NoSQL Exploitation Framework 2.0 - A Framework For NoSQL Scanning and Exploitation

A FrameWork For NoSQL Scanning and Exploitation Framework Authored By Francis Alexander. Added Features: First Ever Tool With Added Support For Mongo,Couch,Redis,H-Base,Cassandra Support For NoSQL WebAPPS Added payload list for JS Injection,Web application Enumeration. Scan Support for...

Optional Windows NTLM SSO authentication changes

Microsoft is releasing an optional security enhancement to NT LAN Manager NTLM, limiting which network resources various clients in the Windows 10 or the Windows Server 2016 operating systems can use NTLM Single Sign OnSSO as an authentication method. When you deploy the new security enhancement...

Radancy: Weak password

It takes ash123456789123456789 as a password,which is not secure.It can be cracked using Dictionary,brute force etc attacks. Impact: If password complexity is not enforced people may tend to put easily guessable password which may be exploitable for a malicious user. Solution-To make it more...

Boozt Fashion AB: Weak Password

Vulnerability- Weak password can set such as ash12345. Link https://www.boozt.com/eu/en/customer/create Steps to reproduce: 1.Add name,email address etc. 2.Add password as ash12345 3.Reenter password as ash12345 4.Password set successfully. This password can easily be cracked using dictionary...

Authentication flaw

An issue was discovered in heinekingmedia StashCat through 1.7.5 for Android, through 0.0.80w for Web, and through 0.0.86 for Desktop. For authentication, the user password is hashed directly with SHA-512 without a salt or another key-derivation mechanism to enable a secure secret for...

CVE-2016-10116

NETGEAR Arlo base stations with firmware 1.7.56178 and earlier, Arlo Q devices with firmware 1.8.05551 and earlier, and Arlo Q Plus devices with firmware 1.8.16094 and earlier use a pattern of adjective, noun, and three-digit number for the customized password, which makes it easier for remote...

CVE-2016-10116

NETGEAR Arlo base stations with firmware 1.7.56178 and earlier, Arlo Q devices with firmware 1.8.05551 and earlier, and Arlo Q Plus devices with firmware 1.8.16094 and earlier use a pattern of adjective, noun, and three-digit number for the customized password, which makes it easier for remote...

Design/Logic Flaw

NETGEAR Arlo base stations with firmware 1.7.56178 and earlier, Arlo Q devices with firmware 1.8.05551 and earlier, and Arlo Q Plus devices with firmware 1.8.16094 and earlier use a pattern of adjective, noun, and three-digit number for the customized password, which makes it easier for remote...

CVE-2016-10116

NETGEAR Arlo base stations with firmware 1.7.56178 and earlier, Arlo Q devices with firmware 1.8.05551 and earlier, and Arlo Q Plus devices with firmware 1.8.16094 and earlier use a pattern of adjective, noun, and three-digit number for the customized password, which makes it easier for remote...

CVE-2016-10116

The vulnerability affects NETGEAR Arlo family devices: Arlo base stations (firmware <= 1.7.5_6178), Arlo Q cameras (firmware <= 1.8.0_5551), and Arlo Q Plus cameras (firmware

Vulnerability analysis cisco analysis tools-vulnerability warning-the black bar safety net

cisco Auditing: A small security audit tools, scanning Cisco router General vulnerabilities, such as default passwords, SNMP community strings and some of the old IOS bugs. CAT-h xx. xx. xx. xx. cisco-global-exploiter:cisco vulnerability penetration testing, there are 14 different vulnerabilities...

Server Side Bruteforce Module: brut3k1t

Server Side Bruteforce Module brut3k1t is a server-side bruteforce module that supports dictionary attacks for several protocols. The current protocols that are complete and in support are: ssh ftp smtp XMPP instagram facebook There will be future implementations of different protocols and servic...

brut3k1t - Server-side Brute-force Module (ssh, ftp, smtp, facebook, and more)

Server-side brute-force module. Brute-force dictionary attack, jk attack that supports multiple protocols and services. 1. Introduction brut3k1t is a server-side bruteforce module that supports dictionary attacks for several protocols. The current protocols that are complete and in support are:...

hacklib - Pentesting, Port Scanning, and Logging in anywhere with Python

Toolkit for hacking enthusiasts using Python. hacklib is a Python module for hacking enthusiasts interested in network security. It is currently in active development. Installation To get hacklib, simply run in command line: pip install hacklib hacklib also has a user interface. To use it, you ca...

HackerOne: Missing rate limit on critical user actions e.g. reset password, change email, disable account.

Hi I found that there are no rate limitations present on actions that require a password inside the account settings. Actions: Paypal email change Account email change Password Change Disable Account this will not be useful to attacker These sensitive actions require additional verification of...

Magnet Networks Tesley CPVA 642 Router - Weak WPA-PSK Passphrase Algorithm

Exploit for hardware platform in category dos / poc Exploit Title: Magnet Networks – Weak WPA-PSK passphrases used in Tesley CPVA 642 Router Google Dork: Date: 01/06/2016 Author: Matt O'Connor Advisory Link: https://www.rgb.ie/magnet-broadband-weak-wpa-psk-algorithm.pdf Version: Category: Remote...

Magnet Networks Tesley CPVA 642 Router - Weak WPA-PSK Passphrase Algorithm

Magnet Networks Tesley CPVA 642 Router - Weak WPA-PSK Passphrase Algorithm Exploit Title: Magnet Networks – Weak WPA-PSK passphrases used in Tesley CPVA 642 Router Google Dork: Date: 01/06/2016 Author: Matt O'Connor Advisory Link: https://www.rgb.ie/magnet-broadband-weak-wpa-psk-algorithm.pdf...

An arbitrary file read vulnerability recorded-vulnerability warning-the black bar safety net

Black box testing Black-box testing found that an interface exist arbitrary file read vulnerability. ! "" The preferred determination is file read or file contains, because filegetcontent“/etc/passwd”include“/etc/passwd”black box view of the performance may be the same. And the file contains is c...

Medium: krb5

Issue Overview: A flaw was found in the OTP kdcpreauth module of MIT Kerberos. A remote attacker could use this flaw to bypass the requirespreauth flag on a client principal and obtain a ciphertext encrypted in the principal's long-term key. This ciphertext could be used to conduct an off-line...

Oracle Linux 7 : krb5 (ELSA-2015-2154)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2015-2154 advisory. - the rebase to krb5 1.13.1 in vers 1.13.1-0 also fixed: - Bug 1144498 'Fix the race condition in the libkrb5 replay cache' - Bug 1163402 'kdb5ldaputil...