EUVD-2025-147815

Malicious code in tehah-miss-brew npm...

EUVD-2025-147859

Malicious code in tehah-coff-brew npm...

EUVD-2025-147862

Malicious code in tehah-c-brew npm...

EUVD-2025-147858

Malicious code in tehah-coffee-brew npm...

EUVD-2025-147860

Malicious code in tehah-cof-brew npm...

CVE-2024-42381

os/linux/elf.rb in Homebrew brew before 4.2.20 uses ldd to load ELF files obtained from untrusted sources, which allows attackers to achieve code execution via an ELF file with a custom .interp section. NOTE: this code execution would occur during an un-sandboxed binary relocation phase, which...

CVE-2024-42381

os/linux/elf.rb in Homebrew brew before 4.2.20 uses ldd to load ELF files obtained from untrusted sources, which allows attackers to achieve code execution via an ELF file with a custom .interp section. NOTE: this code execution would occur during an un-sandboxed binary relocation phase, which...

WordPress Inbound Brew Plugin <= 1.9.4 is vulnerable to Cross Site Scripting (XSS)

Software Inbound Brew Type Plugin Vulnerable versions = 1.9.4 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID cd2aea3ded57 Credits Rafie Muhammad Patchstack Required...

Kubeaudit - Tool To Audit Your Kubernetes Clusters Against Common Security Controls

kubeaudit is a command line tool and a Go package to audit Kubernetes clusters for various different security concerns, such as: run as non-root use a read-only root filesystem drop scary capabilities, don't add new ones don't run privileged and more! tldr.kubeaudit makes sure you deploy secure...

Trufflehog - Find Credentials All Over The Place

TruffleHog Find leaked credentials. Join The Slack Have questions? Feedback? Jump in slack and hang out with us https://join.slack.com/t/trufflehog-community/sharedinvite/zt-pw2qbi43-Aa86hkiimstfdKH9UCpPzQ Demo docker run -it -v "$PWD:/pwd" trufflesecurity/trufflehog:latest github...

BrewStillery (>=1.0.0 <=6.0.2), Inflector (>=0.1.1 <=0.11.2) +3106 more potentially affected by unknown CVE via thread_local (>=0.2.7 <=1.0.1)

threadlocal CARGO version =0.2.7, =1.0.0, =0.1.1, =0.7.0, =0.1.0, =0.0.6, =0.1.1, =0.1.4, =0.1.0, =0.2.1, =0.2.3 - addr2line =0.6.0 and more Source cves: unknown CVE Source advisory: OSV:GHSA-9HPW-R23R-XGM5...

ApacheLogAnonymizer (>=0.1.0 <=0.1.1), BrewStillery (>=1.0.0 <=6.0.2) +3237 more potentially affected by CVE-2022-24713 via regex (>=0.1.58 <=1.5.4)

regex CARGO version =0.1.58, =0.1.0, =1.0.0, =0.1.1, =0.7.0, =0.10.0, =0.1.0, =0.0.6, =0.1.1, =0.1.4, =0.1.0, =0.2.0 and more Source cves: CVE-2022-24713 Source advisory: OSV:RUSTSEC-2022-0013...

WordPress Inbound Brew plugin <= 1.9.4 - Sensitive Information Disclosure vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress Inbound Brew plugin versions = 1.9.4. Solution No patched version available...

WordPress Inbound Brew plugin <= 1.9.4 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress Inbound Brew plugin versions = 1.9.4. Solution No patched version available...

brew-js (>=0.1.0 <=0.1.8), buildr (>=0.2.0 <=0.8.7) +9 more potentially affected by CVE-2020-7604 via pulverizr (=0.7.0)

pulverizr NPM version =0.7.0 is affected by a known vulnerability. The following packages have a transitive dependency on pulverizr and may be impacted: - brew-js =0.1.0, =0.2.0, =0.1.0, =0.0.1, =0.0.2, =1.0.0, =0.1.0, =0.0.11, =0.0.12 Source cves: CVE-2020-7604 Source advisory:...

Tfsec - Security Scanner For Your Terraform Code

tfsec uses static analysis of your terraform templates to spot potential security issues. Now with terraform v0.12+ support. Example Output Installation Install with brew/linuxbrew: brew install tfsec Install with Chocolatey: choco install tfsec You can also grab the binary for your system from t...

Install Go tools from modules with brew-gomod

As of Go 1.14, modules are ready for production. Compared to GOPATH, they make it much easier to keep workspaces clean by managing dependencies out of sight, and by letting you clone projects anywhere. However, there is no good way to simply install a Go binary from source, yet. The core reason f...

brew-js (>=0.1.0 <=0.1.8), buildr (>=0.2.0 <=0.8.7) +9 more potentially affected by CVE-2020-7604 via pulverizr (=0.7.0)

pulverizr NPM version =0.7.0 is affected by a known vulnerability. The following packages have a transitive dependency on pulverizr and may be impacted: - brew-js =0.1.0, =0.2.0, =0.1.0, =0.0.1, =0.0.2, =1.0.0, =0.1.0, =0.0.11, =0.0.12 Source cves: CVE-2020-7604 Source advisory:...

Unicorn-Bios - Basic BIOS Emulator For Unicorn Engine

Basic BIOS emulator/debugger for Unicorn Engine. Written to debug the XEOS Operating System boot sequence. Usage: Usage: unicorn-bios OPTIONS BOOTIMG Options: --help / -h: Displays help. --memory / -m: The amount of memory to allocate for the virtual machine in megabytes. Defaults to 64MB, minimu...

URLextractor - Information Gathering and Website Reconnaissance

Informationgathering & website reconnaissance Usage: ./extractor http://www.hackthissite.org/ Tips: Colorex: put colors to the ouput pip install colorex and use it like ./extractor http://www.hackthissite.org/ | colorex -g "INFO" -r "ALERT" Tldextract: is used by dnsenumeration function pip insta...