21 matches found
MAL-2026-841 Malicious code in lyroxpy (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 a9016ac99840c4d68028c7b724382974154c9bf75b410da9c6b4a75ff6d20b1f The package contains an embedded archive with an executable. When importing the module, the embedded archive is run as a module. Code inside extracts the...
EUVD-2005-3473
Malware in sbrugna...
EUVD-2006-0345
Malware in sbrugna...
EUVD-2005-4674
Malware in sbrugna...
Nidhogg - All-In-One Simple To Use Rootkit For Red Teams
Nidhogg is a multi-functional rootkit for red teams. The goal of Nidhogg is to provide an all-in-one and easy-to-use rootkit with multiple helpful functionalities for red team engagements that can be integrated with your C2 framework via a single header file with simple usage, you can see an...
Security Researcher Hides ZIP, MP3 Files Inside PNG Files on Twitter
A security researcher has discovered a novel steganography technique for hiding data inside a Portable Network Graphics .PNG image file posted on Twitter, a tactic that could be exploited by threat actors to hide malicious activity. Researcher David Buchanan heralded his discovery on Twitter...
VulnCheck KEV: CVE-2019-6109
An issue was discovered in OpenSSH 7.9. Due to missing character encoding in the progress display, a malicious server or Man-in-The-Middle attacker can employ crafted object names to manipulate the client output, e.g., by using ANSI control codes to hide additional files being transferred. This...
CVE-2019-6110
In OpenSSH 7.9, due to accepting and displaying arbitrary stderr output from the server, a malicious server or Man-in-The-Middle attacker can manipulate the client output, for example to use ANSI control codes to hide additional files being transferred...
Microsoft Windows 2000/NT 4 NTFS File Hiding Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/3989/info There exists a condition in Microsoft Windows operating systems using NTFS that may allow for files to be hidden. Though the NTFS filesystem allows for a 32000 character path, Microsoft Windows operating systems...
[Azazel] Userland Anti-debugging & Anti-detection Rootkit
Azazel is a userland rootkit based off of the original LDPRELOAD technique from Jynx rootkit. It is more robust and has additional features, and focuses heavily around anti-debugging and anti-detection. Features Anti-debugging Avoids unhide, lsof, ps, ldd detection Hides files and directories Hid...
Mandriva Linux Security Advisory : bash (MDVSA-2010:004)
A vulnerability have been discovered in Mandriva bash package, which could allow a malicious user to hide files from the ls command, or garble its output by crafting files or directories which contain special characters or escape sequences CVE-2010-0002. This update fixes the issue by disabling t...
Use ntfs streams to hide files-the vulnerability warning-the black bar safety net
Everyone put on an ntfs partition the files are copied to non-ntfs partition, may occasionally encounter the following situations, the system prompts will have data lost, what is this? ! Actually the ntfs file system is introduced into the"flow"of this concept, each file can have multiple streams...
Breakthrough icesword implementation file is hidden-a vulnerability warning-the black bar safety net
Estimated want in icesword hidden under the files of people who have a lot of it. Today I introduce a method. First introduce the icesword is how to find the file. The basic principle is to construct a irp out, and then directly IoCallDriver to send to the fsd. But icesword to do more work. 它 直接 ...
Clever use of WinRAR will be confidential camouflage was imperceptible-vulnerability warning-the black bar safety net
WinRAR is everyone commonly used compression/decompression program, in addition to this we also often put WinRAR as encryption software to use, in the compressed file when the Set password can protect the data of the object. But specifically for WinRAR password hack software very much, although...
CVE-2006-0338
Multiple F-Secure Anti-Virus products and versions for Windows and Linux, including Anti-Virus for Windows Servers 5.52 and earlier, Internet Security 2004, 2005 and 2006, and Anti-Virus for Linux Servers 4.64 and earlier, allow remote attackers to hide arbitrary files and data via malformed 1 RA...
CVE-2006-0338
The CVE-2006-0338 entry applies to multiple F-Secure Anti-Virus products on Windows and Linux (Windows Servers 5.52 and earlier; Internet Security 2004–2006; Linux Servers 4.64 and earlier). The vulnerability stems from how ZIP and RAR archives are handled, with malformed archives not being scann...
CVE-2006-0338
Multiple F-Secure Anti-Virus products and versions for Windows and Linux, including Anti-Virus for Windows Servers 5.52 and earlier, Internet Security 2004, 2005 and 2006, and Anti-Virus for Linux Servers 4.64 and earlier, allow remote attackers to hide arbitrary files and data via malformed 1 RA...
CVE-2005-3474
The aries.sys driver in Sony First4Internet XCP DRM software hides any file, registry key, or process with a name that starts with "$sys$", which allows attackers to hide activities on a system that uses XCP...
CVE-2005-3474
The CVE-2005-3474 entry concerns the aries.sys driver in Sony First4Internet XCP DRM software. The driver hides any file, registry key, or process whose name begins with "$sys$", enabling an attacker to conceal activity on a system using XCP. Affected component: aries.sys within the XCP DRM stack...
Microsoft Windows NT 4.02000 - NTFS File Hiding
Microsoft Windows NT 4.02000 - NTFS File Hiding source: https://www.securityfocus.com/bid/3989/info There exists a condition in Microsoft Windows operating systems using NTFS that may allow for files to be hidden. Though the NTFS filesystem allows for a 32000 character path, Microsoft Windows...