694 matches found
Mozilla InvestiGator: MIG
Mozilla InvestiGator Mozilla’s real-time digital forensics and investigation platform MIG is a platform to perform investigative surgery on remote endpoints. It enables investigators to obtain information from large numbers of systems in parallel, thus accelerating investigation of incidents...
oletools - Tools to analyze MS OLE2 files and MS Office documents, for malware analysis, forensics and debugging
oletools is a package of python tools to analyze Microsoft OLE2 files also called Structured Storage, Compound File Binary Format or Compound Document File Format, such as Microsoft Office documents or Outlook messages, mainly for malware analysis, forensics and debugging. It is based on the...
Kaseya VSA 6.5.0.0 XSS / Brute Force
https://www.osisecurity.com.au/kaseya-parameter-reflected-xss-enumeration-and-bruteforce-weakness.html Date: 04-Apr-2017 Software: Kaseya Affected version: Kaseya VSA v6.5.0.0. Vulnerability details: 1. The "forgot password" function at https://target/access/logon.asp reveals whether a username i...
Tweek!DM Document Management Bypass / SQL Injection
https://www.osisecurity.com.au/tweekdm-document-management-authentication-bypass-sql-injection-vulnerabilities.html Date: 04-Apr-2017 Product: Tweek!DM Document Management Versions affected: Unknown Vulnerabilities: 1 Authentication bypass - the software sends a 301 Location redirect back to the...
Kaseya VSA 9.02.00.04 Information Disclosure
https://www.osisecurity.com.au/kaseya-information-disclosure-vulnerability.html Date: 04-Apr-2017 Product: Kaseya VSA Versions affected: 9.02.00.04 Vulnerability: Installations of Kaseya contain the following installation page: https://target/install/kaseya.html When the product is installed, it...
Inchoo Facebook Connect Cross Site Scripting
https://www.osisecurity.com.au/inchoo-facebook-connect-extension-for-magento-parameter-xss.html Date: 04-Apr-2017 Product: Inchoo Facebook Connect Magento Plugin Vulnerability: Reflected cross-site scripting. Details: Within ./app/code/community/Inchoo/Facebook/Block/Channel.php return 'isSecure ...
LanternCMS Cross Site Scripting / SQL Injection
https://www.osisecurity.com.au/lantern-cms-path-disclosure-sql-injection-reflected-xss.html Date: 04-Apr-2017 Product: LanternCMS Versions affected: Unknown Vulnerabilities: 1 Path disclosure By requesting a site with an invalid intSiteI or numRedirectCount:...
IBM QRadar SIEM and QRadar Incident Forensics Cross-Site Request Forgery Vulnerabilities
IBM QRadar SIEM and QRadar Incident Forensics are both products of IBM USA. The former is a suite of solutions that utilize security intelligence to protect assets and information from advanced threats; the latter is a suite of security forensic investigation software. A cross-site request forger...
IBM QRadar SIEM and QRadar Incident Forensics Cross-Site Scripting Vulnerabilities
IBM QRadar SIEM and QRadar Incident Forensics are both products of IBM USA. The former is a suite of solutions that utilize security intelligence to protect assets and information from advanced threats; the latter is a suite of security forensic investigation software. A cross-site scripting...
Online Malware & URL Analysis: MalSub
Online Malware & URL Analysis malsub is a Python 3.6.x framework that wraps several web services of online malware and URL analysis sites through their RESTful Application Programming Interfaces APIs . It supports submitting files or URLs for analysis, retrieving reports by hash values, domains,...
SSLsplit - transparent SSL/TLS interception
SSLsplit is a tool for man-in-the-middle attacks against SSL/TLS encrypted network connections. It is intended to be useful for network forensics, application security analysis and penetration testing. SSLsplit is designed to transparently terminate connections that are redirected to it using a...
Port Scan Attack Detector: PSAD
Port Scan Attack Detector The Port Scan Attack Detector psad is a lightweight system daemon written in is designed to work with Linux iptables/ip6tables/firewalld firewalling code to detect suspicious traffic such as port scans and sweeps, backdoors, botnet command and control communications, and...
CVE-2016-9725
IBM QRadar Incident Forensics 7.2 allows for Cross-Origin Resource Sharing CORS, which is a mechanism that allows web sites to request resources from external sites, avoiding the need to duplicate them. IBM Reference : 1999539...
Cross site request forgery (csrf)
IBM QRadar Incident Forensics 7.2 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM Reference : 1999549...
Design/Logic Flaw
IBM QRadar Incident Forensics 7.2 could allow a remote authenticated attacker to execute arbitrary commands on the system. By sending a specially-crafted request, an attacker could exploit this vulnerability to execute arbitrary commands on the system. IBM Reference : 1999542...
CVE-2016-9726
IBM QRadar Incident Forensics 7.2 could allow a remote authenticated attacker to execute arbitrary commands on the system. By sending a specially-crafted request, an attacker could exploit this vulnerability to execute arbitrary commands on the system. IBM Reference : 1999542...
CVE-2016-9730
IBM QRadar Incident Forensics 7.2 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM Reference : 1999549...
CVE-2016-9730
CVE-2016-9730 affects IBM Security QRadar SIEM and QRadar Incident Forensics 7.2.x. The issue is a cross-site request forgery (CSRF) vulnerability that could allow an attacker to perform malicious and unauthorized actions transmitted from a trusted user’s session. The publicly available connected...
CVE-2016-9725
CVE-2016-9725 affects IBM QRadar Incident Forensics (7.2.x). The issue is described as overly permissive Cross-Origin Resource Sharing (CORS) policies in the Incident Forensics component, enabling cross-origin requests that would normally be restricted. Connected IBM bulletin references confirm t...
CVE-2016-9725
IBM QRadar Incident Forensics 7.2 allows for Cross-Origin Resource Sharing CORS, which is a mechanism that allows web sites to request resources from external sites, avoiding the need to duplicate them. IBM Reference : 1999539...