Try Hack Me: Tomghost
GhostCat Firstly we use "nmap" to do a port scan. nmap port scan Exploit After a while, I stumbled across...
Month: August 2022
A study on malicious plugins in WordPress Marketplaces
A group of researchers from the Georgia Institute of Technology discovered malicious plugins on tens of thousands of WordPress sites....
Masky – Python Library With CLI Allowing To Remotely Dump Domain User Credentials Via An ADCS Without Dumping The LSASS Process Memory
Masky is a Masky also provides options that are commonly provided by such tools (thread number, authentication mode, targets loaded...
START – 7,455,386 breached accounts
In August 2022, news broke of an attack against the Russian streaming service "START". The incident led to the exposure...
Cobalt Stike Beacon Detected – 114[.]132[.]168[.]133:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Brute Ratel C4 Detected – 52[.]198[.]179[.]162:80
The Information provided at the time of posting was detected as "Brute Ratel C4". Depending on when you are viewing...
Cobalt Stike Beacon Detected – 43[.]128[.]130[.]160:8443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 139[.]159[.]179[.]41:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 13[.]40[.]37[.]251:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 82[.]157[.]68[.]80:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 149[.]255[.]35[.]160:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 8[.]130[.]174[.]159:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 35[.]90[.]202[.]187:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 81[.]68[.]148[.]140:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
World’s largest distributors of books Baker & Taylor hit by ransomware
Baker & Taylor, one of the world’s largest distributors of books, revealed that it was hit by a ransomware attack....
Node.js yargs-parxe module code execution |
NAME Node.js yargs-parxe module code execution Platforms Affected:Node.js yargs-parxeRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js yargs-parxe module could allow a remote attacker...
Node.js yunt module code execution |
NAME Node.js yunt module code execution Platforms Affected:Node.js yuntRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js yunt module could allow a remote attacker...
Node.js xpostcss-loadsr module code execution |
NAME Node.js xpostcss-loadsr module code execution Platforms Affected:Node.js xpostcss-loadsrRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js xpostcss-loadsr module could allow a remote attacker...
Node.js xrunt-cl module code execution |
NAME Node.js xrunt-cl module code execution Platforms Affected:Node.js xrunt-clRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js xrunt-cl module could allow a remote attacker...
Node.js xmdzdom module code execution |
NAME Node.js xmdzdom module code execution Platforms Affected:Node.js xmdzdomRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js xmdzdom module could allow a remote attacker...
HCL Domino and iNotes cross-site scripting | CVE-2022-27546
NAME HCL Domino and iNotes cross-site scripting Platforms Affected:HCL iNotes 9 HCL iNotes 10 HCL iNotes 11 HCL Domino 9...
CentreCOM AR260S V2 command execution | CVE-2022-35273
NAME CentreCOM AR260S V2 command execution Platforms Affected:Allied Telesis K.K. CentreCOM AR260S V2 3.3.6Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION CentreCOM AR260S V2...
Node.js yeoman-enviromenv module code execution |
NAME Node.js yeoman-enviromenv module code execution Platforms Affected:Node.js yeoman-enviromenvRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js yeoman-enviromenv module could allow a remote attacker...
Node.js yncrquest module code execution |
NAME Node.js yncrquest module code execution Platforms Affected:Node.js yncrquestRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js yncrquest module could allow a remote attacker...
