Windows KASLR bypass using prefetch side-channel
https://github.com/exploits-forsale/prefetch-tool
CertifiedDCOM: The Privilege Escalation Journey to Domain Admin with DCOM
https://i.blackhat.com/Asia-24/Presentations/Asia-24-Ding-CertifiedDCOM-The-Privilege-Escalation-Journey-to-Domain-Admin.pdf
Deploy an Active Directory Lab Within Minutes
https://www.blackhillsinfosec.com/deploy-an-active-directory-lab-within-minutes
ArcaneDoor - New espionage-focused campaign found targeting perimeter network devices
https://blog.talosintelligence.com/arcanedoor-new-espionage-focused-campaign-found-targeting-perimeter-network-devices
Exploiting embedded mitel phones for unauthenticated remote code
https://baldur.dk/blog/embedded-mitel-exploitation
CVE-2024-21111 – LPE in Oracle VirtualBox
https://www.mdsec.co.uk/2024/04/cve-2024-21111-local-privilege-escalation-in-oracle-virtualbox
CVE-2023-20198-RCE, support adding/deleting users and executing cli commands/system commands
https://github.com/W01fh4cker/CVE-2023-20198-RCE
Hello: I’m your Domain Admin and I want to authenticate against you
https://decoder.cloud/2024/04/24/hello-im-your-domain-admin-and-i-want-to-authenticate-against-you
18 vulnerabilities in Brocade SANnav
https://pierrekim.github.io/blog/2024-04-24-brocade-sannav-18-vulnerabilities
IOS Penetration Testing: Guide to Static Analysis
adityasawant00/ios-penetration-testing-guide-to-static-analysis-4a9dea5d672d" rel="nofollow">https://medium.com/@adityasawant00/ios-penetration-testing-guide-to-static-analysis-4a9dea5d672d
An Analysis of the DHEat DoS Against SSH in Cloud Environments
https://www.positronsecurity.com/blog/2024-04-23-an-analysis-of-dheat-dos-against-ssh-in-cloud-environments
Scanner for CVE-2024-4040 VFS Sandbox Escape in CrushFTP
https://github.com/airbus-cert/CVE-2024-4040
PoC for CVE-2024-27199: RCE, Admin Account Creation, Enum Users, Server Information
https://github.com/Stuub/RCity-CVE-2024-27199
CVE-2024-21111: Oracle VirtualBox LPE
Oracle VirtualBox Prior to 7.0.16 is vulnerable to Local Privilege Escalation via Symbolic Link Following leading to Arbitrary File Delete and Arbitrary File Move
https://github.com/mansk1es/CVE-2024-21111
A Detailed Guide on Pwncat
https://www.hackingarticles.in/a-detailed-guide-on-pwncat
Bypass Paywalls Clean for Firefox
https://github.com/bpc-clone/bypass-paywalls-firefox-clean
Bypass Paywalls Clean for Chrome
https://github.com/bpc-clone/bypass-paywalls-chrome-clean
ThreadlessSpawn: A Simple PoC
https://github.com/BambiZombie/ThreadlessSpawn
AWS Cloud Security Config Review using Nuclei Templates
https://blog.projectdiscovery.io/aws-cloud-security-config-review-using-nuclei-templates
DLHell: Local & remote Windows DLL Proxying
https://github.com/synacktiv/DLHell
PrickSense: How Cactus Exploits Qlik Sense
https://northwave-cybersecurity.com/whitepapers-articles/pricksense-how-cactus-exploits-qlik-sense
Multiple Vulnerabilities in Open Devin
(Autonomous AI Software Engineer)
https://evren.ninja/multiple-vulnerabilities-in-opendevin
A Practical Guide to PrintNightmare in 2024
https://itm4n.github.io/printnightmare-exploitation
C# API for Nidhogg rootkit
https://github.com/Idov31/NidhoggCSharpApi
The Dark Side of EDR: Repurpose EDR as an Offensive Tool
https://www.safebreach.com/blog/dark-side-of-edr-offensive-tool
Grafana backend sql injection affected all version
https://fdlucifer.github.io/2024/04/22/grafana-sql-injection
Dauthi: is a tool designed to perform authentication attacks against various Mobile Device Management (MDM) solutions
https://github.com/emptynebuli/dauthi
ToddyCat is making holes in your infrastructure
https://securelist.com/toddycat-traffic-tunneling-data-extraction-tools
Heavily obfuscated ASP web shell generation tool
https://github.com/fin3ss3g0d/ASPJinjaObfuscator
No, LLM Agents can not Autonomously Exploit One-day Vulnerabilities
https://struct.github.io/auto_agents_1_day
How I Prevented a Mass Data Breach - $15,000 bounty
https://bxmbn.medium.com/how-i-prevented-a-mass-data-breach-15-000-bounty-bxmbn-1096e6400e3d
How Did I Easily Find Stored XSS at Apple And Earn $5000 ?
xrypt0/how-did-i-easily-find-stored-xss-at-apple-and-earn-5000-3aadbae054b2" rel="nofollow">https://medium.com/@xrypt0/how-did-i-easily-find-stored-xss-at-apple-and-earn-5000-3aadbae054b2
HackerToolkit offers a curated selection of tools designed to enhance your hacking capabilities. This repository not only organizes these tools but provides information about them. Easily install all of them with one script
https://github.com/ChrisJr404/HackerToolkit
