Community-driven information, analysis, and discussion of vulnerabilities and threats. Part of the @Rapid7 family.
Joined November 2019
- Tweets 71
- Following 15
- Followers 921
- Likes 28
3 Photos and videos
Pinned Tweet
30 Oct 2020
print("Hello, World")
With hundreds of community-driven assessments of vulnerabilities and threats, AttackerKB offers a platform for analysis and discussion. Interested in contributing? Want to learn more about the latest vulnerabilities? Join us: attackerkb.com
2
6
AttackerKB retweeted
18 Apr 2022
I examined the Zyxel firewall "authentication bypass" for @AttackerKb. CVE-2022-0342 just looks like a 2fa bypass to me. An explanation and proof of concept exploit can be found here: attackerkb.com/assessments/7…
1
3
9
AttackerKB retweeted
15 Apr 2022
I put together a short @AttackerKb for the Sophos Firewall CVE-2022-1040 issue. A test of sorts: curl --insecure -H "X-Requested-With: XMLHttpRequest" -X POST 'https://10.0.0.12/userportal/Controller?mode=8700&operation=1&datagrid=179&json=\{"🦞":"test"\}'
1
31
110
AttackerKB retweeted
15 Apr 2022
I've got a few @AttackerKb write-ups in the backlog for vulnerabilities I couldn't find. I've very much not enjoyed that 😅 But hopefully the extra information will help someone else. First up, Apex Central's CVE-2022-26871: attackerkb.com/assessments/2…
2
8
AttackerKB retweeted
1 Apr 2022
I put together an @AttackerKb for Spring4Shell. There isn't a whole lot of new stuff to say at this point. I mostly focused on the original exploit. It's a simple and known technique, but not clearly stated anywhere, I thought. 🤷♂️ Happy hacking! attackerkb.com/topics/xtgLfw…
4
7
1 Apr 2022
Rapid7 analysis for #Spring4Shell CVE-2022-22965 in AttackerKB via @Junior_Baines attackerkb.com/topics/xtgLfw…
15 Mar 2022
New assessments of CVE-2020-15099 and CVE-2022-21999 in AttackerKB via community contributor noraj and @SpaceySpacek attackerkb.com/
1
2
AttackerKB retweeted
11 Mar 2022
Metasploit module available in today's release.
11 Mar 2022
Analysis of "Dirty Pipe" CVE-2022-0847 via @SpaceySpacek, including patch info and PoC attackerkb.com/topics/UwW7SV…
6
28
11 Mar 2022
Analysis of "Dirty Pipe" CVE-2022-0847 via @SpaceySpacek, including patch info and PoC attackerkb.com/topics/UwW7SV…
6
16
AttackerKB retweeted
20 Feb 2022
Here is the @AttackerKb analysis for CVE-2021-36260, unauthenticated command injection on Hikvision cameras. It includes a snippet of the vulnerable code, a potential way to discover compromise, and a link to pcaps.
attackerkb.com/topics/mb8q72…
12
19
AttackerKB retweeted
11 Feb 2022
I wrote up CVE-2021-1585 for @AttackerKb. This unpatched vulnerability is in Cisco's ASDM, a thick client for managing Cisco ASA and the like. A MITM or an evil endpoint can execute arbitrary code on the victim host. PoC included.
attackerkb.com/topics/0vIso8…
1
7
10
11 Feb 2022
Technical analysis of CVE-2021-1585 in Cisco ASDM, which allows for person-in-the-middle attacks. Disclosed in July 2021, unpatched in latest version, public exploits available. PoC and IOCs in AttackerKB. attackerkb.com/topics/0vIso8…
5
8
AttackerKB retweeted
25 Jan 2022
To follow up on yesterday's tweet about PetitPotam/KB5009763, I added some notes to @AttackerKb and created a video demonstrating the failure and a patch to resolve it.
attackerkb.com/topics/TEBmUA…
share.vidyard.com/watch/s12a…
11
32
14 Jan 2022
Technical analysis for Zoho ManageEngine Desktop Central (and MSP) CVE-2021-44515, including PoC. Credit to @wvuuuuuuuuuuuuu attackerkb.com/topics/rJw4DF…
15
27
12 Jan 2022
A handful of fresh vuln assessments for January Patch Tuesday bugs in AttackerKB this week courtesy of @tekwizz123. High-volume advisory dump, but at first glance, no easily exploitable CVEs that are *also* super useful attack targets. attackerkb.com/
2
2
11 Jan 2022
Kibana CVE-2019-7609 and Oracle WebLogic Server CVE-2019-2725 have been reported as exploited in the wild per CISA. attackerkb.com/
1
1
AttackerKB retweeted
11 Jan 2022
My favorite is CVE-2021-20038, an unauthenticated stack-based buffer overflow in the web server. I wrote a fairly detailed @AttackerKb entry detailing the challenges of landing an exploit. (2/6)
attackerkb.com/topics/QyXRC1…
1
3
5
11 Jan 2022
Today, @rapid7 disclosed five zero-day vulnerabilities in SonicWall SMA 100 series devices. Technical analysis for CVE-2021-20038 (unauth stack-based buffer overflow) and CVE-2021-20039 (auth command injection) now in AttackerKB via @Junior_Baines. attackerkb.com/topics/9szJhq…
2
18
33
AttackerKB retweeted
23 Dec 2021
We've updated the log4j @AttackerKb Rapid7 analysis to include a VMWare Horizon proof of concept. Thanks to @rwincey for help on that! We also noted that @1ZRR4H tweeted about seeing this one in the wild.
attackerkb.com/topics/in9sPR…
1
8
13
22 Dec 2021
11 product-specific analyses Log4j vulnerability now in AttackerKB. Latest addition is PoC (and how to find IOCs) for MobileIron, which is trivially exploitable. attackerkb.com/topics/in9sPR…
1
10
38
16 Dec 2021
Recent additions to #Log4Shell analysis:
- Apache JSPWiki, OFBiz, Druid vulnerable to CVE-2021-44228. PoCs and IOCs in write-up.
- Our testing was unable to confirm exploitability for ManageEngine, VMware Horizon, WebLogic. attackerkb.com/topics/in9sPR…
1
20
37