{"vulnerability": "CVE-2023-2732", "sightings": [{"uuid": "0fd85ddf-2a96-4b75-a74b-776c57aea9db", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27326", "type": "published-proof-of-concept", "source": "https://t.me/cKure/10826", "content": "\u25a0\u25a0\u25a1\u25a1\u25a1 VM Escape for Parallels Desktop <18.1.1.\n\nhttps://github.com/Impalabs/CVE-2023-27326", "creation_timestamp": "2023-03-22T04:22:39.000000Z"}, {"uuid": "106dd519-3701-4c17-87b6-447c07bd8338", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-2732", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/4459", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2023\n\u63cf\u8ff0\uff1aCVE-2023-2732 Mass\nURL\uff1ahttps://github.com/domainhigh/CVE-2023-2732-Mass\n\n\u6807\u7b7e\uff1a#CVE-2023", "creation_timestamp": "2023-05-31T02:55:15.000000Z"}, {"uuid": "5991ac70-45a4-47b9-a6bd-3830c2fb5d1c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27320", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/8442", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-27320\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: Sudo before 1.9.13p2 has a double free in the per-command chroot feature.\n\ud83d\udccf Published: 2023-02-28T00:00:00.000Z\n\ud83d\udccf Modified: 2025-03-21T20:49:54.702Z\n\ud83d\udd17 References:\n1. https://www.openwall.com/lists/oss-security/2023/02/28/1\n2. https://www.sudo.ws/releases/stable/#1.9.13p2\n3. http://www.openwall.com/lists/oss-security/2023/03/01/8\n4. https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FPLXMRAMXC3BYL4DNKVTK3V6JDMUXZ7B/\n5. https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/X6VW24YGXJYI4NZ5HZPQCF4MCE7766AU/\n6. https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/332KN4QI6QXB7NI7SWSJ2EQJKWIILFN6/\n7. https://security.netapp.com/advisory/ntap-20230413-0009/\n8. https://security.gentoo.org/glsa/202309-12", "creation_timestamp": "2025-03-21T21:21:59.000000Z"}, {"uuid": "bd84a50c-a57f-4ae8-8fd6-815042c375d5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27327", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/4326", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2023\n\u63cf\u8ff0\uff1aExploits for CVE-2023-27327 and CVE-2023-27328\nURL\uff1ahttps://github.com/kn32/parallels-plist-escape\n\n\u6807\u7b7e\uff1a#CVE-2023", "creation_timestamp": "2023-05-09T20:26:33.000000Z"}, {"uuid": "1a2f8336-2024-4894-8a30-ecf5a49c5c57", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27328", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/4326", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2023\n\u63cf\u8ff0\uff1aExploits for CVE-2023-27327 and CVE-2023-27328\nURL\uff1ahttps://github.com/kn32/parallels-plist-escape\n\n\u6807\u7b7e\uff1a#CVE-2023", "creation_timestamp": "2023-05-09T20:26:33.000000Z"}, {"uuid": "19c25da0-dc2d-4e0d-8c89-8001d29bd18b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27326", "type": "published-proof-of-concept", "source": "Telegram/r7amy3QPuQ628VmRTeYQxXiulU_Gm3G6Zh7Jp6UWOWwLX34", "content": "", "creation_timestamp": "2023-03-22T15:38:51.000000Z"}, {"uuid": "f23292fa-6351-4b3a-8e22-5b2c5fb4b7b8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27326", "type": "exploited", "source": "https://t.me/malwar3s/45", "content": "Parallels Desktop for Mac is software providing hardware virtualization for Macintosh computers with Intel processors, extremely popular among Mac users.