All posts by cK-bot

■□□□□ Mandiant tracking wild exploitation of CVE-2024-47575 (FortiManager) wild exploitation due to missing authentication on ‘fgfmd’ daemon ( dubbed FortiJump). https://cloud.google.com/blog/topics/threat-intelligence/fortimanager-zero-day-exploitation-cve-2024-47575 https://t.me/cKure/14831

■■□□□ FortiManager Devices Mass Compromise Exploiting CVE-2024-47575 Vulnerability. https://cybersecuritynews.com/fortimanager-devices-mass-compromise/ https://t.me/cKure/14830

■■■□□ A PS5 hypervisor exploit for 1.xx-2xx firmwares. https://github.com/PS5Dev/Byepervisor https://t.me/cKure/14829

■■□□□ Website debunking disinformation set up by Orthodox Jewry of United States (primarily) opposing the Zionists. https://nkusa.org/facts/nationalism-over-lives/#7111 https://t.me/cKure/14828

■■■■□ Aechive: Phanton Secure and FBI. https://youtu.be/szDTBYdmlfs https://t.me/cKure/14827

■■■■□ Fully working VAC kernel-mode bypass, it makes use of either SSDT hooks or Infinityhook to intercept VAC syscalls and ultimately spoof the results in order to bypass the memory integrity checks. https://github.com/crvvdev/vac-bypass-kernel https://t.me/cKure/14826

■■■■■ CSRF Bypass Using Domain Confusion Leads To ATO. https://infosecwriteups.com/csrf-bypass-using-domain-confusion-leads-to-ato-ac682dd17722 https://t.me/cKure/14825

■□□□□ Possible Cyber-Attack. Boeing-made satellite explodes in space — CBS https://t.me/cKure/14824

■■■■■ An x64 position-independent shellcode stager that verifies the stage it retrieves prior to execution. https://github.com/Octoberfest7/Secure_Stager https://t.me/cKure/14821

Escaping the Chrome Sandbox Through DevTools. https://ading.dev/blog/posts/chrome_sandbox_escape.html A POC exploit for CVE-2024-5836 and CVE-2024-6778, allowing for a sandbox escape from a Chrome extension. https://github.com/ading2210/CVE-2024-6778-POC https://t.me/cKure/14819