Lucene search
K

162 matches found

Talos Blog
Talos Blog
added 2023/07/07 9:26 p.m.15 views

Threat Roundup for June 30 to July 7

Today, Talos is publishing a glimpse into the most prevalent threats weve observed between June 30 and July 7. As with previous roundups, this post isnt meant to be an in-depth analysis. Instead, this post will summarize the threats weve observed by highlighting key behavioral characteristics,...

6.8AI score
Exploits0
Positive Technologies
Positive Technologies
added 2023/04/22 12:0 a.m.4 views

PT-2023-8262 · Nvidia · Nvidia Dgx A100 Sbios

Name of the Vulnerable Software and Affected Versions: NVIDIA DGX A100 SBIOS affected versions not specified Description: The issue is related to incorrect dynamic variable analysis, which may allow a user to cause a dynamic variable evaluation by local access. A successful exploit of this issue...

7.5CVSS5.1AI score0.00163EPSS
Exploits0References7
OSV
OSV
added 2023/03/09 11:15 p.m.3 views

UBUNTU-CVE-2022-3767

Missing validation in DAST analyzer affecting all versions from 1.11.0 prior to 3.0.32, allows custom request headers to be sent with every request, regardless of the host...

7.7CVSS5.8AI score0.00746EPSS
Exploits1References2
Microsoft Malware Protection
Microsoft Malware Protection
added 2023/03/06 5:0 p.m.52 views

Protecting Android clipboard content from unintended exposure

Considering mobile users often use the clipboard to copy and paste sensitive information, like passwords or payment information, clipboard contents can be an attractive target for cyberattacks. Leveraging clipboards can enable attackers to collect target information and exfiltrate useful data...

6.8AI score
Exploits0
The Hacker News
The Hacker News
added 2023/02/20 11:2 a.m.34 views

How to Detect New Threats via Suspicious Activities

Unknown malware presents a significant cybersecurity threat and can cause serious damage to organizations and individuals alike. When left undetected, malicious code can gain access to confidential information, corrupt data, and allow attackers to gain control of systems. Find out how to avoid...

7.6AI score
Exploits0
The Hacker News
The Hacker News
added 2023/02/15 1:46 p.m.20 views

Webinar — A MythBusting Special: 9 Myths about File-based Threats

Bad actors love to deliver threats in files. Persistent and persuasive messages convince unsuspecting victims to accept and open files from unknown sources, executing the first step in a cyber attack. This continues to happen whether the file is an EXE or a Microsoft Excel document. Far too often...

0.4AI score
Exploits0
Talos Blog
Talos Blog
added 2023/01/12 12:59 p.m.23 views

How to instrument system applications on Android stock images

By Vitor Ventura This post is the result of research presented at Recon Montreal 2022. Two slide decks are provided along with this research . One is the presentation showing the whole process and how to do it on Google Play Protect services. The other one is a workshop on how to do it on an...

6.8AI score
Exploits0
The Hacker News
The Hacker News
added 2022/09/14 10:10 a.m.43 views

How to Do Malware Analysis?

Based on the findings of Malwarebytes' Threat Review for 2022, 40 million Windows business computers' threats were detected in 2021. In order to combat and avoid these kinds of attacks, malware analysis is essential. In this article, we will break down the goal of malicious programs' investigatio...

0.5AI score
Exploits0
Kitploit
Kitploit
added 2022/07/21 12:30 p.m.47 views

RESim - Reverse Engineering Software Using A Full System Simulator

Reverse engineering using a full system simulator. Dynamic analysis by instrumenting simulated hardware using Simics Trace process trees, system calls and individual programs Reverse execution to selected breakpoints and events Integrated with IDA Protm debugging client Fuzz with a customized AFL...

7.9AI score
Exploits0References3
Vulnrichment
Vulnrichment
added 2022/05/03 3:15 a.m.15 views

CVE-2022-20748 Cisco Firepower Threat Defense Software Local Malware Analysis Denial of Service Vulnerability

A vulnerability in the local malware analysis process of Cisco Firepower Threat Defense FTD Software could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on the affected device. This vulnerability is due to insufficient error handling in the local malware...

