{"uuid": "33958720-f6a3-4b56-b450-7b50ca966dec", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-30190", "type": "published-proof-of-concept", "source": "https://t.me/dilagrafie/3028", "content": "Tools - Hackers Factory \n\nAwesome Web3 hacking/security\n\nhttps://github.com/ManasHarsh/Awesome-Web3-security\n\nEducational Heap Exploitation\n\nThis repo is for learning various heap exploitation techniques. We use Ubuntu's Libc releases as the gold-standard. Each technique is verified to work on corresponding Ubuntu releases. \n\nYou can run apt source libc6 to download the source code of the Libc your are using on Debian-based operating system. You can also click \u25b6\ufe0f to debug the technique in your browser using gdb.\n\nhttps://github.com/shellphish/how2heap\n\n\u200bFastFinder\n\nIncident Response - Fast Suspicious File Finder.\n\nLightweight tool made for threat hunting, live forensics, and triage on both Windows and Linux Platforms. It is focused on endpoint enumeration and suspicious file finding based on various criteria:\n\n\u25ab\ufe0f file path/name\n\u25ab\ufe0f md5 / sha1 / sha256 checksum\n\u25ab\ufe0f simple string content match\n\u25ab\ufe0f complex content condition(s) based on YARA\n\nhttps://github.com/codeyourweb/fastfinder\n\n\u200bCVE-2022-30190 Follina POC\n\nHost exploit.html on localhost, port 80. Open the docx to pop calc.\n\nTo change the remote address the doc points to, open in 7Z and edit word\\rels\\document.xml.rels to point to a new location. YOU MUST keep the exclamation mark. It will literally not run if you omit this from the end of the URL.\n\nThe exploit must contain at least 3541 characters before the window.location.href, and they must be within the script tag. There is about 6000 or so included in the exploit.html\n\nhttps://github.com/onecloudemoji/CVE-2022-30190\n\n\u200bDaily updated proxy lists\n\nFor scraping and other information gathering automations:\n\nhttps://github.com/clarketm/proxy-list\nhttps://github.com/TheSpeedX/PROXY-List\nhttps://github.com/ShiftyTR/Proxy-List\nhttps://github.com/jetkai/proxy-list\n\nSocks5 for Telegram:\nhttps://github.com/hookzof/socks5_list \n\nfire\n\nfire is a simple tool meant to work in a pipeline of other scripts. It takes domains on stdin and outputs them on stdout if they resolve. The inspiration for this work is the filter-resolved Golang code in this repository. That repo is not updated in a long time and I thought that it was time to switch to the new Golang paradigm of modules. I also added a Dockerfile.\n\nhttps://github.com/thelicato/fire\n\n\u200bWindows-exploits\n\nhttps://github.com/lyshark/Windows-exploits\n\n\u200btoolbox-pentest-web\n\nEven though this box is primarily intended for offensive operation, many tools and scripts can also be used for defensive purposes, for example, in CI/CD pipelines as security validation.\n\nhttps://github.com/righettod/toolbox-pentest-web\n\n\u200bKaynStrike\n\nA User Defined Reflective Loader for #Cobalt Strike Beacon that spoofs the thread start address and frees itself after entry point was executed.\n\nhttps://github.com/Cracked5pider/KaynStrike\n\nsabre-ng\n\nFlexible C2 framework for Nation State Simulations in #RedTeam Assessments.\n\nhttps://github.com/aidden-laoch/sabre\n\n\u200bSplunk Security Content\n\nThis project gives you access to our repository of Analytic Stories, security guides that provide background on tactics, techniques and procedures (TTPs), mapped to the MITRE ATT&CK Framework, the Lockheed Martin Cyber Kill Chain, and CIS Controls. \n\nThey include Splunk searches, machine learning algorithms and Splunk Phantom playbooks (where available)\u2014all designed to work together to detect, investigate, and respond to threats.\n\nhttps://github.com/splunk/security_content\n\n\u200bHyperDbg Debugger\n\nOpen-source, community-driven, hypervisor-assisted, user-mode and kernel-mode Windows debugger with a focus on using modern hardware technologies. It is a debugger designed for analyzing, fuzzing and reversing.\n\nhttps://github.com/HyperDbg/HyperDbg\n\nssc-reading-list\n\nA reading list for software supply-chain security.\n\nhttps://github.com/chainguard-dev/ssc-reading-list\n\n\u200bArsenal\n\nJust a quick inventory, reminder and launcher for pentest commands.\n\nThis project written by pentesters for pentesters simplify the use of all the hard-to-remember commands\n\nhttps://github.com/Orange-Cyberdefense/arsenal\n\n#pentesting #redteam\n\nhttps://t.me/dilagrafie", "creation_timestamp": "2023-05-20T10:35:54.000000Z"}