Lucene search
K

693 matches found

Kitploit
Kitploit
added 2019/02/09 8:47 p.m.446 views

Volatility Workbench - A GUI For Volatility Memory Forensics

Volatility Workbench is a graphical user interface GUI for the Volatility tool. Volatility is a command line memory analysis and forensics tool for extracting artifacts from memory dumps. Volatility Workbench is free, open source and runs in Windows. It provides a number of advantages over the...

7.2AI score
Exploits0
ThreatPost
ThreatPost
added 2019/02/01 9:35 p.m.216 views

Houzz Urges Password Resets After Data Breach

Interior decorating website Houzz on Friday issued a notice that user data – including usernames, passwords and IP addresses – had been accessed by an “unauthorized third party.” Houzz connects consumers to varying home-goods departments or professionals for purchasing furniture. The Palo Alto,...

0.2AI score
Exploits0References12
The Hacker News
The Hacker News
added 2019/01/09 10:41 a.m.125 views

Get 10 Popular Books To Learn Advanced Hacking [2018 Bundle]

It should come as no surprise that cybersecurity is one of the most important and lucrative fields in the world right now, and it's becoming more important every day—thanks to a growing number of cyber attacks that are targeting everything from individuals and startups to Fortune 500 companies an...

0.8AI score
Exploits0
The Hacker News
The Hacker News
added 2019/01/09 10:41 a.m.2 views

Get 10 Popular Books To Learn Advanced Hacking [2018 Bundle]

It should come as no surprise that cybersecurity is one of the most important and lucrative fields in the world right now, and it's becoming more important every day—thanks to a growing number of cyber attacks that are targeting everything from individuals and startups to Fortune 500 companies an...

6.8AI score
Exploits0
Schneier on Security
Schneier on Security
added 2019/01/02 3:29 p.m.77 views

Long-Range Familial Searching Forensics

Good article on using long-range familial searching -- basically, DNA matching of distant relatives -- as a police forensics tool. EDITED TO ADD 1/5: A smattering of papers on the topic...

2.9AI score
Exploits0
Schneier on Security
Schneier on Security
added 2018/12/24 12:25 p.m.86 views

MD5 and SHA-1 Still Used in 2018

Last week, the Scientific Working Group on Digital Evidence published a draft document -- "SWGDE Position on the Use of MD5 and SHA1 Hash Algorithms in Digital and Multimedia Forensics" -- where it accepts the use of MD5 and SHA-1 in digital forensics applications: While SWGDE promotes the adopti...

1.8AI score
Exploits0
Kitploit
Kitploit
added 2018/12/09 12:30 p.m.66 views

Radare2 - Unix-Like Reverse Engineering Framework And Commandline Tools Security

r2 is a rewrite from scratch of radare in order to provide a set of libraries and tools to work with binary files. Radare project started as a forensics tool, a scriptable command-line hexadecimal editor able to open disk files, but later added support for analyzing binaries, disassembling code,...

7.2AI score
Exploits0References2
CNVD
CNVD
added 2018/12/05 12:0 a.m.3 views

IBM QRadar Incident Forensics Information Disclosure Vulnerability (CNVD-2018-25037)

IBM QRadar Incident Forensics is a suite of security forensic investigation software from IBM. The software supports in-depth forensic investigations of suspected malicious network security incidents, and the repair of network security vulnerabilities. A security vulnerability exists in IBM QRada...

7.5CVSS7.7AI score0.01073EPSS
Exploits0References1
The Hacker News
The Hacker News
added 2018/12/04 6:52 a.m.90 views

Quora Gets Hacked – 100 Million Users Data Stolen

The World's most popular question-and-answer website Quora has suffered a massive data breach with unknown hackers gaining unauthorized access to potentially sensitive personal information of about 100 million of its users. Quora announced the incident late Monday after its team last Friday...

1.6AI score
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2018/12/04 1:55 a.m.20 views

Security Bulletin: The software contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data.

Summary The software contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data. Vulnerability Details CVEID: CVE-2018-1650 Description: IBM QRadar Incide...

5.9CVSS1.4AI score0.00343EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/12/04 1:50 a.m.21 views

Security Bulletin: Public disclosed vulnerability from Apache Tika

Summary Public disclosed vulnerability from Apache Tika Vulnerability Details CVEID: CVE-2018-1338 Description: Apache Tika is vulnerable to a denial of service, caused by an error in BPGParser. By persuading a victim to open a specially crafted file, an attacker could exploit this vulnerability ...