\n \nSevere exploit for a privilege escalation vulnerability is in the wild. identified as CVE-2023-27326, carries a CVSS score of 8.2. \n\nexploitation:\nhttps://github.com/Malwareman007/CVE-2023-27326", "creation_timestamp": "2023-05-07T06:35:07.000000Z"}, {"uuid": "c6e32d7a-2382-4879-b182-8c0f733cb479", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-2732", "type": "published-proof-of-concept", "source": "https://t.me/poxek/2964", "content": "MStore API <= 3.9.2 - Authentication Bypass\nCVE-2023-2732\n\n\u041f\u043b\u0430\u0433\u0438\u043d MStore API \u0434\u043b\u044f WordPress \u0443\u044f\u0437\u0432\u0438\u043c \u0434\u043b\u044f \u043e\u0431\u0445\u043e\u0434\u0430 \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438 \u0432 \u0432\u0435\u0440\u0441\u0438\u044f\u0445 \u0434\u043e 3.9.2 \u0432\u043a\u043b\u044e\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e. \u042d\u0442\u043e \u0441\u0432\u044f\u0437\u0430\u043d\u043e \u0441 \u043d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043e\u0447\u043d\u043e\u0439 \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u043e\u0439 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044f \u0432\u043e \u0432\u0440\u0435\u043c\u044f REST API \u0437\u0430\u043f\u0440\u043e\u0441\u0430 \u043d\u0430 \u0434\u043e\u0431\u0430\u0432\u043b\u0435\u043d\u0438\u0435 \u043e\u0431\u044a\u044f\u0432\u043b\u0435\u043d\u0438\u0439 \u0447\u0435\u0440\u0435\u0437 \u043f\u043b\u0430\u0433\u0438\u043d. \u042d\u0442\u043e \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c, \u043d\u0435 \u043f\u0440\u043e\u0448\u0435\u0434\u0448\u0438\u043c \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0443 \u043f\u043e\u0434\u043b\u0438\u043d\u043d\u043e\u0441\u0442\u0438, \u0432\u043e\u0439\u0442\u0438 \u0432 \u0441\u0438\u0441\u0442\u0435\u043c\u0443 \u043f\u043e\u0434 \u0438\u043c\u0435\u043d\u0435\u043c \u043b\u044e\u0431\u043e\u0433\u043e \u0441\u0443\u0449\u0435\u0441\u0442\u0432\u0443\u044e\u0449\u0435\u0433\u043e \u043d\u0430 \u0441\u0430\u0439\u0442\u0435 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044f, \u043d\u0430\u043f\u0440\u0438\u043c\u0435\u0440 \u0430\u0434\u043c\u0438\u043d\u0438\u0441\u0442\u0440\u0430\u0442\u043e\u0440\u0430, \u0435\u0441\u043b\u0438 \u0443 \u043d\u0438\u0445 \u0435\u0441\u0442\u044c \u0434\u043e\u0441\u0442\u0443\u043f \u043a \u0438\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u0443 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044f.\n\nPoC:\ngit clone https://github.com/RandomRobbieBF/CVE-2023-2732 ; pip3 install -r requirements.txt ; python3 mstore-api.py -u http://TARGET\n\n\n#CVE #POC", "creation_timestamp": "2023-06-06T21:45:38.000000Z"}, {"uuid": "179f7b30-b69b-44be-b0d2-a7d4faaf4294", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-2732", "type": "published-proof-of-concept", "source": "https://t.me/netrunnerz/485", "content": "MStore API <= 3.9.2 - Authentication Bypass\nCVE-2023-2732\n\n\u041f\u043b\u0430\u0433\u0438\u043d MStore API \u0434\u043b\u044f WordPress \u0443\u044f\u0437\u0432\u0438\u043c \u0434\u043b\u044f \u043e\u0431\u0445\u043e\u0434\u0430 \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438 \u0432 \u0432\u0435\u0440\u0441\u0438\u044f\u0445 \u0434\u043e 3.9.2 \u0432\u043a\u043b\u044e\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e. \u042d\u0442\u043e \u0441\u0432\u044f\u0437\u0430\u043d\u043e \u0441 \u043d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043e\u0447\u043d\u043e\u0439 \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u043e\u0439 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044f \u0432\u043e \u0432\u0440\u0435\u043c\u044f REST API \u0437\u0430\u043f\u0440\u043e\u0441\u0430 \u043d\u0430 \u0434\u043e\u0431\u0430\u0432\u043b\u0435\u043d\u0438\u0435 \u043e\u0431\u044a\u044f\u0432\u043b\u0435\u043d\u0438\u0439 \u0447\u0435\u0440\u0435\u0437 \u043f\u043b\u0430\u0433\u0438\u043d. \u042d\u0442\u043e \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c, \u043d\u0435 \u043f\u0440\u043e\u0448\u0435\u0434\u0448\u0438\u043c \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0443 \u043f\u043e\u0434\u043b\u0438\u043d\u043d\u043e\u0441\u0442\u0438, \u0432\u043e\u0439\u0442\u0438 \u0432 \u0441\u0438\u0441\u0442\u0435\u043c\u0443 \u043f\u043e\u0434 \u0438\u043c\u0435\u043d\u0435\u043c \u043b\u044e\u0431\u043e\u0433\u043e \u0441\u0443\u0449\u0435\u0441\u0442\u0432\u0443\u044e\u0449\u0435\u0433\u043e \u043d\u0430 \u0441\u0430\u0439\u0442\u0435 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044f, \u043d\u0430\u043f\u0440\u0438\u043c\u0435\u0440 \u0430\u0434\u043c\u0438\u043d\u0438\u0441\u0442\u0440\u0430\u0442\u043e\u0440\u0430, \u0435\u0441\u043b\u0438 \u0443 \u043d\u0438\u0445 \u0435\u0441\u0442\u044c \u0434\u043e\u0441\u0442\u0443\u043f \u043a \u0438\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u0443 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044f.\n\nPoC:\ngit clone https://github.com/RandomRobbieBF/CVE-2023-2732 ; pip3 install -r requirements.txt ; python3 mstore-api.py -u http://TARGET\n\n\n#CVE #POC", "creation_timestamp": "2023-06-06T15:14:02.000000Z"}, {"uuid": "f6d2451c-32b8-4656-82ab-def209a8a17c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27326", "type": "seen", "source": "Telegram/1EJWyoHSyilfkqZWLU4GfdO5lUWefMlV9JG3pFlAJki-jhY", "content": "", "creation_timestamp": "2023-03-20T18:20:51.000000Z"}, {"uuid": "91ba3a7e-7610-46f0-9867-f989a143d52d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27320", "type": "seen", "source": "Telegram/XfZLmnpYlfr_wUjXDiTB2GcxzXvk7oJ1oFBMKDapyqMKOjQ", "content": "", "creation_timestamp": "2023-03-03T09:03:27.000000Z"}, {"uuid": "c559cbd9-cb1c-451b-a506-e0d33ef4aea7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27321", "type": "seen", "source": "Telegram/n7wRicylc66WfbR0mdLwehKvlM-QwtHoFxwz1W2HjLMRaPw", "content": "", "creation_timestamp": "2026-04-29T15:00:06.000000Z"}, {"uuid": "ff43ce1f-9670-4dd9-a275-03054d0423e5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-2732", "type": "published-proof-of-concept", "source": "https://t.me/blackcybersec/23", "content": "- Mass Wordpress Mstore-API (Authetication Bypass)\n- Auto selecting all users (Current)\n\nChannel: https://telegram.me/BlackCyberSec\nContact: https://telegram.me/SurpriseMTFK\nGithub: https://github.com/Pari-Malam/CVE-2023-2732", "creation_timestamp": "2023-08-05T08:48:21.000000Z"}, {"uuid": "1ca1828b-7e3a-4970-b228-5540069efc7a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27326", "type": "published-proof-of-concept", "source": "https://t.me/dilagrafie/2616", "content": "Parallels Desktop VM Escape\n\nThis repository contains an exploit for a Parallels Desktop vulnerability which has been assigned CVE-2023-27326.\n\nhttps://github.com/Impalabs/CVE-2023-27326\n\nDetails: https://blog.impalabs.com/2303_advisory_parallels-desktop_toolgate.html\n\n\n#cve #exploit #cybersecurity #infosec", "creation_timestamp": "2023-03-21T09:33:30.000000Z"}, {"uuid": "8e8ea983-4526-4f3b-a0d0-e6ab6aca9c17", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27320", "type": "seen", "source": "https://t.me/cibsecurity/59124", "content": "\u203c CVE-2023-27320 \u203c\n\nSudo before 1.9.13p2 has a double free in the per-command chroot feature.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-02-28T20:27:50.000000Z"}, {"uuid": "c44fc413-c454-4ff4-9d2d-1782d1ebfab3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27320", "type": "seen", "source": "Telegram/s-G-kHliUbRTYfZskctntsTOQ5IHABjsmF2L9O-ILeMjQpA", "content": "", "creation_timestamp": "2023-03-02T18:29:40.000000Z"}, {"uuid": "30e3693e-d146-4e77-9825-ff850c130987", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27327", "type": "published-proof-of-concept", "source": "https://t.me/dilagrafie/2976", "content": "Tools - Hackers Factory \n\nGetLAPSPassword\n\nA feeble attempt at writing a LAPS dumping tool that supports both NTLM and Kerberos auth using the impacket library.\n\nhttps://github.com/dru1d-foofus/GetLAPSPassword\n\n#infosec #pentesting #redteam\n\nAwesome Google VRP Writeups\n\nA list of writeups from the Google VRP Bug Bounty program.