{"uuid": "42cb37fa-e236-444a-baf5-677556c527f9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24488", "type": "published-proof-of-concept", "source": "https://t.me/dilagrafie/3105", "content": "Tools \ud83d\udd27 \ud83d\udd28 \ud83d\udd27  - Hackers Factory\n\n\u200b\u200bTakeMyRDP\n\nA keystroke logger targeting the Remote Desktop Protocol (RDP) related processes, It utilizes a low-level keyboard input hook, allowing it to record keystrokes in certain contexts (like in mstsc.exe and CredentialUIBroker.exe).\n\nhttps://github.com/TheD1rkMtr/TakeMyRDP\n\n#infosec #pentesting #redteam\n\n\u200b\u200bpowershell-backdoor-generator\n\nReverse backdoor written in PowerShell and obfuscated with Python. It generates payloads for popular hacking devices like Flipper Zero and Hak5 USB Rubber Ducky, and changes its signature after every build for evasion.\n\nhttps://github.com/freeide/powershell-backdoor-generator\n\n#infosec #pentesting #redteam\n\n\u200b\u200bBashfuscator\n\nA fully configurable and extendable #Bash #obfuscation framework. This tool is intended to help both red team and blue team.\n\nhttps://github.com/Bashfuscator/Bashfuscator\n\n\u200b\u200bh1stats - h1 Program Stats Scraper\n\nThis python3 script will call out to HackerOne's graphql API and scrape all currently active programs for information and stats on every h1 program. All programs and their stats get tabulated into a generated CSV file. From here you can compare and contrast all program stats to pick high fidelity targets. Furthermore, you can supply your h1 session cookie to the script to also compile in all private programs to the CSV.\n\nhttps://github.com/defparam/h1stats\n\n#infosec #pentesting #bugbounty\n\n\u200b\u200bdotdotfarm\n\nUtility for detection & exploitation of Path Traversal vulnerabilities in various network services.\n\nhttps://github.com/treddis/dotdotfarm\n\n#cybersecurity #infosec\n\n\u200b\u200bpreboot\n\nExperiment with d_olex's firmware and conducting \"preboot\" attack\n\nhttps://github.com/realoriginal/preboot\n\n#cybersecurity #infosec\n\n\u200b\u200bWireless Pentesting CheatSheet\n\nThis repository contain a CheatSheet for OSWP & WiFi Cracking.\n\nhttps://github.com/V0lk3n/WirelessPentesting-CheatSheet\n\n#cybersecurity #infosec #pentesting\n\n\u200b\u200bCVE-2023-24488\n\nReversing Citrix Gateway for #XSS\n\nhttps://github.com/k00kx/CVE-2023-24488\n\n#cve #cybersecurity #infosec\n\n\u200b\u200bCryptoTester\n\nA utility for playing with cryptography, geared towards #ransomware analysis.\n\nhttps://github.com/Demonslay335/CryptoTester\n\n#cybersecurity #infosec\n\n\u200b\u200bRecycledInjector\n \nFully Undetected same-process native/.NET assembly shellcode injector based on RecycledGate by thefLink, which is also based on HellsGate + HalosGate + TartarusGate to ensure undetectable native syscalls even if one technique fails.\n\nhttps://github.com/florylsk/RecycledInjector\n\n#infosec #pentesting #redteam\n\nhttps://t.me/dilagrafie", "creation_timestamp": "2023-07-03T15:17:50.000000Z"}