All posts in Uncategorized

■■□□□ PMP-Decrypter: This is a tool to decrypt the encrypted password strings in Patch My PC settings.xml files. https://github.com/LuemmelSec/PMP-Decrypter https://t.me/cKure/12871

■■■□□ A Python-based tool to detect the CVE-2023-30943 vulnerability in Moodle, which allows unauthorized folder creation via specially crafted requests in TinyMCE loaders. https://github.com/Chocapikk/CVE-2023-30943 https://t.me/cKure/12870

■■□□□ Streamline tool: Streamline your recon and vulnerability detection process with SCRIPTKIDDI3, A recon and initial vulnerability detection tool built using shell script and open source tools. https://github.com/MINAD0/XML-RPC-Check https://t.me/cKure/12869

■■□□□ XML-RPC Vulnerability Checker and Directory Fuzzer. https://github.com/MINAD0/XML-RPC-Check https://t.me/cKure/12868

■□□□□ awesome-soc-analyst: https://github.com/LetsDefend/awesome-soc-analyst https://t.me/cKure/12867

■■■■■ CVE-2023-40031: Notepad++ heap buffer overflow vulnerability CVE-2023-40031 analysis and reproduction. https://github.com/webraybtl/CVE-2023-40031 https://t.me/cKure/12866

■■■■■ Corrupting memory without memory corruption. https://github.blog/2022-07-27-corrupting-memory-without-memory-corruption/ https://t.me/cKure/12865

■■■■□ Interesting thread on SQLi exploring utilities (tools). https://twitter.com/intigriti/status/1700458599108018291 https://t.me/cKure/12864

■■■■■ Iranian hackers breach United States’ aviation org via Zoho, Fortinet bugs. https://www.cisa.gov/news-events/alerts/2023/09/07/cisa-fbi-and-cnmf-release-advisory-multiple-nation-state-threat-actors-exploit-cve-2022-47966-and https://www.bleepingcomputer.com/news/security/iranian-hackers-breach-us-aviation-org-via-zoho-fortinet-bugs/ https://t.me/cKure/12863

■■■■■ Debugging Windows Isolated User Mode (IUM) Processes . https://blog.quarkslab.com/debugging-windows-isolated-user-mode-ium-processes.html https://t.me/cKure/12862