\n\nhttps://github.com/xdavidhu/awesome-google-vrp-writeups\n\n#cybersecurity #infosec #bugbounty\n\nJava Android Magisk Burp Objection Root Emulator Easy (JAMBOREE)\n\nGet a working portable Python/Git/Java environment on Windows in SECONDS without having local administrator, regardless of your broken Python environment. Our open-source script downloads directly from proper sources without any binaries. While the code may not be perfect, it includes many useful PowerShell tricks.\n\nhttps://github.com/freeload101/Java-Android-Magisk-Burp-Objection-Root-Emulator-Easy\n\n#cybersecurity #infosec\n\nPPEnum\n\nSimple BOF to read the protection level of a process.\n\nhttps://github.com/rasta-mouse/PPEnum\n\n#infosec #pentesting #redteam\n\nAwesome Symbolic Execution\n\nA curated list of awesome symbolic execution resources including essential research papers, lectures, videos, and tools.\n\nhttps://github.com/ksluckow/awesome-symbolic-execution\n\n#cybersecurity #infosec\n\nHPHardwareDiagnostics-PoC\n\nPoC exploit for HP Hardware Diagnostic's EtdSupp driver\n\nhttps://github.com/alfarom256/HPHardwareDiagnostics-PoC\n\n#cve #poc #exploit\n\nBuffer-Overflow-Stack-Smash\n\nExample of buffer overflow exploit from Aleph1's article \"Smashing the Stack for Fun and Profit\"\n\nhttps://github.com/CYoshioB/Buffer-Overflow-Stack-Smash\n\n#infosec #pentesting #redteam\n\nKraken\n\nGenerate a report with charts and statistics about cracked passwords in XLSX format.\n\nhttps://github.com/hnsecurity/kraken\n\nDetails:\nhttps://security.humanativaspa.it/cracked-password-analytics-with-kraken\n\n#cybersecurity #infosec\n\nparallels-plist-escape\n\nThis repository contains exploits for CVE-2023-27327 and CVE-2023-27328, which can be used together to escape a Parallels Desktop virtual machine, prior to Parallels Desktop 18.1.1.\n\nhttps://github.com/kn32/parallels-plist-escape\n\n#cve #cybersecurity #infosec\n\nPPLFault\n\nExploits a TOCTOU in Windows Code Integrity to achieve arbitrary code execution as WinTcb-Light then dump a specified process. For more details on the exploit, see my slides and/or talk.\n\nhttps://github.com/gabriellandau/PPLFault\n\n#cybersecurity #infosec\n\nExploit Notes\n\nSearch hacking techniques and tools for penetration testings, bug bounty, CTF.\n\nhttps://github.com/hideckies/exploit-notes\n\nWeb:\nhttps://exploit-notes.hdks.org/\n\n#infosec #pentesting #redteam\n\nThe SSH library!\n\nlibssh is a multiplatform C library implementing the SSHv2 protocol on client and server side. With libssh, you can remotely execute programs, transfer files, use a secure and transparent tunnel, manage public keys and much more ...\n\nhttps://gitlab.com/libssh/libssh-mirror\n\nWebsite:\nhttps://www.libssh.org/\n\n#cybersecurity #infosec #privacy\n\nApkHack-BackDoor\n\nA shell script that simplifies the process of adding a backdoor to any Android APK file.\n\nhttps://github.com/BitWalls-ops/ApkHack-BackDoor\n\n#infosec #pentesting #redteam\n\nTh3Inspector  \n\nBest Tool For Information Gathering \ud83d\udd0e\n\nhttps://github.com/Moham3dRiahi/Th3inspector\n\n#OSINT #recon #infosec\n\nhttps://t.me/dilagrafie", "creation_timestamp": "2023-05-12T18:37:54.000000Z"}, {"uuid": "78e93b02-671f-4a0c-ae97-adf380ce9d47", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-2732", "type": "published-proof-of-concept", "source": "https://t.me/dilagrafie/3064", "content": "Tools - Hackers Factory \n\nJira-Scan\n\nProvide a list of websites to test with out the http or https and this will test each one for the SSRF vun.\n\nhttps://github.com/random-robbie/Jira-Scan\n\n#infosec #pentesting #bugbounty\n\ns3reverse\n\nThe format of various s3 buckets is convert in one format. for #bugbounty and security testing.