3129
- How To Attack Kerberos 101 https://m0chan.github.io/2019/07/31/How-To-Attack-Kerberos-101.html
- A list of cyber-chef recipes and curated links https://github.com/mattnotmax/cyberchef-recipes
- Windows Exploitation Tricks: Trapping Virtual Memory Access https://googleprojectzero.blogspot.com/2021/01/windows-exploitation-tricks-trapping.html
- Dridex Malicious Document Analysis: Automating the Extraction of Payload URLs https://threatresearch.ext.hp.com/dridex-malicious-document-analysis-automating-the-extraction-of-payload-urls/
- Attacking Active Directory Group Managed Service Accounts (GMSAs) https://luemmelsec.github.io/Kerberoasting-VS-AS-REP-Roasting/
- DNSpooq – dnsmasq cache poisoning (CVE-2020-25686, CVE-2020-25684, CVE-2020-25685) https://github.com/knqyf263/dnspooq
- Introduction to Ghidra Scripting for Embedded ELFs and UPX https://www.archcloudlabs.com/projects/ghidra_scripting_01/
Latest Vulnerabilities, POCs, and Exploit
- CMSUno 1.6.2 – ‘lang/user’ Remote Code Execution (Authenticated) https://www.exploit-db.com/exploits/49485
- SonicWall SSL-VPN 8.0.0.0 – ‘shellshock/visualdoor’ Remote Code Execution (Unauthenticated) https://www.exploit-db.com/exploits/49499
- Home Assistant Community Store (HACS) 1.10.0 – Path Traversal to Account Takeover https://www.exploit-db.com/exploits/49495
- Quick.CMS 6.7 – Remote Code Execution (Authenticated) https://www.exploit-db.com/exploits/49494
- OpenEMR 5.0.1 – Remote Code Execution (Authenticated) (2) https://www.exploit-db.com/exploits/49486
- Metasploit Framework 6.0.11 – msfvenom APK template command injection https://www.exploit-db.com/exploits/49491
