Lucene search
+L

118 matches found

exploitdb
exploitdb
added 2015/09/14 12:0 a.m.22 views

ManageEngine EventLog Analyzer < 10.6 build 10060 - SQL Execution

Exploit Title: ManageEngine EventLog Analyzer SQL query execution Product: ManageEngine EventLog Analyzer Vulnerable Versions: v10.6 build 10060 and previous versions Tested Version: v10.6 build 10060 Windows Advisory Publication: 14/09/2015 Vulnerability Type: authenticated SQL query execution...

7.4AI score
Exploits0
threatpost
threatpost
added 2015/09/03 8:57 a.m.14 views

New Versions of Carbanak Banking Malware Seen Hitting Targets in U.S. and Europe

New variants of the notorious Carbanak Trojan have surfaced in Europe and the United States, and researchers say that the malware now has its own proprietary communications protocol and the samples seen so far have been digitally signed. Carbanak has been in use for several years, and researchers...

1.1AI score
Exploits0References2
thn
thn
added 2015/03/17 10:58 p.m.19 views

How to perform Forensic Analysis using Log Data

An often overlooked feature of log management software is the ability to conduct forensic analysis of historical events. If your network goes down, your network monitoring tool can tell you what happened, but knowing why it happened is even more valuable. SolarWinds Log & Event Manager has...

6.9AI score
Exploits0
threatpost
threatpost
added 2015/02/17 11:1 a.m.34 views

Inside nls_933w.dll, the Equation APT Persistence Module

CANCUN – The names called out like beacons from the screen: Samsung; Seagate; Western Digital; Hitachi; Maxtor. Hardware makers were in the crosshairs of the Equation APT group and it was perhaps the worst possible scenario imagined by researchers looking at the frightening and extensive storehou...

7.2AI score
Exploits0References2
kitploit
kitploit
added 2015/02/08 6:12 p.m.48 views

Dshell - Network Forensic Analysis Framework

An extensible network forensic analysis framework. Enables rapid development of plugins to support the dissection of network packet captures. Key features: Robust stream reassembly IPv4 and IPv6 support Custom output handlers Chainable decoders Prerequisites Linux developed on Ubuntu 12.04 Python...

6.9AI score
Exploits0References3
n0where
n0where
added 2015/01/30 5:39 p.m.24 views

Dshell – Network Forensic Analysis Framework

Dshell An extensible network forensic analysis framework. Enables rapid development of plugins to support the dissection of network packet captures. Key features: Robust stream reassembly IPv4 and IPv6 support Custom output handlers Chainable decoders Prerequisites Linux developed on Ubuntu 12.04...

1.3AI score
Exploits0References6
n0where
n0where
added 2015/01/20 2:25 a.m.36 views

Parse Various Log Files: Plaso

Plaso is the Python based back-end engine used by tools such as log2timeline for automatic creation of a super timelines. The goal of log2timeline and thus plaso is to provide a single tool that can parse various log files and forensic artifacts from computers and related systems, such as network...

7AI score
Exploits0References1
kitploit
kitploit
added 2014/06/26 3:42 p.m.35 views

Smart Pentester - An SSH based Penetration Testing Framework

Smart Pentester is an SSH based Penetration Testing Framework. It provides a GUI for well known tools like nmap, hping, tcpdump, volatility, hydra and etc. Smart Pentester Framework will provide you a User Interface for Penetration testing, Malware Analysis, Forensic Analysis, Cyber Intelligence,...

7.4AI score
Exploits0
coalfire
coalfire
added 2014/05/07 2:38 p.m.19 views

Target Kill Chain Analysis

Last week, I talked with Wall Street Journal reporter Ben DiPietro about the persistent communications gap between the data center and the board room when it comes to recognizing and tackling security threats: In almost every breach situation after his company completes a forensic analysis, Mr...

1.1AI score
Exploits0
kitploit
kitploit
added 2014/04/20 2:52 p.m.19 views

FS-NyarL - Network Takeover & Forensic Analysis Tool

NyarL it's Nyarlathotep, a mitological chaotic deity of the writer HP. Lovecraft's cosmogony. It's represent Crawling Chaos and FS-NyarL it's The Crawling Chaos of Cyber Security :- A network takeover & forensic analysis tool - useful to advanced PenTest tasks & for fun and profit - but use it at...

