Cb Customer Spotlight Series: Q&A with Integral’s Sean McFeely

Featuring Sean McFeely, Sr. Information Analyst at Valvoline’s Integral Defense This year at Cb Connect 2018, we had our first ever Developer Day to recognize our vibrant partner and developer ecosystem. We had an amazing group of 100 developers attend, culminating in a hackathon. Sean McFeely, S...

Datasploit - An OSINT Framework To Perform Various Recon Techniques On Companies, People, Phone Number, Bitcoin Addresses, Etc., Aggregate All The Raw Data, And Give Data In Multiple Formats

Overview of the tool: Performs OSINT on a domain/email/username/phone and find out information from different sources. Correlate and collaborate the results, show them in a consolidated manner. Tries to find out credentials, api-keys, tokens, subdomains, domain history, legacy portals, etc. relat...

Msvod Cms SQL Injection Vulnerability

Msvod Cms is a content management system CMS for video-on-demand websites. The system mainly provides services such as video-on-demand and video aggregation website building. A SQL injection vulnerability exists in Msvod Cms version 10. A remote attacker can exploit this vulnerability to execute...

Vulnerability Databases: Classification and Registry

What publicly available Vulnerability Databases do we have? Well, I can only say that there are a lot of them and they are pretty different. Here I make an attempt to classify them. It's quite an ungrateful task. No matter how hard you try, the final result will be rather inaccurate and incomplet...

Cisco ASR 5000 Series Router Denial of Service Vulnerability

The Cisco Aggregation Services Router ASR 5000 Series Routers and Virtualized Packet Core VPC System Software are both products of Cisco, Inc. The Cisco Aggregation Services Router ASR 5000 Series Routers are a 5000 series of secure router appliances.The Virtualized Packet Core VPC System Softwar...

CVE-2018-0273

A vulnerability in the IPsec Manager of Cisco StarOS for Cisco Aggregation Services Router ASR 5000 Series Routers and Virtualized Packet Core VPC System Software could allow an unauthenticated, remote attacker to terminate all active IPsec VPN tunnels and prevent new tunnels from being...

CVE-2018-0239

A vulnerability in the egress packet processing functionality of the Cisco StarOS operating system for Cisco Aggregation Services Router ASR 5700 Series devices and Virtualized Packet Core VPC System Software could allow an unauthenticated, remote attacker to cause an interface on the device to...

Cisco StarOS IPsec Manager Denial of Service Vulnerability

A vulnerability in the IPsec Manager of Cisco StarOS for Cisco Aggregation Services Router ASR 5000 Series Routers and Virtualized Packet Core VPC System Software could allow an unauthenticated, remote attacker to terminate all active IPsec VPN tunnels and prevent new tunnels from being...

CVE-2018-0224

A vulnerability in the CLI of the Cisco StarOS operating system for Cisco ASR 5000 Series Aggregation Services Routers could allow an authenticated, local attacker to execute arbitrary commands with root privileges on an affected operating system. The vulnerability is due to insufficient validati...

Arista EOS Mlag agent denial of service vulnerability

Arista EOS is a suite of modular operating systems from Arista Networks, Inc. that provide the foundation platform for next-generation data center and cloud networking business requirements. mlag agent is one of the Mlag agents. A security vulnerability exists in the Mlag agent in Arista EOS...

CVE-2018-0122

A vulnerability in the CLI of the Cisco StarOS operating system for Cisco ASR 5000 Series Aggregation Services Routers could allow an authenticated, local attacker to overwrite system files that are stored in the flash memory of an affected system. The vulnerability is due to insufficient...

Cisco StarOS File Overwrite Vulnerability

Cisco ASR 5000 Series Aggregation Services Routers is a 5000 Series security router appliance from Cisco USA. the Cisco StarOS operating system is a set of virtualized operating systems that run on them. A file overwrite vulnerability exists in the CLI of the Cisco StarOS operating system in the...

Serverless, Low Cost, Threat Intel Aggregation: ElasticIntel

ElasticIntel is serverless, low cost, threat intel aggregation for enterprise or personal use, backed by ElasticSearch. It is an alternative to expensive threat intel aggregation platforms which ingest the same data feeds you could get for free. ElasticIntel is designed to provide a central,...

Cisco Aggregation Services Router 9000 Series Cisco IOS XR Software Denial of Service Vulnerability

Cisco Aggregation Services Router ASR 9000 Series is the 9000 series of wireless controller products from Cisco, Inc.Cisco IOS XR Software is one of the modular, distributed network operating systems. A denial of service vulnerability exists in the IPv6 subsystem of Cisco IOS XR Software version...

CVE-2018-0136

CVE-2018-0136 affects Cisco IOS XR Software Release 5.3.4 on ASR 9000 Series with Trident-based line cards configured for IPv6. The issue is a DoS caused by improper handling of IPv6 packets with a fragment header extension, allowing an unauthenticated remote attacker to trigger a reload of one o...

StoreFront 3.x MMC Crashes When Editing Multi-Site Aggregation

MMC crashes when trying to remove controller from Multi-Site Aggregation Configuration. This only happens when trying make changes on Multi site aggregation Configuration...

OSXAuditor - Free Mac OS X Computer Forensics Tool

OS X Auditor is a free Mac OS X computer forensics tool. OS X Auditor parses and hashes the following artifacts on the running system or a copy of a system you want to analyze: the kernel extensions the system agents and daemons the third party's agents and daemons the old and deprecated system a...

Cisco ASR 1000 Unauthorized Access Vulnerability

The Cisco ASR 1000 is a system router offered by Cisco. The Cisco ASR 1000 has a security vulnerability in the motherboard console port that allows an attacker to exploit the vulnerability by submitting a special request for unauthorized access to the system...

Input validation

A vulnerability in the USB-modem code of Cisco IOS XE Software running on Cisco ASR 920 Series Aggregation Services Routers could allow an authenticated, local attacker to overwrite arbitrary files on the underlying operating system of an affected device. The vulnerability is due to improper inpu...

CVE-2017-6795

Cisco IOS XE Software on Cisco ASR 920 Series Routers is affected by CVE-2017-6795 due to improper input validation in the USB-modem code (platform usb modem CLI command). A local, authenticated attacker could exploit this to overwrite arbitrary files on the device’s underlying operating system. ...