All posts in Uncategorized

■■■■□ CVE-2023-34050 Spring AMQP Deserialization Remote Code Execution. https://blog.pyn3rd.com/2023/11/03/CVE-2023-34050-Spring-AMQP-Deserialization-Remote-Code-Execution/ https://t.me/cKure/13177

Wasm to Bypass Latest Chrome v8sbx https://medium.com/@numencyberlabs/use-wasm-to-bypass-latest-chrome-v8sbx-again-639c4c05b157 https://t.me/cKure/13175

■■□□□ (Tool) HARpwn: A #PowerShell module designed to streamline the extraction and sanitization of HARTokens from HTTP Archive (HAR) files. https://github.com/HCRitter/HARpwn https://t.me/cKure/13174

Raspberry Pi RP2040 Superior Boy Takes Cybersecurity on the Go. https://www.hackster.io/superior-tech/advanced-cyber-security-and-education-device-superior-boy-133905 https://www.tomshardware.com/news/raspberry-pi-rp2040-superior-boy-takes-cybersecurity-on-the-go https://t.me/cKure/13172

■■□□□ C2 Tracker: Free to use IOC feed for various tools/malware. It started out for just C2 tools but has morphed into tracking infostealers and botnets as well. It uses Shodan searches to collect the IPs. The most recent collection is always stored in data; the IPs are broken down by tool and there is…

■■■■□ CVE-2023-46747 RCE: F5 BIG-IP unauthenticated remote code execution (RCE) and authentication bypass vulnerability. https://github.com/W01fh4cker/CVE-2023-46747-RCE https://t.me/cKure/13170

■■■■□ Bluetooth LE Spam: This project focuses on utilizing the built-in Bluetooth Low Energy (BLE) functionality of Android smartphones to create Phantom Bluetooth Device Advertisements, similar to what is known, for instance, in the case of the Flipper Zero. While there are other apps available that provide similar functionality, the objective of this app is…

■□□□□ Tenet plugin for IDA Pro tool: A Trace Explorer for Reverse Engineers. https://github.com/gaasedelen/tenet https://t.me/cKure/13168

■■□□□ Another victim of Israel-Palestine Cyber-War. The Central Bank of Azerbaijan was targeted by Team ‘Insane pk‘ for supporting Israel by allegedly supplying oil 🛢️. ● The group is an islamist Hacktivist group based in Pakistan. They had in the past attacked Indian entities. https://t.me/cKure/13166

■■□□□ Massive ransomware attack hinders services in 70 German municipalities . https://therecord.media/massive-cyberattack-hinders-services-in-germany https://www.wp.de/region/sauer-und-siegerland/cyberattacke-auf-suedwestfalen-was-bislang-bekannt-ist-id239913093.html https://t.me/cKure/13165