每周蓝军技术推送（2024.1.13-1.19）

https://github.com/CyberRoute/scanme

https://github.com/pptx704/domainim

https://xz.aliyun.com/t/13268

https://medium.com/@bartukilickaya/unauthorized-access-to-ntds-dit-file-in-domain-controllers-69505ec67f20

https://github.com/decoder-it/DFSCoerce-exe-2/

https://labs.lares.com/supersharpshares-release/

https://github.com/LaresLLC/SuperSharpShares

https://swarm.ptsecurity.com/python-sspi-teaching-impacket-to-respect-windows-sso/

https://github.com/fortra/impacket

https://github.com/EpicGames/raddebugger

https://github.com/janoglezcampos/llvm-yx-callobfuscator

https://github.com/EvilGreys/Cobalt-Strike-Profiles-for-EDR-Evasion

https://github.com/bfengj/eBPFeXPLOIT

https://github.com/revng/revng

https://www.mdsec.co.uk/2024/01/cve-2024-20656-local-privilege-escalation-in-vsstandardcollectorservice150-service/

https://github.com/Wh04m1001/CVE-2024-20656

https://m417z.com/Privilege-escalation-using-the-XAML-diagnostics-API-CVE-2023-36003/

https://github.com/m417z/CVE-2023-36003-POC

https://tandasat.github.io/blog/2024/01/15/CVE-2024-21305.html

https://github.com/tandasat/CVE-2024-21305

https://zolutal.github.io/aslrnt/

https://github.com/xaitax/SploitScan

https://nullg0re.com/2024/01/entra-id-connect-arbitrary-password-overwrite/

https://medium.com/@TheCyb3rAlpha/bobthesmuggler-your-covert-cyber-swiss-knife-for-undetectable-payload-delivery-bc84f3037522

https://github.com/TheCyb3rAlpha/BobTheSmuggler

https://mikensec.medium.com/covert-data-exfiltration-via-llms-uncovering-the-hidden-risks-c50c106c87c8