Initial Access Intelligence
The "Initial Access Intelligence" module is a vital tool for cybersecurity, designed to scan GitHub repositories for the latest exploit and proof-of-concept codes for new vulnerabilities. It provides users with crucial updates on potential security threats, enabling proactive defense measures. This module helps close the gap between vulnerability discovery and patching, significantly enhancing system security.
-
June 18, 2021, 12:57 p.m.
None
HTML
Updated: 3 years, 10 months ago0 stars 0 fork 0 watcherBorn at : May 4, 2021, 12:49 a.m. This repo has been linked 2 different CVEs too. -
May 3, 2021, 4:16 p.m.
Docker-compose to set up a test environment for exploiting CVE-2015-8562
Dockerfile PHP HTML CSS JavaScript Less Python
Updated: 3 years, 11 months ago0 stars 0 fork 0 watcherBorn at : May 3, 2021, 3:49 p.m. This repo has been linked 1 different CVEs too. -
Sept. 22, 2024, 4:21 p.m.
A dockerfile and docker compose orchestration to setup a business of a gambling system and website using laravel
Dockerfile Shell
Updated: 7 months, 1 week ago1 stars 1 fork 1 watcherBorn at : May 3, 2021, 2:18 p.m. This repo has been linked 1 different CVEs too. -
Aug. 12, 2024, 8:12 p.m.
POC from TestANull for CVE-2021-28482 on Exchange Server
Python
Updated: 8 months, 2 weeks ago45 stars 14 fork 14 watcherBorn at : May 3, 2021, 1:54 p.m. This repo has been linked 1 different CVEs too. -
April 8, 2025, 9:11 p.m.
None
Updated: 3 weeks, 1 day ago541 stars 64 fork 64 watcherBorn at : May 3, 2021, 12:54 p.m. This repo has been linked 2 different CVEs too. -
May 3, 2021, 9:52 a.m.
事件: 微軟(Microsoft)上周公布了修補遭到駭客攻擊的 Exchange Server 漏洞,全球恐有數萬個組織受到影響。網域與被入侵的Exchange郵件伺服器有關,而這臺伺服器後來被駭客當作C&C中繼站使用,導致接下來發生加密攻擊事故。 嚴重性: 全球企業普遍使用微軟生態系執行日常業務,若遭受駭客攻擊,將造成用戶機敏資料外洩並導致極大損失。雖然微軟已推出更新補釘,但阿戴爾強調這尚未去除儲存在受害伺服器內的後門殼層(webshell),因此就算尚未受到攻擊的企業可以免於被駭風險,駭客仍有時間入侵已被駭的伺服器留下「定時炸彈」。 從2020年開始,美國便不斷指控中國入侵多家醫藥公司及學術單位,試圖竊取疫苗研發機密,這次事件很可能將使中美之間的關係進一步惡化。至於華為、TikTok等中國服務是否會受到這次駭客事件波及,則暫時還不明朗。 漏洞通報程序: 在2年前,曾經拿下資安圈漏洞奧斯卡獎Pwnie Awards「最佳伺服器漏洞獎」戴夫寇爾首席資安研究員Orange Tsai(蔡政達),漏洞通報記錄不勝枚舉,後來因為針對企業常用的SSL VPN進行漏洞研究與通報,更是在全球資安圈聲名大噪。 不過,在今年3月2日卻發生讓Orange Tsai錯愕不已的事情。那就是,他在今年一月跟微軟通報的2個Exchange漏洞,微軟原訂在3月9日對外釋出修補程式,卻突然提前一週,在3月2日便緊急釋出修補程式。原來是因為,在2月26日到2月28日,這個週五下班後到週末這段期間,全球各地發生許多利用微軟Exchange漏洞發動攻擊的資安事件。 攻擊本質: 有人在網路上大量掃描微軟於本月修補的CVE-2020-0688安全漏洞,該漏洞攸關Microsoft Exchange伺服器,呼籲Exchange用戶應儘速修補。 CVE-2020-0688漏洞肇因於Exchange伺服器在安裝時沒能妥善建立唯一金鑰,將允許具備該知識及信箱的授權用戶以系統權限傳遞任意物件,屬於遠端程式攻擊漏洞,該漏洞影響Microsoft Exchange Server 2010 SP3、Microsoft Exchange Server 2013、Microsoft Exchange Server 2016與Microsoft Exchange Server 2019,但只被微軟列為重要(Important)等級的風險。
Updated: 3 years, 11 months ago0 stars 0 fork 0 watcherBorn at : May 3, 2021, 9:44 a.m. This repo has been linked 1 different CVEs too. -
May 3, 2021, 8:17 a.m.
None
Updated: 3 years, 11 months ago0 stars 0 fork 0 watcherBorn at : May 3, 2021, 8:17 a.m. This repo has been linked 14 different CVEs too. -
May 4, 2021, 12:46 a.m.
None
Shell
Updated: 3 years, 11 months ago0 stars 0 fork 0 watcherBorn at : May 3, 2021, 12:29 a.m. This repo has been linked 1 different CVEs too. -
Feb. 13, 2024, 10:10 a.m.
Tool to read information in Ultrium LTO Cartridges from a tape drive
tape-drive ultrium lto lto-cm
Makefile Go
Updated: 1 year, 2 months ago9 stars 1 fork 1 watcherBorn at : May 2, 2021, 11:15 p.m. This repo has been linked 0 different CVEs too. -
Jan. 10, 2023, 1:20 p.m.
None
Dockerfile Shell
Updated: 2 years, 3 months ago0 stars 1 fork 1 watcherBorn at : May 2, 2021, 10:48 p.m. This repo has been linked 0 different CVEs too.