\n\nhttps://github.com/hahwul/s3reverse\n\n#cybersecurity #infosec\n\nLogger++ \n\nA multithreaded logging extension for #BurpSuite. In addition to logging requests and responses from all Burp Suite tools, the extension allows advanced filters to be defined to highlight interesting entries or filter logs to only those which match the filter.\n\nhttps://github.com/nccgroup/LoggerPlusPlus\n\n#infosec #pentesting #bugbounty\n\nTop25 Parameter \n\nFor basic researches, top 25 vulnerability parameters that can be used in automation tools or manual #recon.\n\nhttps://github.com/lutfumertceylan/top25-parameter\n\n#infosec #pentesting #bugbounty\n\nLOOBins\n\nLiving Off the Orchard: macOS Binaries (LOOBins) is designed to provide detailed information on various built-in \"living off the land\" macOS binaries and how they can be used by threat actors for malicious purposes.\n\nhttps://github.com/infosecB/LOOBins\n\nWeb:\nhttps://www.loobins.io/\n\n#infosec #blueteam\n\ncodeexplain.nvim\n\nA nvim plugin Powered by GPT4ALL for Real-time Code Explanation and Vulnerability Detection (no internet necessary).\n\nhttps://github.com/mthbernardes/codeexplain.nvim\n\n#cybersecurity #infosec\n\nCVE-2020-0683\n\nOriginal Poc sent to MSRC. Assigned to CVE-2020-0683 - Windows Installer Elevation of Privilege.\n\nhttps://github.com/padovah4ck/CVE-2020-0683\n\n#cve #cybersecurity #infosec\n\nCVE-2023-2825\n\nOn May 23, 2023 GitLab released version 16.0.1 which fixed a critical vulnerability, CVE-2023-2825, affecting the Community Edition (CE) and Enterprise Edition (EE) version 16.0.0. The vulnerability allows unauthenticated users to read arbitrary files through a path traversal bug. It was discovered by pwnie on HackerOne through the bug bounty program.\n\nhttps://github.com/Occamsec/CVE-2023-2825\n\n#cve #cybersecurity #infosec\n\n\ud83d\ude80 AllForOne\n\nThis repository contains a Python script that allows bug bounty hunters and security researchers to collect all Nuclei YAML templates from various public repositories, helping to streamline the process of downloading multiple templates using just a single repository.\n\nhttps://github.com/AggressiveUser/AllForOne\n\n#infosec #pentesting #bugbounty\n\nCVE-2023-2732\n\nMStore API <= 3.9.2 - Authentication Bypass\n\nhttps://github.com/RandomRobbieBF/CVE-2023-2732\n\n#cve #cybersecurity #infosec\n\nCVE-2023-30145\n\nCamaleon CMS v2.7.0 was discovered to contain a Server-Side Template Injection (SSTI) vulnerability via the formats parameter.\n\nhttps://github.com/paragbagul111/CVE-2023-30145\n\n#cve #cybersecurity #infosec\n\nWhatMail\n\nA command-line tool that analyzes the header of an email and provides detailed information about various fields.\n\nhttps://github.com/z0m31en7/WhatMail\n\n#OSINT #cybersecurity #infosec\n\nlibslub\n\nlibslub is a python library to examine the SLUB managements structures and object allocations (the Linux kernel heap implementation). It is currently designed for use with GDB but could easily be adapted to work with other debuggers.\n\nIt helps understanding SLUB internals and developing Linux kernel exploits.\n\nhttps://github.com/nccgroup/libslub\n\n#cybersecurity #infosec\n\nHidden Desktop BOF\n\nHidden Desktop (often referred to as HVNC) is a tool that allows operators to interact with a remote desktop session without the user knowing.\u00a0 The VNC protocol is not involved, but the result is a similar experience. This Cobalt Strike BOF implementation was created as an alternative to TinyNuke/forks that are written in C++.\n\nhttps://github.com/WKL-Sec/HiddenDesktop\n\n#infosec #pentesting #redteam\n\nBlackout \n\nKill anti-malware protected processes using BYOVD. leveraging gmer driver to effectively disabling or killing EDRs and AVs.