{"uuid": "73d12b73-4e4a-48c9-be5e-d632384895bd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-26134", "type": "published-proof-of-concept", "source": "https://t.me/dilagrafie/2227", "content": "#Tools \ud835\udddb\ud835\uddee\ud835\uddf0\ud835\uddf8\ud835\uddf2\ud835\uddff\ud835\ude00 \ud835\uddd9\ud835\uddee\ud835\uddf0\ud835\ude01\ud835\uddfc\ud835\uddff\ud835\ude06\n\nGoReplay \n\nNetwork monitoring tool which can record your live traffic and use it for shadowing, load testing, monitoring and detailed analysis.\n\nAs your application grows, the effort required to test it also grows exponentially. GoReplay offers you the simple idea of reusing your existing traffic for testing, which makes it incredibly powerful. Our state of art technique allows you to analyze and record your application traffic without affecting it. This eliminates the risks that come with putting a third party component in the critical path.\n\nGoReplay increases your confidence in code deployments, configuration and infrastructure changes.\n\nhttps://github.com/buger/goreplay\n\nDOMDig\n\nDOMDig is a DOM XSS scanner that runs inside the Chromium web browser and it can scan single page applications (SPA) recursively.\n\nUnlike other scanners, DOMDig can crawl any webapplication (including gmail) by keeping track of DOM modifications and XHR/fetch/websocket requests and it can simulate a real user interaction by firing events. During this process, XSS payloads are put into input fields and their execution is tracked in order to find injection points and the related URL modifications.\n\nIt is based on htcrawl, a node library powerful enough to easily crawl a gmail account.\n\nKEY FEATURES\n\u25ab\ufe0f Runs inside a real browser (Chromium)\n\u25ab\ufe0f Recursive DOM crawling engine\n\u25ab\ufe0f Handles XHR, fetch, JSONP and websockets requests\n\u25ab\ufe0f Supports cookies, proxy, custom headers, http auth and more\n\u25ab\ufe0f Scriptable login sequences\n\nhttps://github.com/fcavallarin/domdig\n\nconfluencePot\n\nConfluencePot is a simple #honeypot for the Atlassian Confluence unauthenticated and remote OGNL injection vulnerability (CVE-2022-26134).\n\nhttps://github.com/SIFalcon/confluencePot\n\nReconnaissance\n\nRed Teaming reconnaissance Process \u2003 Table of Contents\n\n\u25ab\ufe0f What is Reconnaissance? -2\n\u25ab\ufe0f MITRE ATT&amp;CK Reconnaissance Techniques -3\n\u25ab\ufe0f Passive Recon Techniques -5 3.1 Gathering Domain IP/DNS Information 3.2 Gathering Domain/Website Information 3.3 Gathering Employee Information\n\u25ab\ufe0f Passive Subdomain Enumeration -9 4.1 Passive Subdomain Enumeration with Sublist3r 4.2 Subdomain Enumeration with Google Dorks\n\u25ab\ufe0f Active Recon Techniques -10 5.1 DNS Zone Transfers 5.2 Subdomain Brute-force 5.3 Port Scanning 5.4 Directory Brute-Force 5.5 Website Vulnerability Scanning\n\u25ab\ufe0f Automated Recon Frameworks -14 6.1 Automated Recon with Sn1per 6.2 Automated Recon with OWASP Amass\n\nhttps://github.com/niraj98456/Reconnaissance\n\nPulsar\n\nPulsar is a tool for data exfiltration and covert communication that enable you to create a secure data transfer, a bizarre chat or a network tunnel through different protocols, for example you can receive data from tcp connection and resend it to real destination through DNS packets \ud83c\udf89\n\nhttps://github.com/jacopodl/Pulsar\n\nHatSploit Framework\n\nModular penetration testing platform that enables you to write, test, and execute exploit code.\n\nhttps://github.com/EntySec/HatSploit\n\nGhost Framework\n\nAndroid post-exploitation framework that exploits the Android Debug Bridge to remotely access an Android device.\n\nhttps://github.com/EntySec/Ghost\n\nAced\n\nAced is a tool to parse and resolve a single targeted Active Directory principal's DACL. Aced will identify interesting inbound access allowed privileges against the targeted account, resolve the SIDS of the inbound permissions, and present that data to the operator. \n\nhttps://github.com/garrettfoster13/aced\n\nFfuf\n\nA fast web fuzzer written in Go\n\nFeatures:\n\u25ab\ufe0f Fast!\n\u25ab\ufe0f Allows fuzzing of HTTP header values, POST data, and different parts of URL, including GET parameter names and values\n\u25ab\ufe0f Silent mode (-s) for clean output that's easy to use in pipes to other processes.\n\u25ab\ufe0f Modularized architecture that allows integration with existing toolchains with reasonable effort\n\u25ab\ufe0f Easy-to-add filters and matchers (they are interoperable)\n\nhttps://github.com/ffuf/ffuf \n\n\nBTC:\nbc1q62lwma4r3w3klq4mcn5hys9nps5h40qmafrc8e\n\n\ud835\udddb\ud835\uddee\ud835\uddf0\ud835\uddf8\ud835\uddf2\ud835\uddff\ud835\ude00 \ud835\uddd9\ud835\uddee\ud835\uddf0\ud835\ude01\ud835\uddfc\ud835\uddff\ud835\ude06\nhttps://t.me/dilagrafie", "creation_timestamp": "2023-01-04T07:18:24.000000Z"}