GitHub - moniik/poc_salesforce_lightning: Academic purposes only. Attack against Salesforce lightning with guest privilege.
$ python3 exploit.py -h usage: exploit.py [-h] -u URL [-o [OBJECTS [OBJECTS ...]]] [-l] [-c] [-a AURA_CONTEXT] [-r RECORD_ID] [-d] [-f] [-s] Exploit Salesforce through the aura endpoint with the guest privilege optional arguments: -h, --help show this help message and exit -u URL, --url URL set the SITE url. e.g. http://url/site_path -o [OBJECTS [OBJECTS ...]], --objects [OBJECTS [OBJECTS ...]] se
Easily Identify Malicious Servers on the Internet with JARM - Salesforce Engineering Blog
TL;DR JARM is an active Transport Layer Security (TLS) server fingerprinting tool. Scanning with JARM provides the ability to identify and group malicious servers on the Internet. JARM is available here: https://github.com/salesforce/jarm JARM fingerprints can be used to: Quickly verify that all servers in a group have the same TLS configuration.Group disparate servers on the internet by configura
1
リリース、障害情報などのサービスのお知らせ
最新の人気エントリーの配信
処理を実行中です
j次のブックマーク
k前のブックマーク
lあとで読む
eコメント一覧を開く
oページを開く
Salesforce Lightning - An in-depth look at exploitation vectors for the everyday community — Enumerated
GitHub - Ophion-Security/sret: Salesforce Recon and Exploitation Toolkit
Pen-Testing Salesforce Apps: Part 2 (Fuzz & Exploit)
Open Sourcing HASSH - Salesforce Engineering Blog
