每周蓝军技术推送（2022.4.23-4.29）

https://paper.seebug.org/1885/

https://github.com/cyberark/MITM_Intercept

https://twitter.com/orange_8361/status/1518970259868626944

https://github.com/Dec0ne/KrbRelayUp

https://offsec.almond.consulting/bypassing-ldap-channel-binding-with-starttls.html

https://techcommunity.microsoft.com/t5/storage-at-microsoft/smb1-now-disabled-by-default-for-windows-11-home-insiders-builds/ba-p/3289473

https://github.com/outflanknl/C2-Tool-Collection

https://www.blackhillsinfosec.com/dns-over-https-for-cobalt-strike/

https://www.arashparsa.com/bypassing-pesieve-and-moneta-the-easiest-way-i-could-find

https://mobile.twitter.com/snovvcrash/status/1519691055947517952

https://github.com/dsnezhkov/elfpack

https://securityaffairs.co/wordpress/130564/hacking/atlassian-jira-authentication-bypass-issue.html

https://www.microsoft.com/security/blog/2022/04/26/microsoft-finds-new-elevation-of-privilege-linux-vulnerability-nimbuspwn/

https://blog.morphisec.com/vmware-identity-manager-attack-backdoor

https://www.wiz.io/blog/wiz-research-discovers-extrareplica-cross-account-database-vulnerability-in-azure-postgresql/

https://www.bleepingcomputer.com/news/security/public-redis-exploit-used-by-malware-gang-to-grow-botnet/

https://www.pixiepointsecurity.com/blog/nday-cve-2022-24521.html

https://tbhaxor.com/bypass-the-docker-firewall-by-abusing-rest-api/

https://www.reddit.com/r/blueteamsec/comments/uc67bb/badkeysinfo_checking_cryptographic_public_keys/

https://mp.weixin.qq.com/s/x6jNNvkWRJt1YcHMakWHEg