{"vulnerability": "cve-2023-24934", "sightings": [{"uuid": "d49b688b-27cf-40cf-b01c-2966db81e5fb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24934", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/1642", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-24934\n\ud83d\udd39 Description: Microsoft Defender Security Feature Bypass Vulnerability\n\ud83d\udccf Published: 2023-04-14T21:27:55.042Z\n\ud83d\udccf Modified: 2025-01-14T23:57:28.671Z\n\ud83d\udd17 References:\n1. https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24934", "creation_timestamp": "2025-01-15T00:08:51.000000Z"}, {"uuid": "b2085361-c5d8-4fd6-9d78-ca21546327ad", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24934", "type": "published-proof-of-concept", "source": "https://t.me/dilagrafie/3158", "content": "Hackers Factory \n\nCHAOS\n\nchaos is an 'origin' IP scanner developed by RST in collaboration with ChatGPT. It is a niche utility with an intended audience of mostly penetration testers and bug hunters.\n\ngithub.com/r57-labs/chaos\n\nWeb:\nr57labs.com/chaos\n\n#infosec #pentesting #bugbounty\n\nCheck for CVE-2023-32629 \"GameOver(lay)\" vulnerability\n\nhttps://github.com/kaotickj/Check-for-CVE-2023-32629-GameOver-lay\n\nColumbus server\n\nColumbus Project is an API first subdomain discovery service, blazingly fast subdomain enumeration service with advanced features.\n\nhttps://github.com/elmasy-com/columbus-server\n\nSimple-XSS is a multiplatform cross-site scripting (XSS) vulnerability exploitation tool.\n\nhttps://github.com/CrazyProger1/Simple-XSS\n\nA CLI utility to recursively crawl webpages.\n\nhttps://github.com/hueristiq/xcrawl3r\n\nPower Pwn\n\nAn offensive and defensive security toolset for Microsoft 365 Power Platform.\n\ngithub.com/mbrg/power-pwn\n\n#infosec #pentesting #redteam\n\nTrace Labs OSINT Field Manual\n\nThis will be the home for Trace Lab's TOFM, a companion document to the #OSINT VM and Search Party #CTFs\n\ngithub.com/tracelabs/tofm\n\n#cybersecurity #infosec\n\nAll in One Recon Tool\n\nAn easy-to-use python tool to perform subdomain enumeration, endpoints recon and much more.\n\ngithub.com/D3Ext/AORT\n\n#infosec #pentesting #bugbounty\n\nwd-pretender\n\nA powerful tool designed to simulate a Windows Defender update using the CVE-2023-24934 vulnerability. This tool is intended for educational and research purposes only and should be used responsibly and with proper authorization.\n\nhttps://github.com/SafeBreach-Labs/wd-pretender\n\n#infosec\n\npisshoff\n\nFully isolated honeypot ssh server using thrussh.\n\ngithub.com/w4/pisshoff\n\n#cybersecurity #infosec\n\nhttps://t.me/dilagrafie", "creation_timestamp": "2023-08-16T22:59:51.000000Z"}]}