Aggregator

Patchwork组织针对中国的网络攻势研究；肚脑虫（APT-Q-38）利用PDF文档诱饵的攻击活动分析；Operation sea elephant：彷徨在印度洋上的垂死海象；APT28的HTA木马多层混淆技术深入探究

混乱的黑客组织命名

混乱的黑客组织命名

混乱的黑客组织命名

混乱的黑客组织命名

混乱的黑客组织命名

GitHub Copilot 通过智能代码建议和自然语言处理，革新了日志分析，显著提升安全事件响应效率，助力企业应对 PB 级日志数据挑战。

漏洞预警 | Elastic Kibana 存在任意代码执行漏洞（CVE-2025-25012）

漏洞预警 | Elastic Kibana 存在任意代码执行漏洞（CVE-2025-25012）

漏洞预警 | Elastic Kibana 存在任意代码执行漏洞（CVE-2025-25012）

漏洞预警 | Elastic Kibana 存在任意代码执行漏洞（CVE-2025-25012）

Red Canary Mac Monitor Red Canary Mac Monitor is an advanced, stand-alone system monitoring tool tailor-made for macOS security research, malware triage, and system troubleshooting. Harnessing Apple Endpoint Security (ES), it collects and enriches system...

The post Red Canary Mac Monitor: advanced, stand-alone system monitoring tool tailor-made for macOS security research appeared first on Penetration Testing Tools.

DeepSecrets – a better tool for secret scanning Yet another tool – why? Existing tools don’t really “understand” code. Instead, they mostly parse texts. DeepSecrets expands classic regex-search approaches with semantic analysis, dangerous variable...

The post deepsecrets: a better tool for secret scanning appeared first on Penetration Testing Tools.

GCPGoat: A Damn Vulnerable GCP Infrastructure Compromising an organization’s cloud infrastructure is like sitting on a gold mine for attackers. And sometimes, a simple misconfiguration or a vulnerability in web applications, is all an...

The post GCPGoat: A Damn Vulnerable GCP Infrastructure appeared first on Penetration Testing Tools.

Armis will integrate Otorio's Titan platform with its cloud-based Centrix, bringing an on-premises option to the cloud-only offering.

A vulnerability has been found in Essential Addons for Elementor Plugin up to 5.8.8 on WordPress and classified as critical. This vulnerability affects unknown code. The manipulation leads to improper privilege management. This vulnerability was named CVE-2023-41955. The attack can be initiated remotely. There is no exploit available.

A vulnerability was found in SourceCodester PHP Task Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file task-details.php. The manipulation of the argument task_id leads to sql injection. This vulnerability is known as CVE-2024-28613. The attack can be launched remotely. There is no exploit available.

A vulnerability was found in SourceCodester Employee Task Management System 1.0. It has been classified as critical. Affected is an unknown function of the file admin-manage-user.php. The manipulation leads to sql injection. This vulnerability is traded as CVE-2024-33247. It is possible to launch the attack remotely. There is no exploit available.

A vulnerability, which was classified as critical, has been found in Tenda AX1803 1.0.0.1. This issue affects the function formSetSysToolDDNS of the file /goform/SetDDNSCfg. The manipulation of the argument serverName/ddnsUser/ddnsPwd/ddnsDomain leads to stack-based buffer overflow. The identification of this vulnerability is CVE-2024-4236. The attack may be initiated remotely. Furthermore, there is an exploit available. The vendor was contacted early about this disclosure but did not respond in any way.

A vulnerability classified as problematic has been found in 10Web Form Maker Plugin up to 1.15.24 on WordPress. Affected is an unknown function. The manipulation leads to cross site scripting. This vulnerability is traded as CVE-2024-2258. It is possible to launch the attack remotely. There is no exploit available.