5.3CVSS6.8AI score0.01206EPSS
Exploits0References1
The Hacker News
The Hacker News
added 2022/05/02 4:50 a.m.34 views

Here's a New Tool That Scans Open-Source Repositories for Malicious Packages

The Open Source Security Foundation OpenSSF has announced the initial prototype release of a new tool that's capable of carrying out dynamic analysis of all packages uploaded to popular open source repositories. Called the Package Analysis project, the initiative aims to secure open-source packag...

1.2AI score
Exploits0
Kitploit
Kitploit
added 2022/04/29 12:30 p.m.31 views

Lupo - Malware IOC Extractor. Debugging Module For Malware Analysis Automation

Debugging module for Malware Analysis Automation For a step by step post on how to use Lupo, with images and instructions, please see this post: https://medium.com/@vishalthakur/lupo-malware-ioc-extractor-cc86ae76b85d Introduction Working on security incidents that involve malware, we come across...

7.7AI score
Exploits0References1
Kitploit
Kitploit
added 2022/03/27 8:30 p.m.72 views

Ostorlab - A Security Scanning Platform That Enables Running Complex Security Scanning Tasks Involving Multiple Tools In An Easy, Scalable And Distributed Way

The Sales Pitch If this is the first time you are visiting the Ostorlab Github page, here is the sales pitch. Security testing requires often chaining tools together, taking the output from one, mangling it, filtering it and then pushing it to another tool. Several tools have tried to make the...

7.2AI score
Exploits0References1
Kitploit
Kitploit
added 2022/02/15 11:30 a.m.34 views

Flare-Qdb - Command-line And Python Debugger For Instrumenting And Modifying Native Software Behavior On Windows And Linux

flare-qdb is a command-line and scriptable Python-based tool for evaluating and manipulating native program state. It uses Vivisect to set a breakpoint on each queried instruction and executes Python code when hit. flare-qdb frees the analyst to take a nonlinear approach to dynamic analysis that...

7.3AI score
Exploits0References10
Kitploit
Kitploit
added 2022/01/17 8:30 p.m.447 views

reFlutter - Flutter Reverse Engineering Framework

This framework helps with Flutter apps reverse engineering using the patched version of the Flutter library which is already compiled and ready for app repacking. This library has snapshot deserialization process modified to allow you perform dynamic analysis in a convenient way. Key features:...

7.5AI score
Exploits0References7
Malwarebytes
Malwarebytes
added 2021/10/15 10:49 a.m.22 views

What is an .exe file? Is it the same as an executable?

You may often see .exe files but you may not know what they are. Is it the same as an executable file? The short answer is no. So whats the difference? What is an .exe file? Exe in this context is a file extension denoting an executable file for Microsoft Windows. Windows file names have two part...

Exploits0
Rapid7 Blog
Rapid7 Blog
added 2021/09/27 1:51 p.m.14 views

To the Left: Your Guide to Infrastructure as Code for Shifting Left

It's the cloud's world now, and we're all just living in it. The mass migration of organizational infrastructure to the cloud isn't slowing down any time soon — and really, why would it? Cloud computing has allowed developers to move at vastly greater speeds than ever before. And this in turn let...

0.6AI score
Exploits0
Kitploit
Kitploit
added 2021/08/30 12:30 p.m.90 views

Speakeasy - Windows Kernel And User Mode Emulation

Speakeasy is a portable, modular, binary emulator designed to emulate Windows kernel and user mode malware. Check out the overview in the first Speakeasy blog post. Instead of attempting to perform dynamic analysis using an entire virtualized operating system, Speakeasy will emulate specific...

7.1AI score
Exploits0References7
Ivan 'd0znpp' Novikov
Ivan 'd0znpp' Novikov
added 2021/08/30 9:10 a.m.63 views

15 Must-Have Tools for Penetration Testing in 2021⚙️

Do you require the best web entrance testing apparatuses? In this piece, we’ll be investigating data about entrance and the absolute best infiltration testing devices that you can approach.‍ What is Penetration Testing? Penetration, Security, Infiltration or Entrance testing is a type of safety...

8.1AI score
Exploits0
GoogleProjectZero
GoogleProjectZero
added 2021/05/20 12:0 a.m.58 views

Fuzzing iOS code on macOS at native speed

Or how iOS apps on macOS work under the hood Posted by Samuel Groß, Project Zero This short post explains how code compiled for iOS can be run natively on Apple Silicon Macs. With the introduction of Apple Silicon Macs, Apple also made it possible to run iOS apps natively on these Macs. This is...

6.9AI score
Exploits0
Rows per page
Query Builder