{"uuid": "66c3c763-4f18-4d8e-87c9-eb51def08cad", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-27524", "type": "published-proof-of-concept", "source": "https://t.me/dilagrafie/2994", "content": "Tools - Hackers Factory \n\nbadsecrets\n\nA library for detecting known secrets across many web frameworks.\n\nhttps://github.com/blacklanternsecurity/badsecrets\n\nDetails:\nhttps://blog.blacklanternsecurity.com/p/introducing-badsecrets\n\n#cybersecurity #infosec #pentesting\n\nHyperDeceit\n\nThis repository contains the full source-code of the HyperDeceit project which is a library that allows you to impersonate as Hyper-V and intercept hypercalls done by the Windows kernel.\n\nhttps://github.com/Xyrem/HyperDeceit\n\nDetails: \nhttps://reversing.info/posts/hyperdeceit/\n\n#infosec #pentesting #redteam\n\nCVE-2023-27524\n\nApache Superset Auth Bypass (CVE-2023-27524)\n\nhttps://github.com/TardC/CVE-2023-27524\n\n#cve #cybersecurity #infosec\n\nPEASS\n\nPrivilege Escalation Awesome Scripts SUITE new generation.\n\nhttps://github.com/carlospolop/PEASS-ng/\n\n#infosec #pentesting #redteam\n\nMagSpoof\n\nA portable device that can spoof/emulate any magnetic stripe, credit card or hotel card \"wirelessly\", even on standard magstripe (non-NFC/RFID) readers. It can disable Chip&PIN and predict AMEX card numbers with 100% accuracy.\n\nhttps://github.com/samyk/magspoof\n\n#infosec #pentesting #redteam\n\neffective-waffle \n\nyet another sleep encryption thing. also used the default github repo name for this one.\n\nhttps://github.com/susMdT/effective-waffle\n\n#cybersecurity #infosec\n\nDUCKSPLOIT\n\nWindows Hacking FrameWork using Reverse Shell.\n\nhttps://github.com/canarddu38/DUCKSPLOIT\n\n#infosec #pentesting #redteam\n\nBackdoorBox\n\nThe open-sourced Python toolbox for backdoor attacks and defenses.\n\nhttps://github.com/THUYimingLi/BackdoorBox\n\n#cybersecurity #infosec #pentesting\n\nWinDbg_Scripts\n\nUseful scripts for WinDbg using the debugger data model.\n\nhttps://github.com/yardenshafir/WinDbg_Scripts\n\n#cybersecurity #infosec\n\nCompMgmtLauncher_DLL_UACBypass\n\nCompMgmtLauncher & Sharepoint DLL Search Order hijacking UAC/persist via OneDrive.\n\nhttps://github.com/hackerhouse-opensource/CompMgmtLauncher_DLL_UACBypass\n\n#infosec #pentesting #redteam\n\nEliteElixir\n\nThe first ever MC:BE ForceOP Exploit utilizing a user impersonation exploit within Bedrock Dedicated Server.\n\nhttps://github.com/MrDiamond64/EliteElixir\n\n#infosec #pentesting #redteam\n\nprenum\n\nThe perils of the Pre-Windows 2000 compatible access group in a Windows Domain.\n\nhttps://github.com/4ndr34z/prenum\n\n#infosec #pentesting #redteam\n\nhttps://t.me/dilagrafie\nhttps://t.me/HackerFactory", "creation_timestamp": "2023-05-16T06:03:12.000000Z"}