5.5CVSS1.3AI score0.02648EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/12/03 9:0 p.m.27 views

Security Bulletin: Apache PDFBox as used in IBM QRadar Incident Forensics is vulnerable to Publicly disclosed vulnerability. (CVE-2018-8036)

Summary Publicly disclosed vulnerability in Apache PDFBox. Vulnerability Details CVEID: CVE-2018-8036 Description: Apache PDFBox is vulnerable to a denial of service, caused by an out of memory exception in AFMParser. By persuading a victim to open a specially-crafted file, a remote attacker coul...

6.5CVSS0.5AI score0.04834EPSS
Exploits1Affected Software1
Schneier on Security
Schneier on Security
added 2018/11/29 12:17 p.m.45 views

FBI Takes Down a Massive Advertising Fraud Ring

The FBI announced that it dismantled a large Internet advertising fraud network, and arrested eight people: A 13-count indictment was unsealed today in federal court in Brooklyn charging Aleksandr Zhukov, Boris Timokhin, Mikhail Andreev, Denis Avdeev, Dmitry Novikov, Sergey Ovsyannikov, Aleksandr...

1.8AI score
Exploits0
The Hacker News
The Hacker News
added 2018/11/29 5:7 a.m.14 views

Dell Resets All Customers' Passwords After Potential Security Breach

Multinational computer technology company Dell disclosed Wednesday that its online electronics marketplace experienced a "cybersecurity incident" earlier this month when an unknown group of hackers infiltrated its internal network. On November 9, Dell detected and disrupted unauthorized activity ...

6.5AI score
Exploits0
The Hacker News
The Hacker News
added 2018/11/29 5:7 a.m.133 views

Dell Resets All Customers' Passwords After Potential Security Breach

Multinational computer technology company Dell disclosed Wednesday that its online electronics marketplace experienced a "cybersecurity incident" earlier this month when an unknown group of hackers infiltrated its internal network. On November 9, Dell detected and disrupted unauthorized activity ...

1.1AI score
Exploits0
ThreatPost
ThreatPost
added 2018/11/29 12:3 a.m.10 views

Dell Warns of Attempted Breach on Network

Dell EMC is warning its Dell.com customers of unauthorized activity on its network that occurred on Nov. 9 when it believes adversaries attempted to access names, email addresses and hashed passwords. In response, the company said that it has reset all Dell.com customer passwords. Dell said that...

1.3AI score
Exploits0References1
Trend Micro Simply Security
Trend Micro Simply Security
added 2018/11/28 8:33 p.m.58 views

AWS Security Hub and Deep Security

One of the biggest challenges in maintaining your security posture is visibility. You have security controls deployed throughout the stack, and each fo these tools is generating its own set of data points and has its own view of your deployment. Managing the multitude of alerts and events from...

0.3AI score
Exploits0
n0where
n0where
added 2018/11/21 7:36 p.m.100 views

The Incident Response Tracking Application: DFIRTrack

DFIRTrack Digital Forensics and Incident Response Tracking application is an open source web application mainly based on Django using a PostgreSQL database backend. In contrast to other great incident response tools, which are mainly case-based and support the work of CERTs, SOCs etc. in their...

0.2AI score
Exploits0References2
n0where
n0where
added 2018/11/21 12:16 a.m.87 views

Extract Digital Evidences From Images: Imago-Forensics

Imago is a python tool that extract digital evidences from images recursively. This tool is useful throughout a digital forensic investigation. If you need to extract digital evidences and you have a lot of images, through this tool you will be able to compare them easily. Imago allows to extract...

0.2AI score
Exploits0References1
Kitploit
Kitploit
added 2018/11/19 12:39 p.m.60 views

CAINE 10.0 - GNU/Linux Live Distribution For Digital Forensics Project, Windows Side Forensics And Incident Response

CAINE Computer Aided INvestigative Environment is an Italian GNU/Linux live distribution created as a Digital Forensics project. Currently, the project manager is Nanni Bassetti Bari - Italy. CAINE offers a complete forensic environment that is organized to integrate existing software tools as...

7.2AI score
Exploits0
Rows per page
Query Builder