askme765cs

## DllMainThread.c
//   Dll Hijacking via Thread Creation
// Author - Vivek Ramachandran
//  Learn Pentesting Online --  http://PentesterAcademy.com/topics and http://SecurityTube-Training.com
// Free Infosec Videos --  http://SecurityTube.net


#include <windows.h>
#define SHELLCODELEN	2048

## 20200114-TLP-WHITE_CVE-2020-0601.md

      
              1 file
            
          
              0 forks
            
          
                0 comments
              
            
              0 stars
            
          
                askme765cs
                / 20200114-TLP-WHITE_CVE-2020-0601.md
            
            
              Created
              January 19, 2020 19:19
                — forked from SwitHak/20200114-TLP-WHITE_CVE-2020-0601.md
            
              
                BlueTeam CheatSheet * CVE-2020-0601 * crypt32.dll | Last updated: 2020-01-17 2220 UTC
              
          
    CVE-2020-0601 AKA ChainOfFools OR CurveBall

General


Microsoft disclosed a vulnerability in their monthly Patch Tuesday referenced under CVE-2020-0601.
The vulnerability was discovered by the U.S. National Security Agency, anounced today (2020-01-14) in their press conference,  followed by a blog post and an official security advisory.
The flaw is located in the "CRYPT32.DLL" file under the C:\Windows\System32\ directory.

Vulnerability explanation


NSA description:
NSA has discovered a critical vulnerability (CVE-2020-0601) affecting Microsoft Windows® cryptographic functionality.
	// Dll Hijacking via Thread Creation
	// Author - Vivek Ramachandran
	// Learn Pentesting Online -- http://PentesterAcademy.com/topics and http://SecurityTube-Training.com
	// Free Infosec Videos -- http://SecurityTube.net



	#include <windows.h>
	#define SHELLCODELEN 2048