{"uuid": "62ba14a0-cbca-4745-98ef-5868ccdec12d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-23397", "type": "published-proof-of-concept", "source": "https://t.me/dilagrafie/3123", "content": "35 Tools  \ud83d\udd27 \ud83d\udd27\ud83d\udd27 - Hackers Factory\n\n\u200bAwesome Privacy\n\nA curated list of privacy & security-focused software and services.\n\nhttps://github.com/Lissy93/awesome-privacy\n\n#cybersecurity #infosec #privacy\n\n\u200b\u200bcrt.sh\n\nThis bash script makes it easy to quickly save and parse the output from https://crt.sh website. to be sent to tools like httpx!\n\nhttps://github.com/az7rb/crt.sh\n\n#infosec #pentesting #bugbounty\n\n\u200b\u200bpromptmap\n\nPrompt injection is a type of security vulnerability that can be exploited to control the behavior of a ChatGPT instance. By injecting malicious prompts into the system, an attacker can force the #ChatGPT instance to do unintended actions.\n\nhttps://github.com/utkusen/promptmap\n\n#infosec #pentesting #redteam\n\n\u200b\u200bWubbabooMark\n\nWubbabooMark aimed to detect traces of usage of software debuggers or special software designed to hide debuggers presence from debugee by tampering various aspects of program environment.\n\nhttps://github.com/hfiref0x/WubbabooMark\n\n#cybersecurity #infosec\n\n\u200b\u200bHEDnsExtractor\n\nRaw html extractor from Hurricane Electric portal\n\nhttps://github.com/teixeira0xfffff/HEDnsExtractor\n\n#pentesting #redteam #bugbounty\n\n\u200b\u200bShadowForge C2\n\nShadowForge Command & Control - Harnessing the power of Zoom's API, control a compromised Windows Machine from your Zoom Chats.\n\nhttps://github.com/0xEr3bus/ShadowForgeC2\n\n#infosec #pentesting #redteam\n\n\u200b\u200bGAP-Burp-Extension\n\nThis is an evolution of the original getAllParams extension for Burp. Not only does it find more potential parameters for you to investigate, but it also finds potential links to try these parameters on, and produces a target specific wordlist to use for fuzzing.\n\nhttps://github.com/xnl-h4ck3r/GAP-Burp-Extension\n\n#bugbounty #burpsuite\n\n\u200b\u200bin-app-protections\n\nThis repo will contain all the scripts and POCs for bypassing various in-app protection techniques.\n\nhttps://github.com/fatalSec/in-app-protections\n\n#cybersecurity #infosec #bugbounty\n\n\u200b\u200bBINSEC\n\nOpen-source toolset to help improve software security at the binary level.\n\nhttps://github.com/binsec/binsec\n\n#cybersecurity #infosec\n\n\u200b\u200bCVE-2023-20110\n\nPoC script for CVE-2023-20110 - Cisco Smart Software Manager On-Prem SQL Injection Vulnerability\n\nhttps://github.com/redfr0g/CVE-2023-20110\n\n#cve #cybersecurity #infosec\n\n\u200b\u200bCVE-2023-23397\n\nMS Outlook Privilege Escalation.\n\nhttps://github.com/Muhammad-Ali007/OutlookNTLM_CVE-2023-23397\n\n#cve #cybersecurity #infosec\n\n\u200b\u200bCVE-2023-23397\n\nProof of Concept for CVE-2023-23397 in Python. Quick and easy \"proof of concept\" in Python for the Outlook CVE that affects Microsoft Office/365 products.\n\nhttps://github.com/tiepologian/CVE-2023-23397\n\n#cve #cybersecurity #infosec\n\n\u200b\u200bSigmaTau\n\nAn extension of the sigma standard to include security metrics.\n\nhttps://github.com/priamai/sigmatau\n\n#cybersecurity #infosec #pentesting\n\n\u200b\u200bTGSCAN\n\nStreamline Your Telegram Searches: Find Channels, Groups, and Chat History Effortlessly.\n\n\u2022 Fast search results\n\u2022 Intuitive search interface\n\u2022 Ability to search chat history\n\u2022 Near-real-time indexing for up-to-date search results\n\nhttps://github.com/tgscan-dev/tgscan\n\nWeb:\nhttps://tgscan.xyz/\n\n#OSINT #cybersecurity #infosec\n\n\u200b\u200bMicrowalk \n\nA microarchitectural leakage detection framework using dynamic instrumentation.\n\nhttps://github.com/microwalk-project/Microwalk\n\n#cybersecurity #infosec\n\n\u200b\u200bCrinox Rebooted (cX)\n\nA free keyless #exploit developed by DevXternal! This is a free exploit for UWP roblox, this repository only holds the PatchCheck and UpdateCheck, the exploit is released in Releases! The API (FluxAPI) is developed by ItzzExcel and is open source.\n\nhttps://github.com/DevXternal/Crinox-Rebooted\n\n#cybersecurity #infosec\n\nCVE-2023-27350\n\nA python script tht searches for vulnerable version of PaperCut MF/NG.\n\nhttps://github.com/MaanVader/CVE-2023-27350-POC\n\n#cve #cybersecurity #infosec\n\n\u200b\u200bhvext\n\nThe Windbg extension that implements commands helpful to study Hyper-V on Intel processors.\n\nhttps://github.com/tandasat/hvext\n\n#cybersecurity #infosec\n\n\u200b\u200b1/3", "creation_timestamp": "2023-09-02T06:43:12.000000Z"}