-
### OSCP-CheatSheet
https://notchxor.github.io/oscp-notes/2-web/LFI-RFI/
https://github.com/WDavid404/OSCP-CheatSheet
https://github.com/saisathvik1/OSCP-Cheatsheet
### wadcoms
https://wadcoms.…
-
## Summary
Now that #18715 is landed, we need to update the splunk modules to use this library
- [ ] modules/exploits/multi/http/splunk_upload_app_exec.rb
- [x] modules/exploits/multi/http/splunk…
-
This may not apply to windows-exploit-suggester, but I tested this process on a fully patched Windows 7 desktop (ie. WindowsUpdate reports no patches needed and there are no pending reboots) however w…
-
Similar to the docker group priv esc, add a lxd group priv esc.
-
Would be nice to create a gym-style environment inside a docker container where the agent can execute commands as root inside the docker container. This is a reasonable proxy for the sort of privilege…
-
Findings for Container Security, High, [TheRedHatter/javagoof:exploits/tomcat-rce/Dockerfile]:Improper Privilege Management
## Component Details
- **Exploit Maturity**: no-known-exploit
- **Vulnerab…
-
The file:
https://github.com/Kabot/Unix-Privilege-Escalation-Exploits-Pack/blob/master/2003/ptrace-kmod.c
won't compile with -m32 on x64 systems. Solution is to
//#include
#include
#incl…
-
### Describe the bug
Looks like [exploitdb package](https://github.com/NixOS/nixpkgs/blob/nixos-unstable/pkgs/tools/security/exploitdb/default.nix#L32) is missing dependencies (sed, tput, and hawk).
…
-
Considering the recent report on newer ways to exploit scripts in the ovpn file, I propose to disable all such scripts when a connection is started using the GUI (easy to do). We can still allow scrip…
-
### Description
In the version currently in git, nativefier does not pass `sandbox: true` when creating windows. This means that there are potentially privilege escalation exploits not present in …