{"uuid": "8011bb21-0ed8-4eaa-a1d1-a6e3ef29eaa5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-27524", "type": "published-proof-of-concept", "source": "https://t.me/dilagrafie/2897", "content": "Tools - Hackers Factory\n\n\u200b\u200bLTESniffer\n\nAn Open-source LTE Downlink/Uplink Eavesdropper.\n\nThe main purpose of LTESniffer is to support security and analysis research on the cellular network. Due to the collection of uplink-downlink user data, any use of LTESniffer must follow the local regulations on sniffing the LTE traffic.\n\nhttps://github.com/SysSec-KAIST/LTESniffer\n\n#cybersecurity #infosec #pentesting\n\n\u200b\u200bCVE-2023-1671-POC\n\nBased on dnslog platform.\n\nhttps://github.com/W01fh4cker/CVE-2023-1671-POC\n\n#infosec #cve #poc\n\n\u200b\u200bChattyCaty\n\nOpen-source project which demonstrates an infrastructure to create a polymorphic program using GPT models.\n\nhttps://github.com/cyberark/ChattyCaty\n\n#cybersecurity #infosec\n\n\u200b\u200bprocess-cloning\n\nThe Definitive Guide To Process Cloning on Windows.\n\nhttps://github.com/huntandhackett/process-cloning\n\n#cybersecurity #infosec #pentesting\n\nPentestGPT\n\nA GPT-empowered penetration testing tool.\n\nhttps://github.com/GreyDGL/PentestGPT\n\n#cybersecurity #infosec #pentesting\n\n\u200b\u200bLinkedinEmails\n\nSearches for employees of a company on #linkedin and generates a list of possible emails.\n\nhttps://github.com/miltinhoc/LinkedinEmails\n\n\u200b\u200bSECMON\n\nWeb-based tool for the automation of infosec watching and vulnerability management with a web interface.\n\nhttps://github.com/Guezone/SECMON\n\n#cybersecurity #infosec\n\n\u200b\u200bCVE-2023-27524 \n\nApache Superset Auth Bypass.\n\nScript to check if an Apache Superset server is running with an insecure default configuration (CVE-2023-27524). The script checks if a Superset server's session cookies are signed with any well-known default Flask SECRET_KEYs.\n\nhttps://github.com/horizon3ai/CVE-2023-27524\n\n#infosec #cve #poc\n\n\u200b\u200bZaproxy\n\nThe OWASP Zed Attack Proxy (ZAP) is one of the world\u2019s most popular free security tools and is actively maintained by a dedicated international team of volunteers. It can help you automatically find security vulnerabilities in your web applications while you are developing and testing your applications. It's also a great tool for experienced pentesters to use for manual security testing.\n\nhttps://github.com/zaproxy/zaproxy\n\nWebsite:\nhttps://www.zaproxy.org/\n\n#infosec #pentesting #best\n\n\u200b\u200bStackrox\n\nThe StackRox Kubernetes Security Platform performs a risk analysis of the container environment, delivers visibility and runtime alerts, and provides recommendations to proactively improve security by hardening the environment.\n\nhttps://github.com/stackrox/stackrox\n\n#cybersecurity #infosec\n\n\u200b\u200bNuclear Pond\n\nNuclear Pond is a utility leveraging Nuclei to perform internet wide scans for the cost of a cup of coffee.\n\nhttps://github.com/DevSecOpsDocs/nuclearpond\n\n#cybersecurity #infosec \n\nhttps://t.me/dilagrafie\nhttps://t.me/HackerFactory", "creation_timestamp": "2023-04-26T09:26:57.000000Z"}