Lucene search
+L

158 matches found

pentestit
pentestit
added 2020/08/07 12:42 a.m.54 views

UPDATE: Infection Monkey 1.9.0

Infection Monkey 1.9.0, the open source breach and attack simulation tool was released a few hours ago - just in time for BlackHat/DefCon 2020. My first post about this tool can be found in a post titled the List of Adversary Emulation Tools. Updates include an expanded list of MITRE ATT&CK...

2.2AI score
Exploits0
Wired Threat Level
Wired Threat Level
added 2020/08/06 12:0 p.m.39 views

The Feds Want These Teams to Hack a Satellite—From Home

Meet the hackers who, this weekend, will try to commandeer an actual orbiter as part of a Defcon contest hosted by the Air Force and the Defense Digital Service...

7AI score
Exploits0
ThreatPost
ThreatPost
added 2020/08/05 10:27 p.m.37 views

Black Hat 2020: In a Turnaround, Voting Machine Vendor Embraces Ethical Hackers

Voting machine-maker Election Systems & Software ES&S has formally announced a vulnerability disclosure policy, Wednesday, during a Black Hat USA 2020 session. The move, which comes with the U.S. presidential elections looming in November, shows that voting-machine vendors are beginning to take t...

7AI score
Exploits0References10
Wired Threat Level
Wired Threat Level
added 2020/05/08 10:54 p.m.73 views

Defcon Is Canceled

For real this time. Its sister conference, Black Hat, has also been called off...

1AI score
Exploits0
Kitploit
Kitploit
added 2020/01/18 8:30 p.m.252 views

Scallion - GPU-based Onion Addresses Hash Generator

Scallion lets you create vanity GPG keys and .onion addresses for Tor's hidden services using OpenCL. Scallion runs on Mono tested in Arch Linux and .NET 3.5+ tested on Windows 7 and Server 2008. Scallion is currently in beta stage and under active development. Nevertheless, we feel that it is...

6.8AI score
Exploits0References6
Malwarebytes
Malwarebytes
added 2019/09/30 3:43 p.m.52 views

A week in security (September 23 – 29)

Last week on Labs, we highlighted an Emotet campaign using Snowden’s new book as a lure, discussed how 15,000 webcams are vulnerable to attack, how insurance data security laws skirt political turmoil, and how the new iOS exploit checkm8 allows permanent compromise of iPhones. Other cybersecurity...

Exploits0
Wired Threat Level
Wired Threat Level
added 2019/09/26 6:41 p.m.68 views

Some Voting Machines Still Have Decade-Old Vulnerabilities

The results of the 2019 Defcon Voting Village are in—and they paint an ugly picture for voting machine security...

2.3AI score
Exploits0
Wired Threat Level
Wired Threat Level
added 2019/09/17 11:0 a.m.67 views

The Air Force Will Let Hackers Try to Hijack an Orbiting Satellite

At the Defcon hacking conference next year, the Air Force will bring a satellite for fun and glory...

3.1AI score
Exploits0
Hacker One
Hacker One
added 2019/09/17 7:31 a.m.37 views

U.S. Dept Of Defense: Arbitrary File Reading leads to RCE in the Pulse Secure SSL VPN on the https://██████ (███)

The Pulse Secure SSL VPN was found to be vulnerable to multiple issues, including pre-authentication arbitrary file reading CVE-2019-11510 and post-authentication command injection CVE-2019-11539. These vulnerabilities were discovered and disclosed by security researcher Orange Tsai. The...

10CVSS9.2AI score0.99999EPSS
Exploits38
Talos Blog
Talos Blog
added 2019/08/30 10:20 a.m.40 views

Beers with Talos Ep. #60: Summer camp flashbacks and defining your intel

Beers with Talos BWT Podcast episode No. 60 is now available. Download this episode and subscribe to Beers with Talos: If iTunes and Google Play aren't your thing, click here. Recorded Aug. 16, 2019 — The understatement of the day would be the guys were in some kind of mood when we recorded this...

