https://ttp.report/tools/2024/01/21/ligolo-mp-pivoting-with-friends.html

https://github.com/ttpreport/ligolo-mp

https://xz.aliyun.com/t/13314

https://securityonline.info/angryoxide-802-11-attack-tool/

https://github.com/Ragnt/AngryOxide

https://github.com/P001water/yuze

https://pentestlab.blog/2024/01/22/domain-escalation-backup-operator/

https://github.com/Kudaes/DInvoke_rs

https://github.com/itaymigdal/LOLSpoof

https://github.com/Maldev-Academy/RemoteTLSCallbackInjection

https://redsiege.com/blog/2024/01/graphstrike-release/

https://github.com/RedSiege/GraphStrike

https://github.com/REDMED-X/InjectKit

https://github.com/yutianqaq/AVEvasionCraftOnline

https://blog.fox-it.com/2024/01/25/memory-scanning-for-the-masses/

https://github.com/fox-it/skrapa

https://www.varonis.com/blog/outlook-vulnerability-new-ways-to-leak-ntlm-hashes

https://blog.exodusintel.com/2024/01/19/google-chrome-v8-cve-2024-0517-out-of-bounds-write-code-execution/

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20698

https://github.com/RomanRybachek/CVE-2024-20698

https://github.com/Nassim-Asrir/ZDI-24-020 

https://aws.amazon.com/cn/blogs/security/how-to-build-a-unified-authorization-layer-for-identity-providers-with-amazon-verified-permissions/

https://orca.security/resources/blog/sys-all-google-kubernetes-engine-risk/

https://orca.security/resources/blog/sys-all-google-kubernetes-engine-risk-example/

https://redsiege.com/blog/2024/01/you-cant-see-me-protecting-your-phishing-infrastructure/

https://securelist.com/ksb-privacy-predictions-2024/111815/

往期推荐