GadgetProbe probes endpoints consuming Java serialized objects to identify classes, libraries, and library versions on a remote Java classpath. By taking a wordlist input of Java classes and transmitting serialized DNS callback objects, GadgetProbe enumerates what's lurking in the remote classpath.
The Bishop Fox team developed Dufflebag, an open source tool, to help identify exposed EBS volumes and allow individuals and businesses to secure their secrets, we waited until now to release this tool, to give affected parties time to secure their secrets.
Spencer Gietzen wrote an excellent article on privilege escalation in AWS, identifying 21 separate methods across various AWS services. Gerben Kleijn tested Spencer’s methods and created the exploit scenarios for each of the 21 techniques in his own AWS environment and verified that he was able to escalate privileges with all of them.
This research by Caleb Gross has demonstrated how an attacker can chain exploits for unrestricted file upload (CVE-2017-11317) and insecure deserialization (CVE-2019-18935) vulnerabilities to execute arbitrary code on a remote machine.
Sliver is designed to be an open source alternative to Cobalt Strike. Sliver supports asymmetrically encrypted C2 over DNS, HTTP, HTTPS, and Mutual TLS using per-binary X.509 certificates signed by a per-instance certificate authority and supports multiplayer mode for collaboration.
FIND OUT FIRST
Be the first to find out about latest tools, advisories, and findings.