7383 matches found
Malicious code in python-project-wntliogu (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 82bffbaa9f040ea19ff4e9fe678df68b1be71418f80fcd665ecc4f729512df19 Packages that might be part of testing for pentesting / malicious activity / joy, with suspicious activity that does not present any real harm. --- Category:...
Malicious code in test-tool-devdevrl-hackerone (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 9ebec7caa83974b9d99d79e73ba3ba948318120279d3a5b2a97ee7efddc023ef Packages that might be part of testing for pentesting / malicious activity / joy, with suspicious activity that does not present any real harm. --- Category:...
MAL-2024-12267 Malicious code in example-pypi-package-loler1 (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 bb19218b6d780973bde55d613a16a9a637728a4d01e79d570bb3406633f0f639 Packages that might be part of testing for pentesting / malicious activity / joy, with suspicious activity that does not present any real harm. --- Category:...
Malicious code in expkg-am (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 36b7980049911172764372f2e4d93b74e1ff019b9c6f9860be544e91f7f79a28 Packages that might be part of testing for pentesting / malicious activity / joy, with suspicious activity that does not present any real harm. --- Category:...
Malicious code in easyioctl (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 17bb7b2d6ca02c6c077bc420bf4b9136e424f53cf276f61529b19806e5bb5bca Packages that might be part of testing for pentesting / malicious activity / joy, with suspicious activity that does not present any real harm. --- Category:...
Malicious code in azure-projects (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 aa8974ecfad0d7fc824d50482bd3fb2954373e3b2227d1adc2220bc309c258f1 Packages that might be part of testing for pentesting / malicious activity / joy, with suspicious activity that does not present any real harm. --- Category:...
MAL-2024-12276 Malicious code in get-root (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 1cb448108b11968d4fb13e0d12a3c089afa7eaeb7b288d6bc8e022ff1f4dd34a Packages that might be part of testing for pentesting / malicious activity / joy, with suspicious activity that does not present any real harm. --- Category:...
MAL-2024-12281 Malicious code in hack-test (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 bedfa0b9b013ca3de0418ac30c7192adef27902eee78ae8bdf2d74afe652c3e2 Packages that might be part of testing for pentesting / malicious activity / joy, with suspicious activity that does not present any real harm. --- Category:...
Exploit for Improper Encoding or Escaping of Output in Apache Http_Server
CVE-2024-38473 Nuclei Template !imagehttps://github.com/us...
Malicious code in kmvn-ekjvnbwkhjbewv (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 b7bdb5dbe3c34fefec0edf3fec374c428af88d2600073a8db94054e7feb101fa Collects basic information about the system, most probably a pentest or bug bounty. --- Category: PROBABLYPENTEST - Packages looking like typical pentest...
The Facts About Continuous Penetration Testing and Why It's Important
What is Continuous Attack Surface Penetration Testing or CASPT? Continuous Penetration Testing or Continuous Attack Surface Penetration Testing CASPT is an advanced security practice that involves the continuous, automated, and ongoing penetration testing services of an organization's digital...
Memory corruption vulnerabilities in Suricata and FreeRDP
As a cybersecurity company, before we release our products, we perform penetration tests on them to make sure they are secure. Recently, new versions of KasperskyOS-based products were released, namely Kaspersky Thin Client KTC and Kaspersky IoT Secure Gateway KISG. As part of the pre-release...
Exploit for CVE-2024-43035
CVE-2024-43035 - Fonoster LFI Proof of Concept This repositor...
Exploit for Deserialization of Untrusted Data in Givewp
Proof-Of-Concept Code for CVE-2024-8353 This repository conta...
CVE-2022-48870
In the Linux kernel, the following vulnerability has been resolved: tty: fix possible null-ptr-defer in spkttyiorelease Run the following tests on the qemu platform: syzkaller: modprobe speakupaudptr input: Speakup as /devices/virtual/input/input4 initialized device: /dev/synth, node MAJOR 10,...
Approach to mainframe penetration testing on z/OS
Information technology is developing at a rapid pace, with completely new areas emerging, such as DevOps and DevSecOps – and were striving to keep up. However, in some projects, you may encounter systems built on rather outdated principles. Such systems must be approached with care, since a singl...
CVE-2024-43399 Mobile Security Framework (MobSF) has a Zip Slip Vulnerability in .a Static Library Files
Mobile Security Framework MobSF is a pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis. Before 4.0.7, there is a flaw in the Static Libraries analysis section. Specifically, during the extraction of .a extension files, the measure...
CVE-2024-43399 Mobile Security Framework (MobSF) has a Zip Slip Vulnerability in .a Static Library Files
Mobile Security Framework MobSF is a pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis. Before 4.0.7, there is a flaw in the Static Libraries analysis section. Specifically, during the extraction of .a extension files, the measure...
Microsoft Security Update Validation Report August 2024
Microsoft’s August 2024 security updates have passed Citrix testing the updates are listed below. The testing is not all-inclusive; all tests are executed against English only environments and issues may still be found upon implementation. Follow best practices for testing and installing software...
Exploit for Authentication Bypass Using an Alternate Path or Channel in Jetbrains Teamcity
CVE-2024-27198 In JetBrains TeamCity before 2023.11.4 authenti...