{"uuid": "793643f1-7631-471f-b449-8bdac624a7a9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-3519", "type": "published-proof-of-concept", "source": "https://t.me/dilagrafie/3142", "content": "Hackers Factory \n\nUnveiling the hidden depths of \n#DarkGate!\n\nMy latest blog post deep dive into its obfuscation techniques, decrypting deception of the DarkGate malware.\n\nThrough the blog you'll find about the campaign execution chain, what happens upon a double click from the user and leads to a sophisticated multi staged malware execution chain.\n\nSome key takeaways from the blog:\n\u25fe\ufe0f Usage CallWindowProc for injection\n\u25fe\ufe0f Custom base64 decoding routine\n\u25fe\ufe0f XOR loop encryption\n\u25fe\ufe0f Executable loading from stack-strings\n\nSo what are you waiting for? \nDive into the blog right now: https://0xtoxin.github.io/threat%20breakdown/DarkGate-Camapign-Analysis/\n\nGitHub - osintambition/Social-Media-OSINT-Tools-Collection: A collection of most useful osint tools for SOCINT.\n\nhttps://github.com/osintambition/Social-Media-OSINT-Tools-Collection\n\nCitrix ADC RCE CVE-2023-3519\nThis exploit uses addresses and shellcode for Citrix VPX 13.1-48.47.\n\nhttps://github.com/BishopFox/CVE-2023-3519\n\nDaProfiler is an OSINT tool allowing you to collect certain information about yourself in order to rectify by rgpd requests the traces you may have left on the net. DaProfiler is indeed able to recover: Addresses, Social media accounts, e-mail addresses, mobile / landline number, jobs. On a specified subject in a limited time. \n\nhttps://github.com/daprofiler/DaProfiler\n\nandroidqf (Android Quick Forensics) helps quickly gathering forensic evidence from Android devices, in order to identify potential traces of compromise.\n\nhttps://github.com/botherder/androidqf\n\nKnowledge base of exploit mitigations available across numerous operating systems, architectures and applications and versions.\n\nhttps://github.com/nccgroup/exploit_mitigations\n\nAiCEF\n\nhttps://github.com/grazvan/AiCEF\n\nLLM vulnerability scanner\n\nhttps://github.com/leondz/garak\n\nDOM XSS scanner for Single Page Applications\n\nhttps://github.com/fcavallarin/domdig\n\njSQL Injection is a Java application for automatic SQL database injection\n\nhttps://github.com/ron190/jsql-injection\n\nmassive SQL injection vulnerability scanner\n\nhttps://github.com/the-robot/sqliv\n\nA friend of SQLmap which will do what you always expected from SQLmap.\n\nhttps://github.com/s0md3v/sqlmate\n\n#cybersecurity #hackersfactory \n\nhttps://t.me/dilagrafie", "creation_timestamp": "2023-08-09T03:37:49.000000Z"}