All posts in Uncategorized

■■■■□ Hacking smart lights: the story behind CVE-2022-47758. https://pwning.tech/cve-2022-47758/ https://t.me/cKure/14212

■■■□□ APT28’s New Arsenal. https://github.com/blackorbird/APT_REPORT/blob/master/APT28/logpoint-etpr-forest-blizzard.pdf https://t.me/cKure/14211

■■■□□ Phishing like a pro: A guide for pentesters to add SPF, DMARC, DKIM and MX records to evilginx. https://fortbridge.co.uk/research/add-spf-dmarc-dkim-mx-records-evilginx/ https://t.me/cKure/14210

■■■□□ Ukrainian Systems Hit by Cobalt Strike Via a Malicious Excel File. https://www.darkreading.com/cyberattacks-data-breaches/ukrainian-systems-hit-by-cobalt-strike-via-a-malicious-excel-file https://t.me/cKure/14209

■■■■■ ROPDump – A Command-Line Tool Designed To Analyze Binary Executables For Potential Return-Oriented Programming (ROP) Gadgets, Buffer Overflow Vulnerabilities, And Memory Leaks. https://github.com/Rizer0/Ropdump https://www.kitploit.com/2024/06/ropdump-command-line-tool-designed-to.html https://t.me/cKure/14207

■■■■□ DLLirant is a tool to automate the DLL hijacking research on a specified binary. https://github.com/redteamsocietegenerale/DLLirant https://t.me/cKure/14206

■□□□□ Spy-Story from India : Ex-BrahMos engineer gets a life term for spying for Pakistan’s state intelligence agency ISI. https://www.indiatoday.in/india/story/ex-brahmos-engineer-nishant-agarwal-life-term-spying-pakistan-intelligence-agency-2547520-2024-06-03 https://t.me/cKure/14205

■■■■□ PPLBlade: Protected Process Dumper Tool https://github.com/tastypepperoni/PPLBlade https://t.me/cKure/14204

■■■■■ [Tool] ChromeKatz: Cookie dumper for Chrome and Edge: Dump cookies directly from Chrome’s process memory. https://github.com/Meckazin/ChromeKatz https://t.me/cKure/14202

■■■■□ Exploit Development: No Code Execution? No Problem! Living The Age of VBS, HVCI, and Kernel CFG. https://connormcgarr.github.io/hvci/ https://t.me/cKure/14201