0.1AI score
Exploits0
Talos Blog
Talos Blog
added 2019/08/22 11:0 a.m.34 views

Threat Source newsletter (Aug. 22)

Newsletter compiled by Jon Munshaw. Welcome to this week’s Threat Source newsletter — the perfect place to get caught up on all things Talos from the past week. A lot of people may think that cyber insurance is this new, unexplored field that carries a lot of questions. But did you know that thes...

7.9AI score
Exploits0
Talos Blog
Talos Blog
added 2019/08/21 12:52 p.m.168 views

Talos DEFCON badge build instructions and use

By Patrick Mullen. We want to thank everyone who stopped by the Cisco Talos booth at DEFCON's Blue Team Village earlier this month. We handed out these badges at our area where we had Snort rules challenges, reverse-Capture the Flag and recruiters ready to answer attendees' career advice question...

Exploits0
0day.today
0day.today
added 2019/08/21 12:0 a.m.53 views

Webmin 1.920 Remote Root Exploit

Exploit for linux platform in category web applications !/usr/bin/perl -w Webmin 1.920 Remote Root Exploit Copyright 2019 c Todor Donev Disclaimer: This or previous programs are for Educational purpose ONLY. Do not use it without permission. The usual disclaimer applies, especially the fact that...

7.1AI score
Exploits0
The Hacker News
The Hacker News
added 2019/08/20 8:40 a.m.3 views

Hackers Planted Backdoor in Webmin, Popular Utility for Linux/Unix Servers

Following the public disclosure of a critical zero-day vulnerability in Webmin last week, the project's maintainers today revealed that the flaw was not actually the result of a coding mistake made by the programmers. Instead, it was secretly planted by an unknown hacker who successfully managed ...

10CVSS8.1AI score0.99766EPSS
Exploits38
Packet Storm
Packet Storm
added 2019/08/20 12:0 a.m.158 views

Webmin 1.920 Remote Root

!/usr/bin/perl -w Webmin 1.920 Remote Root Exploit Copyright 2019 c Todor Donev Disclaimer: This or previous programs are for Educational purpose ONLY. Do not use it without permission. The usual disclaimer applies, especially the fact that Todor Donev is not liable for any damages caused by dire...

7.4AI score
Exploits0
Talos Blog
Talos Blog
added 2019/08/14 1:18 p.m.95 views

Talos Black Hat 2019 flash talk roundup

Talos went wall-to-wall at Hacker Summer Camp, showing up to Black Hat and DEFCON with talks, challenges, advice and education. Over the course of two days at Black Hat, Cisco Security hosted more than 20 talks at our booth, many featuring Talos researchers and analysts. In case you couldn't swin...

7AI score
Exploits0
pentestit
pentestit
added 2019/08/12 9:59 p.m.183 views

UPDATE: Nmap 7.80

PenTestIT RSS Feed Good news guys! The Nmap 7.80 update is now available and this is the Defcon release. We've had to wait for such a long time since the guys behind Nmap were extremely busy improving the Npcap raw packet capturing/sending driver. It now uses modern APIs and is more performant as...

5CVSS0.1AI score0.06081EPSS
Exploits1
0day.today
0day.today
added 2019/08/12 12:0 a.m.29 views

ManageEngine OpManager 12.4x - Privilege Escalation / Remote Command Execution Exploit

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule "ManageEngine OpManager 12.4x - Privilege Escalation / Remote Command Execution", 'Description' = %q This module exploits sqli and command injectio...

0.9AI score
Exploits0
Packet Storm
Packet Storm
added 2019/08/12 12:0 a.m.169 views

ManageEngine Application Manager 14.2 Privilege Escalation / Remote Command Execution

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule "ManageEngine Application Manager v14.2 - Privilege Escalation / Remote Command Execution", 'Description' = %q This module exploits sqli and comman...

1.1AI score
Exploits0
exploitpack
exploitpack
added 2019/08/12 12:0 a.m.25 views

ManageEngine OpManager 12.4x - Privilege Escalation Remote Command Execution (Metasploit)

ManageEngine OpManager 12.4x - Privilege Escalation Remote Command Execution Metasploit This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule "ManageEngine OpManager 12.4x - Privilege Escalation / Remo...

0.9AI score
Exploits0
Rows per page
Query Builder