每周蓝军技术推送（2023.9.16-9.22）

https://github.com/sdcampbell/Nessusploitable

https://github.com/nyxgeek/onedrive_user_enum

https://www.mdsec.co.uk/2023/09/the-not-so-pleasant-password-manager/

https://github.com/Pennyw0rth/NetExec

https://github.com/SpecterOps/TierZeroTable

https://github.com/EvotecIT/GPOZaurr

https://github.com/S3cur3Th1sSh1t/Caro-Kann

https://github.com/malcomvetter/Periscope

https://shorsec.io/blog/malrdp-implementing-rouge-rdp-manually/

https://skal.red/automating-malrdp-mostly/

https://github.com/redskal/malrdp-deploy

https://github.com/volexity/donut-decryptor

https://ipfyx.fr/post/visual-studio-code-tunnel/

https://rtx.meta.security/mitigation/2023/09/12/CVE-2023-4039.html

https://github.com/asahilina/agx-exploit

https://googleprojectzero.blogspot.com/2023/09/analyzing-modern-in-wild-android-exploit.html

https://www.mandiant.com/resources/blog/arbitrary-file-deletion-vulnerabilities

https://www.dutchosintguy.com/post/using-ai-for-extracting-usernames-emails-phone-numbers-and-personal-names-from-large-datasets

https://www.elastic.co/security-labs/using-llms-and-esre-to-find-similar-user-sessions

https://github.com/St3v3nsS/MMSF

https://g1a55er.net/Android-14-Still-Allows-Modification-of-System-Certificates