singularity
singularity copied to clipboard
nccgroup
A DNS rebinding attack framework.
Changes Submitted: - [Security] Application will drop privileges by default if running as the root account. - By default the user is `nobody` but this can be configured via the...
Hi, I tried to test my simple python app on port 8080 on localhost. I own a domain and subdomain for this attack. When I try to load the URL...
Hi @gdncc and congratulations on the tool you made. I am trying to perform the attack on my home router and I cannot understand why it is giving me this...
Hook and Control (hook-and-control.js): Hijack target browsers and use them to access inaccessible resources from your own browser or other HTTP clients. You can retrieve the list of hooked browsers...
@gdncc Yo bro , would these weird IP formatting be useful in bypassing dns rebinding protection/filters ? https://blog.dave.tf/post/ip-addr-parsing/ just like the CVE: 2020-26887 but more complicated.
https://www.redteam-pentesting.de/en/advisories/rt-sa-2020-003/-fritz-box-dns-rebinding-protection-bypass
This timeout means that the DNS server will revert to responding with ResponseIPAddr. I believe we should fix the documentation in the wiki pages as well: https://github.com/nccgroup/singularity/wiki/Using-Singularity.
Hi! I have been using Singularity of Origin for some time and I was wondering whether you can help me answer some technical questions I did not succeed in solving...
Hi! I have looked into the SOO tool for some weeks as I am trying to perform a security analysis for some specific services. As far as I understand, DNS...