■■■■■ Firebase Domain Front – Hiding C2 as App traffic. https://www.redteam.cafe/red-team/domain-front/firebase-domain-front-hiding-c2-as-app-traffic https://t.me/cKure/11339
All posts tagged hack
May 15, 2022 at 10:14AM
■■■■■ Active Directory Domain Privilege Escalation (CVE-2022–26923). https://research.ifcr.dk/certifried-active-directory-domain-privilege-escalation-cve-2022-26923-9e098fe298f4 https://t.me/cKure/11338
May 15, 2022 at 10:13AM
Well written from A to Z: Exploiting a Use-After-Free for code execution in every version of Python 3. https://pwn.win/2022/05/11/python-buffered-reader.html https://t.me/cKure/11337
May 15, 2022 at 01:01AM
■■□□□ Zyxel Firewall Remote Command Injection Vulnerability (CVE-2022-30525) Batch Detection Script. https://github.com/shuai06/CVE-2022-30525 https://t.me/cKure/11336
May 14, 2022 at 05:03AM
■■■■■ Reversing an Android sample which uses Flutter. https://cryptax.medium.com/reversing-an-android-sample-which-uses-flutter-23c3ff04b847 https://t.me/cKure/11335
May 14, 2022 at 12:08AM
■■■■□ Zero-Day: SonicWall “strongly urges” customers to patch several high-risk security flaws impacting its Secure Mobile Access (SMA) 1000 Series line of products that can let attackers bypass authorization and, potentially, compromise unpatched appliances. https://www.sonicwall.com/support/knowledge-base/security-notice-sma-1000-series-unauthenticated-access-control-bypass/220510172939820/ https://t.me/cKure/11334
May 12, 2022 at 09:04PM
■■■■□ SQL Server String Functions Cheat Sheet. https://blog.sqlbak.com/giveaway-sql-server-string-functions-cheat-sheet https://t.me/cKure/11332
May 12, 2022 at 10:49AM
■■■□□ Pegasus, the secretive surveillance system at the service of Israel’s interests. https://english.elpais.com/international/2022-05-10/pegasus-the-secretive-surveillance-system-at-the-service-of-israels-interests.html https://t.me/cKure/11331
May 12, 2022 at 10:22AM
■■■■□ Hackers Deploy IceApple Exploitation Framework on Hacked MS Exchange Servers. https://thehackernews.com/2022/05/hackers-deploy-iceapple-exploitation.html https://t.me/cKure/11330
May 12, 2022 at 04:23AM
■■■■■ Cisco fixed an Authenticated Heap Overflow Vulnerability (CVE-2022-20737) in Cisco ASA found by ‘PT Swarm’ researcher Nikita Abramov. The vulnerability allows an attacker to cause a DoS or to obtain portions of process memory from the device. https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asa-ssl-vpn-heap-zLX3FdX https://t.me/cKure/11329