{"uuid": "d3c17322-d122-462e-90ff-9eae5215c852", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-21839", "type": "published-proof-of-concept", "source": "https://t.me/dilagrafie/2337", "content": "#Tools\u00a0 \ud83d\udee0\ufe0f \ud835\udddb\ud835\uddee\ud835\uddf0\ud835\uddf8\ud835\uddf2\ud835\uddff\ud835\ude00 \ud835\uddd9\ud835\uddee\ud835\uddf0\ud835\ude01\ud835\uddfc\ud835\uddff\ud835\ude06\n\n\u200b\u200bCTI Fundamentals\n\nA collection of papers, blogs, and resources that make up the quintessential aspects of cyber threat intelligence.\n\nhttps://github.com/curated-intel/CTI-fundamentals\n\n\u200b\u200bprotocurl\n\nprotoCURL is cURL for Protobuf: The command-line tool for interacting with Protobuf over HTTP REST endpoints using human-readable text formats\n\nhttps://github.com/qaware/protocurl\n\n\u200b\u200bmast1c0re\n\nDevelop payloads that can be executed on the PlayStation 4 or PlayStation 5 through a game save file.\n\nhttps://github.com/McCaulay/mast1c0re\n\n\u200b\u200bSerianalyzer\n\nSerianalyzer is a static bytecode analyzer tracing native method calls made by methods called during deserialization.\n\nThe main purpose of this tool is as a research tool to audit code for dangerous behavior during deserialization. It is not really useful to determine whether you application is vulnerable or not. If your application deserializes data crossing trust boundaries - you should assume it is.\n\nhttps://github.com/mbechler/serianalyzer\n\n\u200b\u200bAwesome Vulnerable Applications\n\nA curated list of various vulnerable by design applications\n\nhttps://github.com/vavkamil/awesome-vulnerable-apps\n\n\u200b\u200bTheThing\n\nOpen-source tool to detect DOM Clobbering vulnerabilities.\n\nhttps://github.com/SoheilKhodayari/TheThing\n\nDOM Clobbering? \u2192 https://domclob.xyz/\n\n#cybersecurity #infosec\n\n\u200b\u200bMineMe\n\nMineMe is a node tool that gathers information about a Minecraft account by scraping multiple websites. It should be really easy to make your own modules, so don't hesitate to fork and bring your own things.\n\nhttps://github.com/Nenaff/MineMe\n\n#minecraft #OSINT\n\n\u200b\u200bWifi-Hacking\n\nCyber Security Tool For Hacking Wireless Connections Using Built-In Kali Tools. Supports All Securities (WEP, WPS, WPA, WPA2/TKIP/IES)\n\nhttps://github.com/ankit0183/Wifi-Hacking\n\n\u200b\u200bVDP-Finder\n\nThis extension tells if visited sites have vulnerability disclosure programs\n\nhttps://github.com/yeswehack/yeswehack_vdp_finder\n\n\u200b\u200boss-vulnerability-guide\n\nA guide on coordinated vulnerability disclosure for open source projects. Includes templates for security policies (security.md) and disclosure notifications.\n\nhttps://github.com/ossf/oss-vulnerability-guide\n\n\u200b\u200bSentinelPS\n\nAzure Sentinel-related PowerShell scripts\n\nhttps://github.com/rod-trent/SentinelPS\n\n\u200b\u200bWeblogic CVE-2023-21839\n\nhttps://github.com/Scarehehe/Weblogic-CVE-2023-21839\n\n#cve #poc\n\n\u200b\u200bIntelMQ \n\nIntelMQ is a solution for IT security teams for collecting and processing security feeds using a message queuing protocol.\n\nhttps://github.com/certtools/intelmq\n\nBTC:\nbc1q62lwma4r3w3klq4mcn5hys9nps5h40qmafrc8e\n\n#Tools\u00a0 \ud83d\udee0\ufe0f \ud835\udddb\ud835\uddee\ud835\uddf0\ud835\uddf8\ud835\uddf2\ud835\uddff\ud835\ude00 \ud835\uddd9\ud835\uddee\ud835\uddf0\ud835\ude01\ud835\uddfc\ud835\uddff\ud835\ude06\nwww.ghostclan.org", "creation_timestamp": "2024-02-08T19:39:36.000000Z"}