7.7AI score
Exploits0
kitploit
kitploit
added 2014/01/14 4:39 a.m.27 views

[Xplico 1.1.0] Open Source Network Forensic Analysis Tool (NFAT)

The goal of Xplico is extract from an internet traffic capture the applications data contained. For example, from a pcap file Xplico extracts each email POP, IMAP, and SMTP protocols, all HTTP contents, each VoIP call SIP, FTP, TFTP, and so on. Xplico isn’t a network protocol analyzer. Xplico is ...

7AI score
Exploits0
kitploit
kitploit
added 2014/01/08 6:35 a.m.655 views

[MoonSols] Windows Memory Toolkit

MoonSols Windows Memory Toolkit is a powerful toolkit containing all the utilities needed to perform any kind of memory acquisition or conversion during an incident response, or a forensic analysis for Windows desktops, servers or virtualized environment. The version 2.0 is a refresh and updated...

7AI score
Exploits0
kitploit
kitploit
added 2013/12/23 4:1 p.m.23 views

[Tor-ramdisk] Micro Linux distribution whose sole purpose is to securely host a Tor server purely in RAM

Tor-ramdisk is a uClibc-based micro Linux distribution whose sole purpose is to securely host a Tor server purely in RAM. For those not familiar with Tor, it is a system which allows the user to construct encrypted virtual tunnels which are randomly relayed between Tor servers nodes until the...

7.1AI score
Exploits0
kitploit
kitploit
added 2013/11/09 12:35 a.m.19 views

[FS-NyarL] A network takeover & forensic analysis tool

NyarL it's Nyarlathotep, a mitological chaotic deity of the writer HP. Lovecraft's cosmogony. It's represent Crawling Chaos and FS-NyarL it's The Crawling Chaos of Cyber Security :- A network takeover & forensic analysis tool - useful to advanced PenTest tasks & for fun and profit - but use it at...

7.7AI score
Exploits0
thn
thn
added 2013/05/10 5:33 p.m.8 views

Apple Decrypts Seized iPhones For The Police

The security features built into Apple's iOS software are so good that the police are unable to gain access to defendant's iPhones when they need to. Companies like Apple and Google are being asked by law enforcement officials to bypass these protections to aid in investigations. Apple receives s...

6.7AI score
Exploits0
threatpost
threatpost
added 2013/04/22 3:40 p.m.10 views

Russian Police, Cybersecurity Company Arrest Cybercriminal

If you’ve ever sat in on a cybersecurity hearing on Capitol Hill or attended a security conference , then you’re no doubt familiar with the oft-preached need for information sharing and private-public partnerships. So frequently repeated are these refrains that they’re almost as meaningless as th...

1.6AI score
Exploits0References3
nessus
nessus
added 2013/04/20 12:0 a.m.26 views

Mandriva Linux Security Advisory : sleuthkit (MDVSA-2013:125)

Updated sleuthkit packages fix security vulnerabilities : A security flaw was found in the way the Sleuth Kit TSK, a collection of UNIX-based command line tools allowing to investigate a computer, performed management of '.' dotfile file system entry. An attacker could use this flaw to evade...

2.1CVSS5.4AI score0.00353EPSS
Exploits0References1
kitploit
kitploit
added 2013/04/14 8:2 p.m.61 views

[REMnux] A Linux Distribution for Malware Analysis

REMnux incorporates a number of tools for analyzing malicious executables that run on Microsoft Windows, as well as browser-based malware, such as Flash programs and obfuscated JavaScript. This popular toolkit includes programs for analyzing malicious documents, such PDF files, and utilities for...

7AI score
Exploits0References3
kitploit
kitploit
added 2013/02/20 6:20 p.m.29 views

[NetworkMiner v1.4.1] Network Forensic Analysis Tool (NFAT)

NetworkMiner is a Network Forensic Analysis Tool NFAT for Windows but also works in Linux / Mac OS X / FreeBSD. NetworkMiner can be used as a passive network sniffer/packet capturing tool in order to detect operating systems, sessions, hostnames, open ports etc. without putting any traffic on the...

6.8AI score
Exploits0
thn
thn
added 2012/09/01 12:16 a.m.7 views

Wiper, the Destructive Malware possibly connected to Stuxnet and Duqu

Kaspersky Lab publishes research resulting from the digital forensic analysis of the hard disk images obtained from the machines attacked by the Wiper - a destructive malware program attacking computer systems related to oil facilities in Western Asia. Security researchers from Kaspersky Lab have...

6.8AI score
Exploits0
Rows per page
Query Builder