700 matches found
EUVD-2003-0144
Malware in sbrugna...
EUVD-2021-10781
Malware in sbrugna...
EUVD-2025-4193
Malicious code in bioql PyPI...
EUVD-2022-15243
Malicious code in bioql PyPI...
EUVD-2024-32611
Malicious code in bioql PyPI...
EUVD-2022-41351
Malicious code in bioql PyPI...
EUVD-2022-26963
Malicious code in bioql PyPI...
EUVD-2025-27849
Malicious code in bioql PyPI...
EUVD-2025-19751
Malicious code in bioql PyPI...
JustTryHarder
This is a cheat sheet repository for the PWK Pentester's Workbench course and the OSCP Offensive Security Certified Professional exam. It is inspired by PayloadAllTheThings. The repository contains various tools, scripts, and resources for penetration testing and exploitation. The repository...
K8tools
It is an offensive tool for web application exploitation. The repository, K8tools, contains a collection of tools for various purposes, including internal penetration, privilege escalation, remote overflow, vulnerability exploitation, scanning, password cracking, and evasion. The primary focus is...
EternalBlueExploitation
Eternal Blue Exploitation Description For this project, I expl...
CVE-2025-35114
Agiloft Release 28 contains several accounts with default credentials that could allow local privilege escalation. The password hash is known for at least one of the accounts and the credentials could be cracked offline. Users should upgrade to Agiloft Release 30...
CVE-2025-35114 Agiloft local privilege escalation via default credentials
Agiloft Release 28 contains several accounts with default credentials that could allow local privilege escalation. The password hash is known for at least one of the accounts and the credentials could be cracked offline. Users should upgrade to Agiloft Release 30...
CVE-2025-35114
CVE-2025-35114 affects Agiloft Release 28, where several accounts use default credentials enabling local privilege escalation. The vulnerability arises from accounts with known password hashes that could be cracked offline. Mitigation suggested in multiple sources is upgrading to Agiloft Release ...
Hashcat Advanced Password Recovery 7.1.2 Source Code
Hashcat is an advanced GPU hash cracking utility that includes the World's fastest md5crypt, phpass, mscash2 and WPA / WPA2 cracker. It also has the first and only GPGPU-based rule engine, focuses on highly iterated modern hashes, single dictionary-based attacks, and more. This is the source code...
Weak Passwords and Compromised Accounts: Key Findings from the Blue Report 2025
As security professionals, it's easy to get caught up in a race to counter the latest advanced adversary techniques. Yet the most impactful attacksoften aren't from cutting-edge exploits, but from cracked credentials and compromised accounts. Despite widespread awareness of this threat vector,...
IBM Informix Dynamic Server 安全漏洞
IBM Informix Dynamic Server IDS is a scalable object-relational database server from International Business Machines IBM that provides clustered data centers with features such as continuous data availability and disaster recovery. A security vulnerability exists in IBM Informix Dynamic Server...
CVE-2025-30125
An issue was discovered on Marbella KR8s Dashcam FF 2.0.8 devices. All dashcams were shipped with the same default credentials of 12345678, which creates an insecure-by-default condition. For users who change their passwords, it's limited to 8 characters. These short passwords can be cracked in 8...
Use of Weak Hash
Overview Affected versions of this package are vulnerable to Use of Weak Hash via the hmailserver/installation/hMailServerInnoExtension.iss and hMailServer.ini components. A local attacker can access sensitive information by reading these files to obtain an administrator password and running it...