{"uuid": "d749520f-f891-4269-b810-f6445d11dda8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-0669", "type": "published-proof-of-concept", "source": "https://t.me/dilagrafie/2317", "content": "#Tools\u00a0 \ud83d\udee0\ufe0f \ud835\udddb\ud835\uddee\ud835\uddf0\ud835\uddf8\ud835\uddf2\ud835\uddff\ud835\ude00 \ud835\uddd9\ud835\uddee\ud835\uddf0\ud835\ude01\ud835\uddfc\ud835\uddff\ud835\ude06\n\n\u200b\u200bLinux Commit Analyser\n\nThis is a hacky little tool I wrote to parse #Linux kernel commits, with security fixes in mind.\n\nLica allows you to parse a Linux repository's commit history, filtering for fixes and looking for specific keywords. I've included some statistics in the output and a naive search for patch coverage if you give it some local kernel sources.\n\nhttps://github.com/sam4k/lica\n\nDetails:\nhttps://sam4k.com/analysing-linux-kernel-commits\n\n\u200b\u200btrivy\n\nFind vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more.\n\nTrivy (pronunciation) is a comprehensive and versatile security scanner. Trivy has scanners that look for security issues, and targets where it can find those issues.\n\nhttps://github.com/knqyf263/trivy\n\nDocumentation:\nhttps://aquasecurity.github.io/trivy/v0.37/\n\n\u200b\u200bmobsfscan \n\nA static analysis tool that can find insecure code patterns in your Android and iOS source code. Supports Java, Kotlin, Swift, and Objective C Code. mobsfscan uses MobSF static analysis rules and is powered by semgrep and libsast pattern matcher.\n\nhttps://github.com/MobSF/mobsfscan\n\n\u200b\u200bRSMBI\n\nA python tool that answers to the question: What are the writable shares in this big domain? RSMBI connect to each target and it mounts the available shares in the /tmp folder (but that can also be changed). Once the shares are successfully mounted the threads (or the solo one) would start (os.)walking recursively all the folders, trying get a file handle with writing rights. If the handle is obtained successfully the UNC path of that file is saved within the database, this time also with a clickable version. Once a share is fully analyzed, the folder is unmounted (gracefully or lazily). Results are saved in a sqlite database and also exported in a nice CSV.\n\nhttps://github.com/oldboy21/RSMBI\n\n\u200b\u200bExploitLeakedHandle \n\nA utility that identifies handles in unprivileged processes that may have been inherited from a privileged parent process and attempts to leverage them for local privilege escalation.\n\nhttps://github.com/0x00Check/ExploitLeakedHandle\n\n#redteam\n\n\u200b\u200bFirefly\n\nFirefly is an advanced black-box fuzzer and not just a standard asset discovery tool. Firefly provides the advantage of testing a target with a large number of built-in checks to detect behaviors in the target.\n\nhttps://github.com/Brum3ns/firefly\n\n#pentesting #bugbounty\n\n\u200b\u200bCerbere\n\nA project to play a little bit with Kerberos on Windows.\n\n\u25ab\ufe0f Inject ticket\n\u25ab\ufe0f Ask a tgt\n\nhttps://github.com/OtterHacker/Cerbere\n\n\u200b\u200bThreadlessInject\n\nThreadless Process Injection using remote function hooking.\n\nhttps://github.com/CCob/ThreadlessInject\n\n\u200b\u200bConfFuzz\n\nFuzzing for Interface Vulnerabilities\n\nConfFuzz is an in-memory fuzzer aimed at detecting interface vulnerabilities in compartmentalized contexts. ConfFuzz is a cooperation between the University of Manchester, University Politehnica of Bucharest, Rice University, and Unikraft.io. It has been accepted to appear in NDSS'23.\n\nhttps://github.com/conffuzz/conffuzz\n\n\u200b\u200bCVE-2023-0669\n\nGoAnywhere MFT suffers from a pre-authentication command injection vulnerability in the License Response Servlet due to deserializing an arbitrary attacker-controlled object.\n\nhttps://github.com/0xf4n9x/CVE-2023-0669\n\n#cve\n\n\u200b\u200bpowershell-backdoo\n\nObfuscated powershell reverse backdoor with #FlipperZero and USB #RubberDucky payloads\n\nReverse backdoor written in Powershell and obfuscated with Python. Allowing the backdoor to have a new signature after every run. Also can generate auto run scripts for Flipper Zero and USB Rubber Ducky.\n\nhttps://github.com/Drew-Alleman/powershell-backdoor-generator\n\nBTC:\nbc1q62lwma4r3w3klq4mcn5hys9nps5h40qmafrc8e\n\n#Tools\u00a0 \ud83d\udee0\ufe0f \ud835\udddb\ud835\uddee\ud835\uddf0\ud835\uddf8\ud835\uddf2\ud835\uddff\ud835\ude00 \ud835\uddd9\ud835\uddee\ud835\uddf0\ud835\ude01\ud835\uddfc\ud835\uddff\ud835\ude06\nwww.ghostclan.org", "creation_timestamp": "2023-02-22T07:32:57.000000Z"}