Olivia
Online
AttackerKB
@AttackerKb
Community-driven information, analysis, and discussion of vulnerabilities and threats. Part of the @Rapid7 family.
Austin, Texas
Joined November 2019
15 Following
920 Followers
71 Posts
Pinned Tweet
print("Hello, World")
With hundreds of community-driven assessments of vulnerabilities and threats, AttackerKB offers a platform for analysis and discussion. Interested in contributing? Want to learn more about the latest vulnerabilities? Join us: https://t.co/HONGNotcX1
I examined the Zyxel firewall "authentication bypass" for @AttackerKb. CVE-2022-0342 just looks like a 2fa bypass to me. An explanation and proof of concept exploit can be found here: https://t.co/i5PP0IS6kB
I put together a short @AttackerKb for the Sophos Firewall CVE-2022-1040 issue. A test of sorts: curl --insecure -H "X-Requested-With: XMLHttpRequest" -X POST 'https://10.0.0.12/userportal/Controller?mode=8700&operation=1&datagrid=179&json=\{"🦞":"test"\}'
I've got a few @AttackerKb write-ups in the backlog for vulnerabilities I couldn't find. I've very much not enjoyed that 😅 But hopefully the extra information will help someone else. First up, Apex Central's CVE-2022-26871: https://t.co/TsS78YckYl
Who to follow
Joas Antonio
@C0d3Cr4zy
Red Team Leaders Founder | Geek | #HackingIsNotACrime Advocate | Mathematics | Cinema | Artificial Intelligence | Yen Language | History of Hackers
Charlie Bromberg « Shutdown »
@_nwodtuhs
Trying to hack the way we hack things 🏴☠️
James Kettle 
@albinowax
Director of Research at @PortSwigger aka @Burp_Suite. Find my research, tools & contact details at https://t.co/vP6UbGmvl3
I put together an @AttackerKb for Spring4Shell. There isn't a whole lot of new stuff to say at this point. I mostly focused on the original exploit. It's a simple and known technique, but not clearly stated anywhere, I thought. 🤷♂️ Happy hacking! https://t.co/AsLQOyurc1
Rapid7 analysis for #Spring4Shell CVE-2022-22965 in AttackerKB via @Junior_Baines https://t.co/jJPiyKWjG5
New assessments of CVE-2020-15099 and CVE-2022-21999 in AttackerKB via community contributor noraj and @SpaceySpacek https://t.co/T7m2aC2JJB
Metasploit module available in today's release.
Analysis of "Dirty Pipe" CVE-2022-0847 via @SpaceySpacek, including patch info and PoC https://t.co/H1CCOObIKe
Here is the @AttackerKb analysis for CVE-2021-36260, unauthenticated command injection on Hikvision cameras. It includes a snippet of the vulnerable code, a potential way to discover compromise, and a link to pcaps.
https://t.co/EWzoCxC2Ro
I wrote up CVE-2021-1585 for @AttackerKb. This unpatched vulnerability is in Cisco's ASDM, a thick client for managing Cisco ASA and the like. A MITM or an evil endpoint can execute arbitrary code on the victim host. PoC included.
https://t.co/hb1yZtbfJH
Technical analysis of CVE-2021-1585 in Cisco ASDM, which allows for person-in-the-middle attacks. Disclosed in July 2021, unpatched in latest version, public exploits available. PoC and IOCs in AttackerKB. https://t.co/gKXP7fnYJX
To follow up on yesterday's tweet about PetitPotam/KB5009763, I added some notes to @AttackerKb and created a video demonstrating the failure and a patch to resolve it.
https://t.co/qqIoc0m8Zj
https://t.co/E6MIv6qpWC
Technical analysis for Zoho ManageEngine Desktop Central (and MSP) CVE-2021-44515, including PoC. Credit to @wvuuuuuuuuuuuuu https://t.co/XlPJn2pAiv
A handful of fresh vuln assessments for January Patch Tuesday bugs in AttackerKB this week courtesy of @tekwizz123. High-volume advisory dump, but at first glance, no easily exploitable CVEs that are *also* super useful attack targets. https://t.co/T7m2aC2JJB
Kibana CVE-2019-7609 and Oracle WebLogic Server CVE-2019-2725 have been reported as exploited in the wild per CISA. https://t.co/T7m2aC2JJB
My favorite is CVE-2021-20038, an unauthenticated stack-based buffer overflow in the web server. I wrote a fairly detailed @AttackerKb entry detailing the challenges of landing an exploit. (2/6)
https://t.co/HdxQJujPh8
Today, @rapid7 disclosed five zero-day vulnerabilities in SonicWall SMA 100 series devices. Technical analysis for CVE-2021-20038 (unauth stack-based buffer overflow) and CVE-2021-20039 (auth command injection) now in AttackerKB via @Junior_Baines. https://t.co/fEtmHEW94z
We've updated the log4j @AttackerKb Rapid7 analysis to include a VMWare Horizon proof of concept. Thanks to @rwincey for help on that! We also noted that @1ZRR4H tweeted about seeing this one in the wild.
https://t.co/pjLbAQq3Ip
11 product-specific analyses Log4j vulnerability now in AttackerKB. Latest addition is PoC (and how to find IOCs) for MobileIron, which is trivially exploitable. https://t.co/c1sK1dYhEn
Recent additions to #Log4Shell analysis:
- Apache JSPWiki, OFBiz, Druid vulnerable to CVE-2021-44228. PoCs and IOCs in write-up.
- Our testing was unable to confirm exploitability for ManageEngine, VMware Horizon, WebLogic. https://t.co/c1sK1dYhEn
Most Popular Users
Elon Musk
@elonmusk
240.2M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
109M followers
Narendra Modi
@narendramodi
107M followers
Rihanna
@rihanna
97.3M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.6M followers
KATY PERRY
@katyperry
86.9M followers
Taylor Swift
@taylorswift13
80.7M followers
Lady Gaga
@ladygaga
72.2M followers
Kim Kardashian
@kimkardashian
69.4M followers
YouTube
@youtube
68.6M followers
Virat Kohli
@imvkohli
68.6M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61.2M followers
X
@x
60.9M followers
Selena Gomez
@selenagomez
59.9M followers