24 matches found
[SECURITY] Fedora 44 Update: goose-1.23.2-8.fc44
Goose is your on-machine AI agent, capable of automating complex development tasks from start to finish. More than just code suggestions, goose can build entire projects from scratch, write and execute code, debug failures, orchestrate workflows, and interact with external APIs - autonomously...
Terrapack HTTP Module Helpers
This is a Metasploit module that is intended to automate interaction with Terrapack web services. It does not exploit any actual issue but is meant for facilitation of testing...
Malicious code in abaah-putri-tea (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5762ccb3a5ff1dd79564adddd057d8586037b2ce3bd77eb735e3af21a5fc30c4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in tealoveness71 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f817b1cc4e7df576fd5525a2ed2b01b0658d36952e15a4dc981d41ddff0c5ad0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-142717 Malicious code in frontend-rigel-wezen-rigel (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e33794057c9b67622435866807b42bb0f7b61129614c9ca0cd1a14bf2ff9caf2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in lyra-schema-carina-materialize (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 40013831782978aca7fbd4702500904424446812b22f6f8ecebe2c19bf08dbcc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-135783 Malicious code in nina-bika53-sluey (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e74863b2e4c6cfc8cc8032fb0d1df11402558c6b7e50ae2e8aff6288d4ec5807 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in rifqi-donat57-breki (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4770f8d7913c2f015a087c003778c4abda23eac15bd12a5004e7a7842bda8ad7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in profound_elk_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 79759ba5ff1e1fb8adc9aa8598cab3de10cfd19412433c0ab339ee126b5eac84 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in gay_macaw_dumbs (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 46cdb067226dd1559f9704e5c0cdd22d738788d39a6fbb56cd978f68cae260f2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-99709 Malicious code in awful_armadillo_0xrequest (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 69b450899e867ba3ab5517c9d02b9d6349b8c6621b58a243eabaa537343f8ebc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-84714 Malicious code in dono-dradag60-riris (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1041f097f51da87c4a10a6ccd7b1dece4b7fa5be9b1066e24e936786b1fdba5b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in screeching-amethyst-porcupine (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 64a6f021189da762ba9094c1cf250ff8b338c2721062a5c4abe98bbbc3b31f03 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in fadhil-naget96-sumpek (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d51487b6c68b98a700adbfd5eb4671ddb205997a55a5aa04606227c89d69aa33 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-61296 Malicious code in slimy_guppy_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 805a51381738ec4f407bf49ca6a6a705e0e1373a86a32b517ea6f799db803f99 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-60637 Malicious code in ideological_panther_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 116f67b92e383355d328108501aa7f2430ef8a1fc162b30112ab4b37e6b32577 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
The new Spring Boot version validation and upgrade support in Spring Tools
New releases of Spring Boot are being released on a quite frequent schedule and updating your projects to newer versions of Spring Boot is something that many teams and organizations around the globe do as part of their daily work. Sometimes those upgrades are simple and easy, for example for new...
Investigating a unique “form” of email delivery for IcedID malware
Microsoft threat analysts have been tracking activity where contact forms published on websites are abused to deliver malicious links to enterprises using emails with fake legal threats. The emails instruct recipients to click a link to review supposed evidence behind their allegations, but are...
JShielder v2.4 - Hardening Script For Linux Servers/ Secure LAMP-LEMP Deployer/ CIS Benchmark G
JSHielder is an Open Source Bash Script developed to help SysAdmin and developers secure there Linux Servers in which they will be deploying any web application or services. This tool automates the process of installing all the necessary packages to host a web application and Hardening a Linux...
Pentest-Machine - Automates Some Pentest Jobs Via Nmap Xml File
Automates some pentesting work via an nmap XML file. As soon as each command finishes it writes its output to the terminal and the files in output-by-service/ and output-by-host/. Runs fast-returning commands first. Please send me protocols/commands/options that you would like to see included. HT...