\n\nhttps://github.com/ZeroMemoryEx/Blackout\n\n#infosec \n\nhttps://t.me/dilagrafie\nhttps://t.me/HackerFactory", "creation_timestamp": "2023-05-26T17:58:27.000000Z"}, {"uuid": "dfc47bb2-fdb0-4aa2-b1ad-6d80b8b9f0f6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27326", "type": "published-proof-of-concept", "source": "https://t.me/dilagrafie/2928", "content": "Tools - Hackers Factory \n\n\u200b\u200bSSHLog\n\nA free, source-available Linux daemon written in C++ and Python that passively monitors #OpenSSH servers via eBPF to:\ud83d\udc47\n\nhttps://github.com/sshlog/agent\n\n\u200b\u200bParallels Desktop VM Escape\n\nThis repository contains an exploit for a Parallels Desktop vulnerability which has been assigned CVE-2023-27326. This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop.\n\nhttps://github.com/Malwareman007/CVE-2023-27326\n\n#infosec #cve #pentesting\n\n\u200b\u200bCVE-2023-28231\n\nDHCP Server Remote Code Execution impact: 2008 R2 SP1 \u0434\u043e Server 2019\n\nhttps://github.com/glavstroy/CVE-2023-28231\n\n#cybersecurity #infosec #cve\n\n\u200b\u200bCVE-2022-23808\n\nphpMyAdmin Exploit\n\nhttps://github.com/dipakpanchal456/CVE-2022-23808\n\n#cve #infosec #pentesting\n\n\u200b\u200bAPTRS\n\nAutomated Penetration Testing Reporting System is an automated reporting tool in Python and Django. The tool allows Penetration testers to create a report directly without using the Traditional Docx file. It also provides an approach to keeping track of the projects and vulnerabilities.\n\nhttps://github.com/JapneetRajput/RedTeaming\n\n#cybersecurity #infosec #pentesting\n\n\u200b\u200bRootKits List Download\n\nThis is the list of all rootkits found so far on github and other sites.\n\nhttps://github.com/d30sa1/RootKits-List-Download\n\n#infosec #pentesting #redteam\n\n\u200b\u200bspotexfil (status: prototype)\n\nA simple attempt to exfiltrate data using spotify API, 300 bytes at a time. We can read a mini file (payload) and encode it inside a playlist description field via Spotify API. Really MVP/prototype, not meant for large files.\n\nhttps://github.com/sourcefrenchy/spotexfil\n\n#infosec #pentesting #redteam\n\n\u200b\u200bshellcode_exec_workerfactory\n\nJust another shellcode execution technique.\n\nhttps://gist.github.com/RistBS/fd4243d6df142d197920e2b72baa3cdd\n\n#infosec #pentesting #redteam\n\n\u200b\u200bAwesome Cobalt Strike\n\n\u2022 The first part is a collection of quality articles about Cobalt Strike.\n\u2022 The third part is about the integration of the new features BOF resources.\n\u2022 This project is to solve the problem of not finding the right aggressor script or BOF when it is needed.\n\nhttps://github.com/zer0yu/Awesome-CobaltStrike\n\n#infosec #pentesting #redteam\n\n\u200b\u200bHacking Neural Networks\n\nThis is a short introduction on methods that use neural networks in an offensive manner (bug hunting, shellcode obfuscation, etc.) and how to exploit neural networks found in the wild (information extraction, malware injection, backdooring, etc.).\n\nhttps://github.com/tigthor/neural-network-hacking\n\n#infosec #pentesting #redteam\n\n\u200b\u200bOffensive Security Tools\n\nHere you will find a useful collection of commands and file resource locations used in Pentesting operations. This reference is will go hand in hand with Kali Linux and the OSCP.\n\nhttps://github.com/Totes5706/Offensive-Security-Cheat-Sheet\n\n#infosec #pentesting #redteam\n\n\u200b\u200bSocialhunte\n\nCrawls the website and finds broken social media links that can be hijacked.\n\nhttps://github.com/utkusen/socialhunter\n\n#pentesting #redteam #bugbounty\n\n\u200b\u200bJustRepository RedTeam\n\nThese are repository for tools and code I modify and compile for fun (?). Note that \"use this for educational purposes only\".\n\nhttps://github.com/dxnboy/redteam\n\n#infosec #pentesting #redteam\n\n\u200b\u200bPenny Testing Tools\n\nA combination of Offensive Security tools and scripts for Red Teamers & Penetration Testers.