HackGit

2022-05-01 10:54:51 ​Wpgarlic

A proof-of-concept WordPress plugin fuzzer used in the research described in https://kazet.cc/2022/02/03/fuzzing-wordpress-plugins.html that helped to discover more than 140 vulnerablities in WordPress plugins installed on almost 15 million sites.

If you want to continue the research, start with less popular plugins - if a plugin achieved at least 10k active installs between October 2021 and January 2022, I have most probably looked at the fuzzer reports (and most focus has been put on plugins having at least 20k active installs). Because there is a lot of randomness in how fuzzer works, some vulnerabilities in these plugins remain undiscovered - but fewer ones.

Fuzzer reports contain a lot of false positives - most of them don't indicate a vulnerability. After seeing a report, first analyze whether the behavior you're observing is indeed a vulnerability or a false positive. Don't spam WPScan/vendors with raw fuzzer reports - provide a PoC exploit instead.

https://github.com/kazet/wpgarlic Открыть/Комментировать

2022-05-01 10:25:13 428 - AppSec Ezine

### Week: 17 | Month: April | Year: 2022 | Release Date: 29/04/2022 | Edition: #428 ###

https://github.com/Simpsonpt/AppSecEzine/blob/master/Ezines/428%20-%20AppSec%20Ezine Открыть/Комментировать

2022-05-01 10:02:26 ​Dora

Find exposed API keys based on RegEx and get exploitation methods for some of keys that are found

Features
Blazing fast as we are using ripgrep in backend
Exploit/PoC steps for many of the API key, allowing to write a good report for bug bounty hunting
Unlike many other API key finders, dora also shows the path to the file and the line with context for easier analysis
Can easily be implemented into scripts. See Example Use Cases

https://github.com/sdushantha/dora Открыть/Комментировать

2022-05-01 09:58:57 ​RAASNet

Open-Source Ransomware As A Service for Linux, MacOS and Windows

https://github.com/leonv024/RAASNet

#soft #infosec #python #windows #ransomware Открыть/Комментировать

2022-04-30 19:19:00 JSFScan

Script made for all your javascript recon automation in bugbounty. Just pass subdomain list to it and options according to your preference.

https://github.com/KathanP19/JSFScan.sh

Blog can be found at:
https://medium.com/@patelkathan22/beginners-guide-on-how-you-can-use-javascript-in-bugbounty-492f6eb1f9ea?sk=21500dc4288281c7e6ed2315943269e7

#web #js #soft #infosec #cybersecurity #pentesting Открыть/Комментировать

2022-04-30 19:19:00 ​Registry-Recon

Cobalt Strike Aggressor Script that Performs System/AV/EDR Recon.

As a red-team practitioner, we are often using tools that attempt to fingerprint details about a compromised system, preferably in the most stealthy way possible.

Some of our usual tooling for this started getting flagged by EDR products, due to the use of Windows CLI commands. This aggressor script aims to solve that problem by only probing the system using native registry queries, no CLI commands.

https://github.com/optiv/Registry-Recon Открыть/Комментировать

2022-04-30 17:17:00 ​What is HTTP-TRACKER?

HTTP-TRACKER is a browser extension which tracks the network on the browser (chrome and firefox). What ever is captured on the network tab in a browser, the same and more can be done by this extension.

This provides a centralized window which displays the entire requests - responses from all the tabs and all windows of the browser. This can also track the private/incognito window tabs (if permission is enabled), bringing everything into a central place.

https://github.com/venukbh/http-tracker Открыть/Комментировать

2022-04-30 17:17:00 ​Hardware and Firmware Security Guidance

Guidance for the Spectre, Meltdown, Speculative Store Bypass, Rogue System Register Read, Lazy FP State Restore, Bounds Check Bypass Store, TLBleed, and L1TF/Foreshadow vulnerabilities as well as general hardware and firmware security guidance

https://github.com/nsacyber/Hardware-and-Firmware-Security-Guidance Открыть/Комментировать

2022-04-30 14:14:00 Bifrost

A Flask-based HTTP(S) command and control (C2) framework with a web frontend. Malleable agents written in Go and scripts written in bash.

https://github.com/AshleyNikr/Bifrost Открыть/Комментировать

2022-04-30 11:11:00 ​WPGen

Auto Generator Malicious Plugins WordPress.

https://github.com/d4t4s3c/WPGen Открыть/Комментировать