【漏洞研究】
WordPress TaxoPress3.0.7.1存储型XSS
https://cxsecurity.com/issue/WLB-2021100097
Gitlab RCE(CVE-2021-22205)
https://security.humanativaspa.it/gitlab-ce-cve-2021-22205-in-the-wild/
Hikvision Web Server Build 210702 Command Injection
https://cxsecurity.com/issue/WLB-2021100098
Zeno - THM Writeup (Abusing service file misconfigurations)
https://infosecwriteups.com/zeno-thm-writeup-abusing-service-file-misconfigurations-3dd8ac94be24
SPA Cart CMS - 多个SQL注入
https://seclists.org/fulldisclosure/2021/Oct/35
PHP Melody v3.0 - 多个跨站漏洞
https://seclists.org/fulldisclosure/2021/Oct/38
【红队文章】
紫队如何评估网络威胁和风险
Chrome沙盒逃逸
https://securitylab.github.com/research/one\_day\_short\_of\_a\_fullchain\_sbx/
走进真实世界的漏洞利用链
https://github.blog/2021-03-24-real-world-exploit-chains-explained/
【红队工具】
InlineExecute-assembl: Cobaltstrike BOF (.NET)
https://github.com/anthemtotheego/InlineExecute-Assembly
Inject-amsiBypass:Cobalt Strike BOF(AMSI Bypass)
https://github.com/boku7/injectAmsiBypass
Mediator: 一个架构新颖的端对端加密反向Shell
GPOwned: GPO利用套件
https://github.com/X-C3LL/GPOwned
ObfuscateP: 用于C++编译时混淆字符串
https://github.com/killvxk/ObfuscateP
Webdiscover:Web枚举自动化
Azure Outlook C2
https://github.com/boku7/azureOutlookC2
更多详情请查看原文