{"uuid": "f6b6c888-0a8e-4fcd-8cda-bcb4b28da414", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-23333", "type": "published-proof-of-concept", "source": "https://t.me/dilagrafie/2316", "content": "#Tools\u00a0 \ud83d\udee0\ufe0f \ud835\udddb\ud835\uddee\ud835\uddf0\ud835\uddf8\ud835\uddf2\ud835\uddff\ud835\ude00 \ud835\uddd9\ud835\uddee\ud835\uddf0\ud835\ude01\ud835\uddfc\ud835\uddff\ud835\ude06\n\n\u200b\u200bWSAPatch\n\nMake WSA(Windows Subsystem for Android) run on Windows 10.\n\nhttps://github.com/cinit/WSAPatch\n\n\u200b\u200bmac-changerPro\n\nThis is a bash script that can change the MAC address of either the eth0 or wlan0 network interface.\n\nhttps://github.com/4m3rr0r/mac-changerPro\n\n\u200b\u200bOneNoteAnalyzer\n\nA C# based tool for analysing malicious OneNote documents.\n\nhttps://github.com/knight0x07/OneNoteAnalyzer\n\n\u200b\u200bRasmanPotato\n\nAbuse Impersonate Privilege from Service to SYSTEM like other potatoes do\n\nhttps://github.com/crisprss/RasmanPotato\n\n#redteam\n\n\u200b\u200bSummary\n\nThere is a command injection vulnerability in SolarView Compact through 6.00, attackers can execute commands by bypassing internal restrictions through downloader.php.\n\nhttps://github.com/Timorlover/CVE-2023-23333\n\n#cve #poc\n\n\u200b\u200bGolang Security Checker\n\nInspects source code for security problems by scanning the Go AST.\n\nhttps://github.com/securego/gosec\n\n\u200b\u200bSemgrep rules for smart contracts\n\nIn this repository you can find semgrep rules that look for patterns of vulnerabilities in smart contracts based on actual DeFi exploits.\n\nhttps://github.com/Decurity/semgrep-smart-contracts\n\n#pentesting #bugbounty\n\n\u200b\u200bHellgateLoader_CSharp\n\nLoad shellcode via HELLGATE, Rewrite hellgate with .net framework for learning purpose.\n\nhttps://github.com/Kara-4search/HellgateLoader_CSharp\n\n\u200b\u200bPhishingKit-Yara-Rules\n\nRepository of Yara rules dedicated to Phishing Kits Zip files\n\nhttps://github.com/t4d/PhishingKit-Yara-Rules\n\n\u200b\u200bSecrets Patterns Database \ud83d\uddc4\n\nThe largest open-source database for detecting secrets, API keys, passwords, tokens, and more. Use secrets-patterns-db to feed your secret scanning engine with regex patterns for identifying secrets.\n\nhttps://github.com/mazen160/secrets-patterns-db\n\n#pentesting #bugbounty\n\n\u200b\u200bntdlll-unhooking-collection\n\ndifferent ntdll unhooking techniques : unhooking ntdll from disk, from KnownDlls, from suspended process, from remote server (fileless)\n\nhttps://github.com/TheD1rkMtr/ntdlll-unhooking-collection\n\n#redteam #hackers\n\nBTC:\nbc1q62lwma4r3w3klq4mcn5hys9nps5h40qmafrc8e\n\n#Tools\u00a0 \ud83d\udee0\ufe0f \ud835\udddb\ud835\uddee\ud835\uddf0\ud835\uddf8\ud835\uddf2\ud835\uddff\ud835\ude00 \ud835\uddd9\ud835\uddee\ud835\uddf0\ud835\ude01\ud835\uddfc\ud835\uddff\ud835\ude06\nwww.ghostclan.org", "creation_timestamp": "2023-02-22T07:31:29.000000Z"}