{"uuid": "d16baceb-0bb3-47f4-bedd-67ba10f3a54c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-3183", "type": "published-proof-of-concept", "source": "https://t.me/dilagrafie/3697", "content": "Tools - Hackers Factory \n\nSandman is a backdoor that is meant to work on hardened networks during red team engagements.\n\nhttps://github.com/Idov31/Sandman\n\nXSS Exploitation Tool is a penetration testing tool that focuses on the exploit of Cross-Site Scripting vulnerabilities.\n\nhttps://github.com/Sharpforce/XSS-Exploitation-Tool\n\nPOC for CVE-2024-3183 (FreeIPA Rosting)\n\nhttps://github.com/Cyxow/CVE-2024-3183-POC\n\nAbuse SVCHost Methods\n\nhttps://redteamrecipe.com/abuse-svchost-methodsrtc0017\n\n#CyberDilara\n\nSHELLSILO is a cutting-edge tool that translates C syntax into syscall assembly and its corresponding shellcode.\n\nhttps://github.com/nixpal/shellsilo\n\nHacking framework This framework is designed to perform penetration testing. Its functions:\n\nScan sql vulnerability\nScan xxs vulnerability\nDos sites\nBrutforce Ftp\nBrutforse SSh\nBrutforse mail Accounts\n\nhttps://github.com/b3-v3r/Hunner\n\nShwmae\nShwmae (shuh-my) is a Windows Hello abuse tool that was released during DEF CON 32 as part of the Abusing Windows Hello Without a Severed Hand talk. The purpose of the tool is to abuse Windows Hello from a privileged user context.\n\nhttps://github.com/CCob/Shwmae\n\nThis is a (rather flaky) poc for CVE-2024-38063, a RCE in tcpip.sys patched on August 13th 2024. I didn't find and report this vuln, that would be Wei.\n\nhttps://github.com/ynwarcs/CVE-2024-38063\n\n#CyberDilara", "creation_timestamp": "2024-08-31T04:41:57.000000Z"}