Peneter Tools – Telegram

Peneter Tools

1.28K subscribers

26 photos

4 videos

56 files

613 links

https://soheilsec.com
https://blog.peneter.com
@learnpentest
@peneter_com
@Peneter_News
@Peneter_Tools
@Peneter_Media
آموزش امنیت
https://www.youtube.com/@soheilsec
اخبار امنیت
https://www.youtube.com/@Peneter

Download Telegram

About

Blog

Apps

Platform

1.28K subscribers

nginx 1.18 zero day - just details
https://github.com/AgainstTheWest/NginxDay

GitHub - AgainstTheWest/NginxDay: Nginx 18.1 04/09/22 zero-day repo

Nginx 18.1 04/09/22 zero-day repo. Contribute to AgainstTheWest/NginxDay development by creating an account on GitHub.

99 views18:40

#VMware Workspace ONE Access Server-side Template Injection CVE-2022-22954 #SSTI

https://github.com/sherlocksecurity/VMware-CVE-2022-22954/blob/main/CVE-2022-22954.yaml

VMware-CVE-2022-22954/CVE-2022-22954.yaml at main · sherlocksecurity/VMware-CVE-2022-22954

POC for VMWARE CVE-2022-22954. Contribute to sherlocksecurity/VMware-CVE-2022-22954 development by creating an account on GitHub.

91 views16:01

#VMware Workspace ONE Access Server-side Template Injection CVE-2022-22954 #SSTI https://github.com/sherlocksecurity/VMware-CVE-2022-22954/blob/main/CVE-2022-22954.yaml

nuclei Template for Detect:
https://github.com/projectdiscovery/nuclei-templates/pull/4113

Added VMware Workspace ONE Access - Freemarker SSTI by ehsandeep · Pull Request #4113 · projectdiscovery/nuclei-templates

Co-Authored-By: Sherlock Secure [email protected]
https://github.com/sherlocksecurity/VMware-CVE-2022-22954
Template Validation
I've validated this template loc...

82 views10:34

Privilege Escalation vulnerability in Amazon Web Service (AWS) VPN Client (CVE-2022-25165).
blog: https://rhinosecuritylabs.com/aws/cve-2022-25165-aws-vpn-client/
POC : https://github.com/RhinoSecurityLabs/CVEs/tree/master/CVE-2022-25166

84 views15:59

https://github.com/RhinoSecurityLabs/CVEs/raw/master/CVE-2022-25166/poc_image.gif

89 views15:59

#nginx 0-day on latest nginx-1.21.6

Github: https://github.com/gamozolabs/nginx_shitpost

by https://twitter.com/gamozolabs

470 views19:37

467 views19:40

CVE-2022-22954 #VMware Workspace ONE Access freemarker #SSTI
https://github.com/bewhale/CVE-2022-22954

GitHub - bewhale/CVE-2022-22954: CVE-2022-22954 VMware Workspace ONE Access freemarker SSTI 漏洞命令执行、批量检测脚本、文件写入

CVE-2022-22954 VMware Workspace ONE Access freemarker SSTI 漏洞命令执行、批量检测脚本、文件写入 - bewhale/CVE-2022-22954

101 views19:45

windows #spooler service #LPE which was patched on #patchtuesday

https://github.com/grigoritchy/pocs/tree/main/windows/spooler-splenumforms-iov

pocs/windows/spooler-splenumforms-iov at main · grigoritchy/pocs

Contribute to grigoritchy/pocs development by creating an account on GitHub.

518 views20:41

Exploiting Struts RCE on 2.5.26
for fix problem should upgrade to 2.5.30
https://mc0wn.blogspot.com/2021/04/exploiting-struts-rce-on-2526.html

Exploiting Struts RCE on 2.5.26

Exploiting Struts RCE on 2.5.26 Abstract Late last year, 2020, a fix for a remote code execution (RCE) vulnerability discovered by Alvaro Mu...

126 views12:42

APT Cyber Tools Targeting ICS/SCADA Devices:
https://www.cisa.gov/uscert/ncas/alerts/aa22-103a
lateral movement and disrupt critical devices in ICS network:
https://github.com/stong/CVE-2020-15368

134 views15:21

Now reFlutter not only allows you to monitor traffic, but also shows absolute offsets of the functions in the target Android or iOS application. Root is not required.
https://github.com/Impact-I/reFlutter

GitHub - Impact-I/reFlutter: Flutter Reverse Engineering Framework

Flutter Reverse Engineering Framework. Contribute to Impact-I/reFlutter development by creating an account on GitHub.

155 views18:05

CVE-2022-1329
WordPress-Elementor-3.6.0-3.6.1-3.6.2
type: RCE
#wordpress #rce

164 views05:50

196 views05:50

This media is not supported in your browser

VIEW IN TELEGRAM

Microsoft Sharepoint RCE (CVE-2022-22005)

https://hnd3884.github.io/posts/cve-2022-22005-microsoft-sharepoint-RCE/

#sharepoint #rce

144 views05:53

A proof-of-concept WordPress plugin fuzzer

https://github.com/kazet/wpgarlic#usage-cheatsheet

#wordpress #redteam #BugBounty

GitHub - kazet/wpgarlic: A proof-of-concept WordPress plugin fuzzer

A proof-of-concept WordPress plugin fuzzer. Contribute to kazet/wpgarlic development by creating an account on GitHub.

139 views05:54

WatchGuard Pre-Auth RCE - CVE-2022-26318

https://blog.assetnote.io/2022/04/13/watchguard-firebox-rce/
#watchgaurd #rce

134 views06:10

cve-2022-29072
7-Zip through 21.07 on Windows allows privilege escalation and command execution when a file with the .7z extension is dragged to the Help>Contents area.

https://github.com/kagancapar/CVE-2022-29072
#7zip #lpe

GitHub - kagancapar/CVE-2022-29072: 7-Zip through 21.07 on Windows allows privilege escalation and command execution when a file…

7-Zip through 21.07 on Windows allows privilege escalation and command execution when a file with the .7z extension is dragged to the Help>Contents area. - kagancapar/CVE-2022-29072

133 views06:13

Use-After-Free Exploit in HackSysExtremeVulnerableDriver
https://sophieboyle.github.io/2022/04/09/HEVD-UAF-Exploit.html
https://github.com/hacksysteam/HackSysExtremeVulnerableDriver
#LPE

134 views07:05

A Python based gitleaks wrapped tool to enable scanning of multiple Gitlab repositories in parallel.
https://github.com/codekuu/Gitlab-Scanner
#Gitlab #scanner

GitHub - codekuu/Gitlab-Scanner: A Python based gitleaks wrapped tool to enable scanning of multiple Gitlab repositories in parallel.

A Python based gitleaks wrapped tool to enable scanning of multiple Gitlab repositories in parallel. - codekuu/Gitlab-Scanner

142 views03:07

This media is not supported in your browser

VIEW IN TELEGRAM

Inspired by 7-Zip CVE-2022-29072 this vulnerability also exist in XVI32
by: will dormann

https://twitter.com/wdormann/status/1516217431437500419?s=21&t=f9YqLUEf65ykpDUdF5MCYw

7zip: https://t.iss.one/Peneter_Tools/305

576 viewsedited 12:02