271 matches found
MAL-2023-7316 Malicious code in tposintsplitintel (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx 1cd78eaf083f3c11603c98937b67e8f399143cbe1983b14c871d2b1cca5a1b29 EsqueleSquad group published nearly 6000 malicious PyPi and NPM packages, executing spyware and information-stealing malware...
MAL-2023-4182 Malicious code in liblibintgame (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx 1b673a7d4ff1a088228e9a8c3ff0309f27de7c6315988b9b7b604dfe7a5a8ca3 EsqueleSquad group published nearly 6000 malicious PyPi and NPM packages, executing spyware and information-stealing malware...
MAL-2023-4271 Malicious code in libosintmask (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx 26b6d3ceaa3143264fa54dc1691c3060e63010972e9466279f4d80af025e20d9 EsqueleSquad group published nearly 6000 malicious PyPi and NPM packages, executing spyware and information-stealing malware...
MAL-2023-3183 Malicious code in esqpeppost (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx e49d077567a7e5f41d020d46952690f8da96207e8cc5d16a4dba900190e2ee96 EsqueleSquad group published nearly 6000 malicious PyPi and NPM packages, executing spyware and information-stealing malware...
MAL-2023-465 Malicious code in gateleen-hook-js (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware bd5573ea2c726699d52d6500b6c16ed2c5f5650d90de8c3f4f5325a1c07d484a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Login bruteforce
Description According to the fix of the previous report, the login page has a rate limit mechanism to block the user’s IP when many attempts are made. The endpoint, for example, /v2/console/status only returns the content when who made the request has the correct rights. However, this request is...
MAL-2022-2400 Malicious code in deere-map-features (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ecf01480d483812d03ead6ec633c050d070eb0b88e31cedfdf174cf90012e914 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-6262 Malicious code in spotify-transport (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f8e24e04ec9c9fa1918b8a0fe048dd7a7a8224e0f65a576271d007153e5b99f9 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-3272 Malicious code in gap-r (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e263e9376a1da867b496d527ea61914dca310bce0b7621229f5ee2d3c5038800 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-4441 Malicious code in lznfjbhurpjsqmr (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 84cad4351952e62a1d1e3e8fcafb3141058e13fdecfb1f62d7926c0e83bb37bd Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
A Modern Hypervisor as a Basis for a Sandbox
In the field of information security, sandboxes are used to isolate an insecure external environment from a secure internal environment or vice versa, to protect against the exploitation of vulnerabilities, and to analyze malicious code. At Kaspersky Lab, we have several sandboxes, including an...
Mobile Security Framework: MobSF
Mobile Security Framework is an intelligent, all-in-one open source mobile application Android/iOS automated pen-testing framework capable of performing static and dynamic analysis. We’ve been depending on multiple tools to carry out reversing, decoding, debugging, code review, and pen-test and...
CVE-2016-7567
Buffer overflow in the SLPFoldWhiteSpace function in common/slpcompare.c in OpenSLP 2.0 allows remote attackers to have unspecified impact via a crafted string...
SSMA - Simple Static Malware Analyzer
SSMA is a simple malware analyzer written in Python 3. Features: Searches for websites, e-mail addresses, IP addresses in the strings of the file. Looks for Windows functions commonly used by malware. Get results from VirusTotal and/or upload files. Malware detection based on Yara-rules -...
Darwin Streaming Server <= 4.1.2 (parse_xml.cgi) Code Execution Exploit
No description provided by source. !/usr/bin/perl QTTS REMOTE ROOT exploit by FOXMULDER [email protected] FOXMULDER PRESENTS foxmulderatabv.bg DarwinOSX4.x? 5.X QTSSQuick Time Stream Server 3.X The bug in Darwin 5.X with unpatched QTSS in parsexml.cgi which lead to remote root compromise: $filenam...
SSL Client Error Code Detection
Binary data 7117.pasl...
Threat Outbreak Alert: Fake Payment Transfer Notice Email Messages on March 31, 2014
Medium Alert ID: 33578 First Published: 2014 March 31 15:39 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a payment transfer cancellation notice for the recipient. The text in the email message attempts to convince the...
MODBUS/TCP 'Force Listen Mode' Function Code Detection
Binary data 7101.pasl...
Threat Outbreak Alert: Fake Telegraphic Transfer Payment Notification Email Messages on January 14, 2014
Medium Alert ID: 32436 First Published: 2014 January 15 14:50 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a Telegraphic Transfer TT payment notification for the recipient. The text in the email message attempts to...
[PyMal] The Malware Analysis Framework
PyMal is a python based interactive Malware Analysis Framework. It is built on the top of three pure python programes Pefile, Pydbg and Volatility. The main aim of the project is to combine all the Malware Analysis related tools into a single interface for rapid analysis. PyMal have several wrapp...