{"vulnerability": "CVE-2021-26865", "sightings": [{"uuid": "19b5a737-2aad-4c31-b450-a7ea42870a03", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-26865", "type": "exploited", "source": "https://t.me/CyberSecurityTechnologies/2835", "content": "#Blue_Team_Techniques\n1. A PowerShell script to identify indicators of exploitation of ProxyLogon (CVE-2021-26855, CVE-2021-26857, CVE-2021-26858, CVE-2021-26865):\nhttps://github.com/soteria-security/HAFNIUM-IOC\nPoCs for CVE-2021-26855:\n]-> https://github.com/projectdiscovery/nuclei-templates/blob/master/cves/2021/CVE-2021-26855.yaml\n]-> https://github.com/h4x0r-dz/CVE-2021-26855\n\n2. The SI6 Networks\u2019 IPv6 toolkit is a set of IPv6 security assessment and trouble-shooting tools\nhttps://www.si6networks.com/research/tools/ipv6toolkit", "creation_timestamp": "2021-03-11T06:06:55.000000Z"}, {"uuid": "75c2bfa5-b0fa-4409-b770-9e0167ab50e4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-26865", "type": "seen", "source": "https://t.me/cibsecurity/24760", "content": "\u203c CVE-2021-26891 \u203c\n\nWindows Container Execution Agent Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-26865.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-03-11T18:54:27.000000Z"}, {"uuid": "f22909ad-cb2f-4a80-baa5-0306de7562dc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-26865", "type": "seen", "source": "https://t.me/CyberSecurityTechnologies/3038", "content": "#Research\nNew vulnerabilities in Windows Server Containers: CVE-2021-24096, CVE-2021-26891,\u00a0CVE-2021-26865, CVE-2021-26864\nhttps://googleprojectzero.blogspot.com/2021/04/who-contains-containers.html", "creation_timestamp": "2021-04-02T11:01:09.000000Z"}]}