Lucene search
K

57 matches found

Information Security Automation
Information Security Automation
added 2021/07/04 3:21 p.m.113 views

Vulristics HTML Report Update: Table for Products, Table for Vuln. Types and “Prevalence”

Hi guys! I was on vacation this week. So I had time to work on my Vulristics project. For those who dont know, this is a framework for prioritizing known CVE vulnerabilities. I was mainly grooming the HTML report. I added a logo at the top, set a max width for the report, added a timestamp when t...

7AI score
Exploits0
GithubExploit
GithubExploit
added 2020/02/21 4:34 a.m.10 views

Exploit for CVE-2020-1938

CVE-2020-1938 Suricata 检测规则 suricata CNVD-2020-10487...

9.8CVSS6.9AI score0.9927EPSS
Exploits45
GithubExploit
GithubExploit
added 2019/12/15 8:52 a.m.109 views

Exploit for Improper Input Validation in Nema Dicom_Standard

Bad-DICOM PoC of my handcrafted CVE-2019-11687's exploit tool...

9.3CVSS8.1AI score0.02751EPSS
Exploits2
myhack58
myhack58
added 2019/05/25 12:0 a.m.1459 views

CVE-2019-0708 vulnerability impact analysis and the use of a variety of rules to detect method-vulnerability warning-the black bar safety net

Recently, with the CVE-2019-0708 vulnerability of the publication, most of the security community will be the loopholes as the highest priority to addressing the vulnerability. Mentioned bug fixes, it is difficult not to associate this front WannaCry and NotPetya disastrous consequences. And...

10CVSS9.7AI score0.99999EPSS
Exploits123
Carbon Black Blog
Carbon Black Blog
added 2019/05/13 7:8 p.m.70 views

Evolving Threat Hunting with the MITRE ATT&CK Framework at CB Connect

Evolving Threat Hunting with the MITRE ATT&CK Framework – Join me at CB Connect San Diego! There are a number of techniques you can use to uncover security gaps leveraging the MITRE ATT&CK matrix. At CB Connect San Diego, our annual user conference June 4-5th, I will speaking on “How to Evolve Yo...

Exploits0
Wallarm Lab
Wallarm Lab
added 2018/08/21 4:58 p.m.46 views

What’s New in Wallarm Node 2.10

We have recently released a new version of Wallarm Node. After your next update window, you will see some new features your DevOps team is certain to like. Firstly, your monitoring and reporting got a lot livelier. Starting with this version in addition to JSON format metrics can be exported in...

0.3AI score
Exploits0
n0where
n0where
added 2018/02/03 2:32 a.m.145 views

Generic Signature Format for SIEM Systems: Sigma

Sigma is a generic and open signature format that allows you to describe relevant log events in a straight forward manner. The rule format is very flexible, easy to write and applicable to any type of log file. The main purpose of this project is to provide a structured form in which researchers ...

7.4AI score
Exploits0References3
Ivan 'd0znpp' Novikov
Ivan 'd0znpp' Novikov
added 2017/10/24 1:35 a.m.1008 views

The best Burp plugin I’ve ever seen

Wanted to share with you what IMHO is the most promising Burp Suite plugin that just might transform it to the best penetration tool ever. It’s the Vulners plugin, available for free at github . If you are lazy like me, a build is available here: Installation It’s easy if you know how to deal wit...

5CVSS7.4AI score0.13252EPSS
Exploits0
Prion
Prion
added 2016/11/19 3:3 a.m.23 views

Design/Logic Flaw

A vulnerability in the FTP Representational State Transfer Application Programming Interface REST API for Cisco Firepower System Software could allow an unauthenticated, remote attacker to bypass FTP malware detection rules and download malware over an FTP connection. Cisco Firepower System...

5CVSS7.2AI score0.01553EPSS
Exploits0References2Affected Software1
OpenVAS
OpenVAS
added 2016/11/17 12:0 a.m.31 views

Cisco Firepower System Software FTP Malware Vulnerability

A vulnerability in the FTP Representational State Transfer Application Programming Interface REST API for Cisco Firepower System Software could allow an unauthenticated, remote attacker to bypass FTP malware detection rules and download malware over an FTP connection. SPDX-FileCopyrightText: 2016...

7.5CVSS7.6AI score0.01553EPSS
Exploits0References1
CERT
CERT
added 2016/02/11 12:0 a.m.110 views

Cisco Adaptive Security Appliance (ASA) IKEv1 and IKEv2 contains a buffer overflow vulnerability

Overview Cisco Adaptive Security Appliance ASA Internet Key Exchange versions 1 and 2 IKEv1 and IKEv2 contains a buffer overflow vulnerability that may be leveraged to gain remote code execution. Description CWE-119: Improper Restriction of Operations within the Bound of a Memory Buffer -...

10CVSS10AI score0.77462EPSS
Exploits4References4
Cisco
Cisco
added 2015/12/17 9:30 a.m.41 views

Cisco FireSIGHT Management Center SSL HTTP Attack Detection Vulnerability

A vulnerability in HTTP attack detection within decrypted SSL traffic of Cisco FireSIGHT Management Center could allow an unauthenticated, remote attacker to bypass HTTP attack detection. The traffic is SSL and the application is configured to decrypt the SSL connection and detect HTTP-based...

5CVSS6.5AI score0.01733EPSS
Exploits0References1
ThreatPost
ThreatPost
added 2014/04/11 7:37 a.m.7 views

BlackBerry, Cisco Products Vulnerable to OpenSSL Bug

Vendors are continuing to check their products for potential effects from the OpenSSL heartbleed vulnerability, and both Cisco and BlackBerry have found that a variety of their products contain a vulnerable version of the software. BlackBerry on Thursday said that several of its software products...

0.4AI score
Exploits0References4
OpenVAS
OpenVAS
added 2009/10/13 12:0 a.m.15 views

Mandrake Security Advisory MDVSA-2009:259 (snort)

The remote host is missing an update to snort announced via advisory MDVSA-2009:259. OpenVAS Vulnerability Test $Id: mdksa2009259.nasl 6573 2017-07-06 13:10:50Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:259 snort Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...

6.8CVSS0.4AI score0.02269EPSS
Exploits1
UbuntuCve
UbuntuCve
added 2008/05/22 1:9 p.m.31 views

CVE-2008-1804

preprocessors/sppfrag3.c in Sourcefire Snort before 2.8.1 does not properly identify packet fragments that have dissimilar TTL values, which allows remote attackers to bypass detection rules by using a different TTL for each fragment...

6.8CVSS5.9AI score0.02269EPSS
Exploits1References1
Cvelist
Cvelist
added 2008/05/22 10:0 a.m.29 views

CVE-2008-1804

preprocessors/sppfrag3.c in Sourcefire Snort before 2.8.1 does not properly identify packet fragments that have dissimilar TTL values, which allows remote attackers to bypass detection rules by using a different TTL for each fragment...

6.3AI score0.02269EPSS
Exploits1References14
Debian CVE
Debian CVE
added 2008/05/22 10:0 a.m.75 views

CVE-2008-1804

Removed by vendor...

6.8CVSS6.7AI score0.02269EPSS
Exploits1
Rows per page
Query Builder