{"uuid": "bc1c143e-3316-4a64-8b80-33f697e6418f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-4262", "type": "published-proof-of-concept", "source": "https://t.me/dilagrafie/3232", "content": "Tools - Hackers Factory \n\nXLL DROPPER | Learn to create Native xll Dropper\n\nhttps://github.com/EvilGreys/XLL-DROPPER-\n\nIndirect Dynamic Syscall, SSN + Syscall address sorting via Modified TartarusGate approach + Remote Process Injection via APC Early Bird + Spawns a sacrificial Process as target process + (ACG+BlockDll) mitigation policy on spawned process + PPID spoofing + Api resolving from TIB + API hashing\n\nhttps://github.com/reveng007/DarkWidow\n\nxss_payloads\n\nhttps://github.com/radhasec/xss_payload\n\nA list of RSS related stuff: tools, services, communities and tutorials, etc.\n\nhttps://github.com/AboutRSS/ALL-about-RSS\n\na simple implementation of Proxy-DLL-Loads in Rust\n\nhttps://github.com/0xf00I/DLLProxying-rs\n\n13exp/SpringBoot-Scan-GUI\n\nhttps://github.com/13exp/SpringBoot-Scan-GUI\n\nCobalt Strike Profiles for EDR Evasion\n\nhttps://github.com/EvilGreys/Cobalt-Strike-Profiles-for-EDR-Evasion\n\nAutomation to assess the state of your M365 tenant against CISA's baselines\n\nhttps://github.com/cisagov/ScubaGear\n\nFull Chain Analysis of CVE-2022-4262, a non-trivial feedback slot type confusion in V8\n\nhttps://github.com/bjrjk/CVE-2022-4262\n\nTool to remotely dump secrets from the Windows registry\n\nhttps://github.com/jfjallid/go-secdump\n\n#HackersFactory", "creation_timestamp": "2024-02-12T08:27:39.000000Z"}