IBM QRadar SIEM and Incident Forensics Security Bypass Vulnerability

IBM Security QRadar Incident Forensics is a suite of security forensic investigation software from IBM USA. The software supports in-depth forensic investigations of suspected malicious cybersecurity incidents and the remediation of cybersecurity vulnerabilities.IBM QRadar SIEM is an IBM solution...

Ubuntu Based Penetration Testing Operating system: LionSec

Ubuntu Based Penetration Testing Operating system LionSec Linux 5.0 is a Ubuntu based penetration testing distribution . It was built in order to perform Computer Forensics , Penetration Tests , Wireless Analysis . With the “Anonymous Mode” , you can browse the internet or send packets anonymousl...

LionSec Linux 5.0 - Penetration Testing Operating system based on Ubuntu

LionSec Linux 5.0 is a Ubuntu based penetration testing distribution . It was built in order to perform Computer Forensics , Penetration Tests , Wireless Analysis . With the "Anonymous Mode" , you can browse the internet or send packets anonymously . There are lots of inbuilt tools like netool...

nightHawkResponse - Incident Response Forensic Framework

Custom built application for asynchronus forensic data presentation on an Elasticsearch backend. This application is designed to ingest a Mandiant Redline "collections" file and give flexibility in search/stack and tagging. The application was born out of the inability to control multiple...

BagMRU Folder History

Nessus was able to enumerate folders that were opened in Windows Explorer. Microsoft Windows maintains folder settings using a registry key known as shellbags or BagMRU. The generated folder list report contains folders local to the system, folders from past mounted network drives, and folders fr...

Offline Digital Forensics Tool for Binary Files: ByteForce

Offline Digital Forensics Tool for Binary Files Offline Digital Forensics Tool for Binary Files This tool can be used for offline digital forensics and malware analysis as it shows all raw bytes of a file and also the ASCII representations. As you can see from the screenshots, It can be used on a...

CVE-2016-2968

IBM Security QRadar Incident Forensics 7.2.x before 7.2.7 allows remote attackers to bypass authentication, and obtain sensitive information or modify data, via unspecified vectors...

CVE-2016-2872

Directory traversal vulnerability in IBM Security QRadar SIEM 7.2.x before 7.2.7 and QRadar Incident Forensics 7.2.x before 7.2.7 allows remote attackers to read arbitrary files via a crafted URL...

CVE-2016-2968

IBM Security QRadar Incident Forensics 7.2.x before 7.2.7 allows remote attackers to bypass authentication, and obtain sensitive information or modify data, via unspecified vectors...

Authentication flaw

IBM Security QRadar Incident Forensics 7.2.x before 7.2.7 allows remote attackers to bypass authentication, and obtain sensitive information or modify data, via unspecified vectors...

CVE-2016-2968

IBM QRadar Incident Forensics (7.2.x) before 7.2.7 is affected by an improper authentication flaw that allows remote attackers to bypass authentication and gain access to, or modify, sensitive data. The vulnerability is tied to the product’s authentication checks and is exploitable over the netwo...

CVE-2016-2872

IBM QRadar SIEM and QRadar Incident Forensics (7.2.x) are affected by CVE-2016-2872 due to a path traversal in parameters that allows remote attackers to read arbitrary files via a crafted URL. Affected products: QRadar SIEM 7.2.x before 7.2.7 and QRadar Incident Forensics 7.2.x before 7.2.7. Roo...

IBM Security QRadar Incident Forensics Unauthorized Access Vulnerability

IBM Security QRadar Incident Forensics is a suite of security forensic investigation software from IBM. The software supports in-depth forensic investigations of suspected malicious network security incidents, and repair network security vulnerabilities. An unauthorized access vulnerability exist...

IBM QRadar SIEM and Security QRadar Incident Forensics Path Traversal Vulnerabilities

IBM QRadar SIEM and IBM Security QRadar Incident Forensics are both products of IBM USA. The former is a suite of solutions that utilize security intelligence to protect assets and information from advanced threats; the latter is a suite of security forensic investigation software. A path travers...

Complex Code Reuse Attacks: ROPMEMU

ROPMEMU is a framework to analyze, dissect and decompile complex code-reuse attacks Talos has developed ROPMEMU, a framework to analyze, dissect and decompile complex code-reuse attacks. It adopts a set of different techniques to analyze ROP chains and reconstruct their equivalent code in a form...

Facebook Capture The Flag Platform Open Source

If you’ve been to DEF CON or any number of other technical hacker conferences, you’re familiar with Capture the Flag contests. These events pit teams of hackers and researchers against each other in a series of challenges until a winner is determined. Capture the Flag is also a valuable teaching...

Open Source Intelligence and Forensics : Maltego

Maltego is an open source intelligence and forensics application Maltego is a visual link analysis tool that, out the box, comes with open source intelligence OSINT plugins, called transforms. The tool offers real-time data mining and information gathering as well as the representation of this...

Hacker Installed a Secret Backdoor On Facebook Server to Steal Passwords

How to Hack Facebook? That’s the most commonly asked question during this decade. It’s a hacker dream to hack Facebook website for earning bug bounty or for any malicious purpose. Facebook security team recently found that someone, probably a blackhat hacker with malicious intent, has breached in...

FBI Breaks into Terrorist's Encrypted iPhone

A six-week public standoff between Apple and the FBI ended today when the Department of Justice said it had accessed encrypted data stored on the San Bernardino terrorist’s iPhone. The DOJ said in its motion that it no longer needed Apple’s help as mandated in a Feb. 16 court order and asked that...

Israeli Forensic Firm 'Cellebrite' is Helping FBI to Unlock Terrorist's iPhone

Meet the security company that is helping Federal Bureau of Investigation FBI in unlocking San Bernardino shooters’ iPhone: The Israeli mobile forensics firm Cellebrite. Yes, Cellebrite – the provider of mobile forensic software from Israel – is helping the FBI in its attempt to unlock iPhone 5C...