\n\nhttps://github.com/zruvv/OffensiveSecurity\n\n#infosec #pentesting #redteam\n\n\u200b\u200bOSCP personal cheatsheet\n\nhttps://github.com/Luizfsn/offensive-security-practices-cheatsheet\n\n#infosec #pentesting #redteam\n\n\u200b\u200bVulnerable-AD\n\nCreate a vulnerable active directory that's allowing you to test most of active directory attacks in local lab.\n\nhttps://github.com/WazeHell/vulnerable-AD\n\n#cybersecurity #infosec #pentesting\n\nhttps://t.me/dilagrafie\nhttps://t.me/HackerFactory", "creation_timestamp": "2023-05-07T16:32:40.000000Z"}, {"uuid": "503a2dba-e3b0-4b21-9ac1-4b4c56297e0d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27326", "type": "published-proof-of-concept", "source": "https://t.me/dilagrafie/2936", "content": "This repository contains an exploit for a Parallels Desktop vulnerability which has been assigned CVE-2023-27326. This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop.\n\nhttps://github.com/Malwareman007/CVE-2023-27326\n\n#infosec #cve #pentesting", "creation_timestamp": "2023-05-08T08:11:46.000000Z"}, {"uuid": "d6989907-c74b-4ed9-b8e9-915a712d3b3c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-2732", "type": "published-proof-of-concept", "source": "https://t.me/DailyToolz/992", "content": "- Mass Wordpress Mstore-API (Authetication Bypass)\n- Auto selecting all users (Current)\n\nChannel: https://telegram.me/BlackCyberSec\nContact: https://telegram.me/SurpriseMTFK\nGithub: https://github.com/Pari-Malam/CVE-2023-2732", "creation_timestamp": "2023-08-05T08:46:10.000000Z"}, {"uuid": "2640e39d-4b39-4100-94f7-3dbea710b599", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-2732", "type": "published-proof-of-concept", "source": "https://t.me/DailyToolz/822", "content": "Wordpress MStore API <= 3.9.2 - Authentication Bypass\n\n\n- http://domain/wp-json/wp/v2/add-listing?id=id\n- then go to /wp-admin/ \nmass : https://github.com/domainhigh/CVE-2023-2732-Mass\noriginal : https://github.com/RandomRobbieBF/CVE-2023-2732\n\nAll Credits give to the github User\n\nMore tools always join @DailyToolz\n\nUse for educational purposes only !", "creation_timestamp": "2023-05-31T18:15:05.000000Z"}, {"uuid": "bce438c0-59d0-4abc-b609-f14d9a9c9b89", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27326", "type": "published-proof-of-concept", "source": "https://t.me/CNArsenal/553", "content": "https://github.com/Malwareman007/CVE-2023-27326\n#github", "creation_timestamp": "2023-05-06T09:20:38.000000Z"}, {"uuid": "a6bad1c8-25a3-4c8e-9ae5-84d126f6d6f6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27326", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/7967", "content": "#exploit\n1. CVE-2022-24715 / CVE-2022-24716:\nAuthenticated RCE / Arbitrary File Disclosure Vulnerability in Icinga Web2 <2.8.6, <2.9.6, <2.10\nhttps://github.com/JacobEbben/CVE-2022-24715\nhttps://github.com/JacobEbben/CVE-2022-24716\n\n2. CVE-2023-27326:\nVM Escape for Parallels Desktop <18.1.1\nhttps://github.com/Impalabs/CVE-2023-27326\n\n3. CVE-2023-23192:\nUserlock Multi-Factor Authentication (MFA) Bypass\nhttps://github.com/pinarsadioglu/CVE-2023-23192", "creation_timestamp": "2023-03-21T11:01:01.000000Z"}, {"uuid": "1fee79f1-7b6f-4bb9-82ec-8b5bbd9f7d69", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27322", "type": "seen", "source": "https://t.me/CyberSecurityTechnologies/8220", "content": "#exploit\n1. CVE-2023-27322, CVE-2023-27324, CVE-2023-27325:\nBash Privileged-Mode Vulnerabilities in Parallels Desktop/CDPath Handling in MacOS\nhttps://www.zerodayinitiative.com/blog/2023/4/5/bash-privileged-mode-vulnerabilities-in-parallels-desktop-and-cdpath-handling-in-macos\n\n2. CVE-2023-23399:\nMS Excel 365 MSO 2302 Build 16.0.16130.20186 