47 matches found
EUVD-2020-17371
Malware in sbrugna...
EUVD-2020-0111
Malware in sbrugna...
Uncovering Black-Hat SEO Based Fake E-Commerce Scam Groups from Their Redirectors and Websites
While law enforcements agencies and cybercrime researchers are working hard, fake E-commerce scam is still a big threat to Internet users. One of the major techniques to victimize users is luring them by black-hat search-engine-optimization SEO; making search engines display their lure pages as i...
CVE-2020-12889
MISP MISP-maltego 1.4.4 incorrectly shares a MISP connection across users in a remote-transform use case...
CVE-2020-24656
Maltego before 4.2.12 allows XXE attacks...
Holehe - Tool To Check If The Mail Is Used On Different Sites Like Twitter, Instagram And Will Retrieve Information On Sites With The Forgotten Password Function
Holehe Online Version Summary Efficiently finding registered accounts from emails. Holehe checks if an email is attached to an account on sites like twitter, instagram, imgur and more than 120 others. Retrieves information using the forgotten password function. Does not alert the target email. Ru...
MAL-2023-579 Malicious code in maltego_3_license_key_fixed_nizvp (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e5d87e3a55c68205a474a1acec8f52a2484e99ea5b19c1cd13e7d7a54a4a6794 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
GHSA-FJ35-M94R-9H4C Maltego incorrectly shares a MISP connection across users in a remote-transform use case
MISP MISP-maltego 1.4.4 incorrectly shares a MISP connection across users in a remote-transform use case. Version 1.4.5 contains a patch...
Maltego incorrectly shares a MISP connection across users in a remote-transform use case
MISP MISP-maltego 1.4.4 incorrectly shares a MISP connection across users in a remote-transform use case. Version 1.4.5 contains a patch...
in misp/misp-maltego
Description misconfigurations of nginx lead to a path traversal vulnerability. Proof of Concept Do a request to /munin../ can get any file under /var/cache/munin/ Impact An attacker can access files on the web server to which they should not have access...
Strategies, tools, and frameworks for building an effective threat intelligence team
How to think about building a threat intelligence program The security community is continuously changing, growing, and learning from each other to better position the world against cyber threats. In the latest Voice of the Community blog series post, Microsoft Product Marketing Manager Natalia...
Strategies, tools, and frameworks for building an effective threat intelligence team
How to think about building a threat intelligence program The security community is continuously changing, growing, and learning from each other to better position the world against cyber threats. In the latest Voice of the Community blog series post, Microsoft Product Marketing Manager Natalia...
Strategies, tools, and frameworks for building an effective threat intelligence team
How to think about building a threat intelligence program The security community is continuously changing, growing, and learning from each other to better position the world against cyber threats. In the latest Voice of the Community blog series post, Microsoft Product Marketing Manager Natalia...
CVE-2020-24656
Maltego before 4.2.12 allows XXE attacks...
CVE-2020-24656
Maltego before 4.2.12 allows XXE attacks...
Design/Logic Flaw
Maltego before 4.2.12 allows XXE attacks...
CVE-2020-24656
Maltego before 4.2.12 allows XXE attacks...
CVE-2020-24656
CVE-2020-24656 affects Maltego prior to version 4.2.12, with the underlying issue described as an XML External Entity (XXE) vulnerability. The connected documents confirm the affected product and the vulnerability class, but do not provide exploitation details or a published patch/version fix in ...
Zomato: The vulnerabilities found were XSS, Public disclosure, Network enumeration via CSRF, DLL hijacking.
Summary IP found using ping command- 52.77.124.190 Then I used nmap tool to find the indepth information. I used burp suite and DNS scanner but it was not fruitful. Then I explored some GitHub repositories to perform thorough web-application testing. Using Aquatone I found some hidden domains. Th...
Unspecified Vulnerability in MISP MISP-maltego
MISP is an open source software solution. The product is used to collect, store, distribute, and share cybersecurity metrics and has features such as threat cybersecurity event analysis and malware analysis.MISP-maltego is a Maltego MISP integration tool that enables you to view the data in your...