PoC for CVE-2024-21345 Windows Kernel EoP
https://github.com/exploits-forsale/CVE-2024-21345
iMessage with PQ3: How this new protocol works to defend your iPhone against Post-Quantum Attacks
https://medium.com/macoclock/imessage-with-pq3-how-it-works-and-why-it-matters-for-your-iphone-3120528ee109
Windows KASLR bypass using prefetch side-channel
https://github.com/exploits-forsale/prefetch-tool
CertifiedDCOM: The Privilege Escalation Journey to Domain Admin with DCOM
https://i.blackhat.com/Asia-24/Presentations/Asia-24-Ding-CertifiedDCOM-The-Privilege-Escalation-Journey-to-Domain-Admin.pdf
Deploy an Active Directory Lab Within Minutes
https://www.blackhillsinfosec.com/deploy-an-active-directory-lab-within-minutes
ArcaneDoor - New espionage-focused campaign found targeting perimeter network devices
https://blog.talosintelligence.com/arcanedoor-new-espionage-focused-campaign-found-targeting-perimeter-network-devices
Exploiting embedded mitel phones for unauthenticated remote code
https://baldur.dk/blog/embedded-mitel-exploitation
CVE-2024-21111 – LPE in Oracle VirtualBox
https://www.mdsec.co.uk/2024/04/cve-2024-21111-local-privilege-escalation-in-oracle-virtualbox
CVE-2023-20198-RCE, support adding/deleting users and executing cli commands/system commands
https://github.com/W01fh4cker/CVE-2023-20198-RCE
Hello: I’m your Domain Admin and I want to authenticate against you
https://decoder.cloud/2024/04/24/hello-im-your-domain-admin-and-i-want-to-authenticate-against-you
18 vulnerabilities in Brocade SANnav
https://pierrekim.github.io/blog/2024-04-24-brocade-sannav-18-vulnerabilities
IOS Penetration Testing: Guide to Static Analysis
adityasawant00/ios-penetration-testing-guide-to-static-analysis-4a9dea5d672d" rel="nofollow">https://medium.com/@adityasawant00/ios-penetration-testing-guide-to-static-analysis-4a9dea5d672d
An Analysis of the DHEat DoS Against SSH in Cloud Environments
https://www.positronsecurity.com/blog/2024-04-23-an-analysis-of-dheat-dos-against-ssh-in-cloud-environments
Scanner for CVE-2024-4040 VFS Sandbox Escape in CrushFTP
https://github.com/airbus-cert/CVE-2024-4040
PoC for CVE-2024-27199: RCE, Admin Account Creation, Enum Users, Server Information
https://github.com/Stuub/RCity-CVE-2024-27199
CVE-2024-21111: Oracle VirtualBox LPE
Oracle VirtualBox Prior to 7.0.16 is vulnerable to Local Privilege Escalation via Symbolic Link Following leading to Arbitrary File Delete and Arbitrary File Move
https://github.com/mansk1es/CVE-2024-21111
AutoAppDomainHijack: Tools to automate finding AppDomain hijacks and generating payloads from shellcode
https://github.com/nbaertsch/AutoAppDomainHijack
Exploiting the NT Kernel in 24H2: New Bugs in Old Code & Side Channels Against KASLR
https://exploits.forsale/24h2-nt-exploit
ThreadlessSpawn: A Simple PoC
https://github.com/BambiZombie/ThreadlessSpawn
AWS Cloud Security Config Review using Nuclei Templates
https://blog.projectdiscovery.io/aws-cloud-security-config-review-using-nuclei-templates
DLHell: Local & remote Windows DLL Proxying
https://github.com/synacktiv/DLHell
PrickSense: How Cactus Exploits Qlik Sense
https://northwave-cybersecurity.com/whitepapers-articles/pricksense-how-cactus-exploits-qlik-sense
Multiple Vulnerabilities in Open Devin
(Autonomous AI Software Engineer)
https://evren.ninja/multiple-vulnerabilities-in-opendevin
A Practical Guide to PrintNightmare in 2024
https://itm4n.github.io/printnightmare-exploitation
C# API for Nidhogg rootkit
https://github.com/Idov31/NidhoggCSharpApi
The Dark Side of EDR: Repurpose EDR as an Offensive Tool
https://www.safebreach.com/blog/dark-side-of-edr-offensive-tool
Grafana backend sql injection affected all version
https://fdlucifer.github.io/2024/04/22/grafana-sql-injection
Dauthi: is a tool designed to perform authentication attacks against various Mobile Device Management (MDM) solutions
https://github.com/emptynebuli/dauthi
ToddyCat is making holes in your infrastructure
https://securelist.com/toddycat-traffic-tunneling-data-extraction-tools
Heavily obfuscated ASP web shell generation tool
https://github.com/fin3ss3g0d/ASPJinjaObfuscator
No, LLM Agents can not Autonomously Exploit One-day Vulnerabilities
https://struct.github.io/auto_agents_1_day