RCE\nhttps://github.com/nu11secur1ty/CVE-mitre/tree/main/2023/CVE-2023-23399", "creation_timestamp": "2023-05-01T21:08:55.000000Z"}, {"uuid": "4cf32493-a418-4484-9fd9-3c00c06cc575", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27325", "type": "seen", "source": "https://t.me/CyberSecurityTechnologies/8220", "content": "#exploit\n1. CVE-2023-27322, CVE-2023-27324, CVE-2023-27325:\nBash Privileged-Mode Vulnerabilities in Parallels Desktop/CDPath Handling in MacOS\nhttps://www.zerodayinitiative.com/blog/2023/4/5/bash-privileged-mode-vulnerabilities-in-parallels-desktop-and-cdpath-handling-in-macos\n\n2. CVE-2023-23399:\nMS Excel 365 MSO 2302 Build 16.0.16130.20186 RCE\nhttps://github.com/nu11secur1ty/CVE-mitre/tree/main/2023/CVE-2023-23399", "creation_timestamp": "2023-05-01T21:08:55.000000Z"}, {"uuid": "04b293c1-76cc-4073-81ed-ab609d204e71", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27324", "type": "seen", "source": "https://t.me/CyberSecurityTechnologies/8220", "content": "#exploit\n1. CVE-2023-27322, CVE-2023-27324, CVE-2023-27325:\nBash Privileged-Mode Vulnerabilities in Parallels Desktop/CDPath Handling in MacOS\nhttps://www.zerodayinitiative.com/blog/2023/4/5/bash-privileged-mode-vulnerabilities-in-parallels-desktop-and-cdpath-handling-in-macos\n\n2. CVE-2023-23399:\nMS Excel 365 MSO 2302 Build 16.0.16130.20186 RCE\nhttps://github.com/nu11secur1ty/CVE-mitre/tree/main/2023/CVE-2023-23399", "creation_timestamp": "2023-05-01T21:08:55.000000Z"}, {"uuid": "fafd7525-1b66-403d-a2c9-6734a5838c6d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27327", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/8270", "content": "#exploit\n1.CVE-2023-20052:\nInformation leak vulnerability in the DMG file parser of ClamAV\nhttps://github.com/nokn0wthing/CVE-2023-25002\n\n2. Exploits for CVE-2023-27327, CVE-2023-27328\n(Parallels Desktop VM)\nhttps://github.com/kn32/parallels-plist-escape\n\n3. CVE-2023-28231:\nDHCP Server RCE (2008 R2 SP1 - Server 2019)\nhttps://github.com/glavstroy/CVE-2023-28231", "creation_timestamp": "2023-05-10T11:03:01.000000Z"}, {"uuid": "92bbbafe-f32b-42c0-9043-baa301f9bb5d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27328", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/8270", "content": "#exploit\n1.CVE-2023-20052:\nInformation leak vulnerability in the DMG file parser of ClamAV\nhttps://github.com/nokn0wthing/CVE-2023-25002\n\n2. Exploits for CVE-2023-27327, CVE-2023-27328\n(Parallels Desktop VM)\nhttps://github.com/kn32/parallels-plist-escape\n\n3. CVE-2023-28231:\nDHCP Server RCE (2008 R2 SP1 - Server 2019)\nhttps://github.com/glavstroy/CVE-2023-28231", "creation_timestamp": "2023-05-10T11:03:01.000000Z"}, {"uuid": "51c6127c-b449-410b-9357-ce12d74eeceb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-2732", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/8368", "content": "#exploit\n1. CVE-2020-0683:\nWindows MSI \"Installer service\" EoP\nhttps://github.com/padovah4ck/CVE-2020-0683\n\n2. CVE-2023-30145:\nCamaleon CMS v2.7.0 - SSTI vulnerability\nhttps://github.com/paragbagul111/CVE-2023-30145\n\n3. CVE-2023-2732:\nMStore API <=3.9.2 - Authentication Bypass\nhttps://github.com/RandomRobbieBF/CVE-2023-2732", "creation_timestamp": "2023-05-26T11:05:13.000000Z"}, {"uuid": "ceb2662d-7741-471f-b6f5-53adc6d10ea3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27326", "type": "published-proof-of-concept", "source": "https://t.me/club31337/1587", "content": "VM Escape for Parallels Desktop <18.1.1\n\nLogic bug in Parallels Desktop that can be used to escape from VMs. It stems from a directory traversal and an incorrect use of Qt's strings resulting in unexpected behavior.\n\n#Parallels #VM\n\nhttps://blog.impalabs.com/2303_advisory_parallels-desktop_toolgate.html\n\nhttps://github.com/Impalabs/CVE-2023-27326", "creation_timestamp": "2024-11-11T01:43:48.000000Z"}]}