Exploit for CVE-2021-1675

CVE-2021-1675 - PrintNightmare LPE PowerShell Caleb Stewa...

Invoke-DNSteal - Simple And Customizable DNS Data Exfiltrator

Invoke-DNSteal is a Simple & Customizable DNS Data Exfiltrator. This tool helps you to exfiltrate data through DNS protocol over UDP and TCP, and lets you control the size of queries using random delay. Also, allows you to avoid detections by using random domains in each of your queries and you c...

McAfee MVISION EDR Command Injection Vulnerability

Mcafee McAfee MVISION EDR is an EDR product from Mcafee, Inc. that collects endpoint action logs and analyzes them with AI to detect malicious actions and take countermeasures. A command injection vulnerability exists in MVISION EDR that allows an authenticated MVEDR administrator to trigger an E...

Exploit for CVE-2021-1675

From Lares Labs: Detection & Remedia...

CVE-2021-31838

A command injection vulnerability in MVISION EDR MVEDR prior to 3.4.0 allows an authenticated MVEDR administrator to trigger the EDR client to execute arbitrary commands through PowerShell using the EDR functionality 'execute reaction'...

CVE-2021-31838

A command injection vulnerability in MVISION EDR MVEDR prior to 3.4.0 allows an authenticated MVEDR administrator to trigger the EDR client to execute arbitrary commands through PowerShell using the EDR functionality 'execute reaction'...

Command injection

A command injection vulnerability in MVISION EDR MVEDR prior to 3.4.0 allows an authenticated MVEDR administrator to trigger the EDR client to execute arbitrary commands through PowerShell using the EDR functionality 'execute reaction'...

CVE-2021-31838 Command injection through environment variable in MVISION EDR

A command injection vulnerability in MVISION EDR MVEDR prior to 3.4.0 allows an authenticated MVEDR administrator to trigger the EDR client to execute arbitrary commands through PowerShell using the EDR functionality 'execute reaction'...

CVE-2021-31838

MVISION EDR (MVEDR) before 3.4.0 has a command injection vulnerability that allows an authenticated MVEDR administrator to trigger the EDR client to execute arbitrary commands via PowerShell using the EDR feature “Execute Reaction.” The root cause/impact is described as enabling arbitrary command...

PT-2021-19540 · Mcafee · Mvision Edr

Name of the Vulnerable Software and Affected Versions: MVISION EDR versions prior to 3.4.0 Description: A command injection issue allows an authenticated administrator to execute arbitrary commands through PowerShell using the 'execute reaction' functionality. Recommendations: For versions prior ...

SharpHook - Tool Tath Uses Various API Hooks In Order To Give Us The Desired Credentials

SharpHook is inspired by the SharpRDPThief project, It uses various API hooks in order to give us the desired credentials. In the background it uses the EasyHook project, Once the desired process is up and running SharpHook will automatically inject its dependencies into the target process and...

McAfee MVISION EDR 操作系统操作系统命令注入漏洞

Mcafee McAfee MVISION EDR is an EDR product from Mcafee, Inc. that collects endpoint action logs and analyzes them with AI to detect malicious actions and take countermeasures. A command injection vulnerability exists in MVISION EDR that allows an authenticated MVEDR administrator to trigger an E...

Unable to open the StoreFront console, error “MMC has detected an error in a snap-in and will unload it”

• The customer is unable to open the StoreFront Store console in one StoreFront SF server • When opening the console, he gets the option to view stores or create new stores • If clicking on Server group on the left menu, he can see the member servers with no problems • When clicking ‘View Stores’...

TChopper - Conduct Lateral Movement Attack By Leveraging Unfiltered Services Display Name To Smuggle Binaries As Chunks Into The Target Machine

New technique I have discovered recently and give it a nickname Chop chop to perform lateral movement using windows services display name and WMI by smuggling the malicious binary as base64 chunks and automate the process using the TChopper tool. How it works the tool will get the file you willin...

Redpill - Assist Reverse Tcp Shells In Post-Exploration Tasks

Project Description The redpill project aims to assist reverse tcp shells in post-exploration tasks. Often in redteam engagements we need to use unconventional ways to access target system, such as reverse tcp shells not metasploit in order to bypass the defenses implemented by the system...

NSClient++ 0.5.2.35 Remote Code Execution Exploit

This Metasploit module allows an attacker with knowledge of the admin password of NSClient++ to start a privileged shell. For this module to work, both web interface of NSClient++ and ExternalScripts feature should be enabled. This module requires Metasploit: https://metasploit.com/download Curre...

PowerSploit

This is an offensive tool for Windows PowerShell exploitation. The repository contains a collection of PowerShell scripts and modules, including AntivirusBypass and CodeExecution, which are designed to bypass antivirus software and execute malicious code, respectively. The AntivirusBypass module...

NSClient++ 0.5.2.35 Remote Code Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'NSClient++ 0.5.2.35 - ExternalScripts Authenticated Remote Code Execution', 'Description' = %q This module allows an attacker with knowledge of t...

NSClient++ 0.5.2.35 - ExternalScripts Authenticated Remote Code Execution

This module allows an attacker with knowledge of the admin password of NSClient++ to start a privilege shell. For this module to work, both web interface of NSClient++ and ExternalScripts feature should be enabled. Module Options msf use exploit/windows/http/nscpauthenticatedrce msf...

Exchange Servers Targeted by ‘Epsilon Red’ Malware

Threat actors have deployed new ransomware on the back of a set of PowerShell scripts developed for making encryption, exploiting flaws in unpatched Exchange Servers to attack the corporate network, according to recent research. Researchers from security firm Sophos detected the new ransomware,...