Aggregator
跨境数据流动:企业合规指南
CVE-2000-0460 | KDE 1.1/1.1.1/1.1.2 kdesud DISPLAY memory corruption (EDB-19970 / BID-1274)
星巴克遭供应链攻击,回到纸质办公时代
CVE-2024-11668 | GitLab Community Edition/Enterprise Edition up to 17.4.4/17.5.2/17.6.0 Streaming Result session expiration (Issue 456922 / Nessus ID 211860)
CVE-2024-8177 | GitLab Community Edition/Enterprise Edition up to 17.4.4/17.5.2/17.6.0 Harbor Registry algorithmic complexity (Issue 480706 / Nessus ID 211859)
CVE-2024-11696 | Mozilla Thunderbird up to 132 Add-On Signature loadManifestFromFile signature verification (Nessus ID 211877)
TrailShark: Enhance AWS Security with Near-Real-Time Insights
TrailShark The TrailShark Capture Utility seamlessly integrates with Wireshark, facilitating the capture of AWS CloudTrail logs directly into Wireshark for near-real-time analysis. This tool can be used for debugging AWS API calls and played...
The post TrailShark: Enhance AWS Security with Near-Real-Time Insights appeared first on Penetration Testing Tools.
INTERCEPT: Policy as Code Static Analysis Auditing
INTERCEPT Stupidly easy to use, small footprint Policy as Code subsecond command-line scanner that leverages the power of the fastest multi-line search tool to scan your codebase. It can be used as a linter, guard...
The post INTERCEPT: Policy as Code Static Analysis Auditing appeared first on Penetration Testing Tools.
代码审计辅助工具开发与实战
Snaffler: tool for pentesters to help find delicious candy needles
Snaffler Snaffler is a tool for pentesters to help find delicious candy needles (creds mostly, but it’s flexible) in a bunch of horrible boring haystacks (a massive Windows/AD environment). It might also be useful for other...
The post Snaffler: tool for pentesters to help find delicious candy needles appeared first on Penetration Testing Tools.