Native integrations in Wallarm WAF

How to configure sending reports to email? How to get a notification to the messenger about an event requiring a response? How to connect Wallam and other solutions that use DevOps and the security team? Integrations will help to solve all these issues in Wallam WAF. And today we'll talk about th...

Verodin Director Web Console 3.5.4.0 - Remote Authenticated Password Disclosure Exploit

Exploit for jsp platform in category web applications Exploit Title: Verodin Director Web Console 3.5.4.0 - Remote Authenticated Password Disclosure PoC Discovery Date: 2019-01-31 Exploit Author: Nolan B. Kennedy nxkennedy Vendor Homepage: https://www.verodin.com/ Software Link :...

Privilege escalation

An issue was discovered in Gallagher Command Centre 7.x before 7.90.991MR5, 8.00 before 8.00.1161MR5, and 8.10 before 8.10.1134MR4. External system configuration data used for third party integrations such as DVR systems were logged in the Command Centre event trail. Any authenticated operator wi...

CVE-2020-7215

Gallagher Command Centre (versions 7.x prior to 7.90.991 MR5; 8.00 prior to 8.00.1161 MR5; 8.10 prior to 8.10.1134 MR4) contains an information disclosure vulnerability where external system configuration data used for third‑party integrations (e.g., DVR systems) is logged in the Event Trail. Any...

CVE-2020-7215

An issue was discovered in Gallagher Command Centre 7.x before 7.90.991MR5, 8.00 before 8.00.1161MR5, and 8.10 before 8.10.1134MR4. External system configuration data used for third party integrations such as DVR systems were logged in the Command Centre event trail. Any authenticated operator wi...

RansomCoin - A DFIR Tool To Extract Cryptocoin Addresses And Other Indicators Of Compromise From Binaries

Extracting metadata and hardcoded Indicators of Compromise from ransomware, in a scalable, efficient, way with cuckoo integrations. Ideally, is it run during cuckoo dynamic analysis, but can also be used for static analysis on large collections of ransomware. Designed to be fast, with low false...

Microsoft Intelligent Security Association grows to more than 80 members

Sometimes an idea sparks, and it feels so natural, so organic, that it takes on a life of its own and surprises you by how fast it grows. The Microsoft Intelligent Security Association MISA was one of these ideas. It was born out of a desire to be easy to do business with and be a better partner ...

ThreatIngestor - Extract And Aggregate Threat Intelligence

An extendable tool to extract and aggregate IOCs from threat feeds. Integrates out-of-the-box with ThreatKB and MISP, and can fit seamlessly into any existing worflow with SQS, Beanstalk, and custom plugins. Overview ThreatIngestor can be configured to watch Twitter, RSS feeds, or other sources,...

CVE-2019-10716

An Information Disclosure issue in Verodin Director 3.5.3.1 and earlier reveals usernames and passwords of integrated security technologies via a /integrations.json JSON REST API request...

Palo Alto Networks Zingbox Inspector Has Unspecified Vulnerability

The Palo Alto Networks Zingbox Inspector is a locally deployed appliance in a Zingbox IoT Command Center IoT control center solution from Palo Alto Networks, USA. A security vulnerability exists in Palo Alto Networks Zingbox Inspector version 1.294 and earlier. An attacker could exploit the...

CVE-2019-15023

A security vulnerability exists in Zingbox Inspector versions 1.294 and earlier, that results in passwords for 3rd party integrations being stored in cleartext in device configuration...

Security feature bypass

A security vulnerability exists in Zingbox Inspector versions 1.294 and earlier, that results in passwords for 3rd party integrations being stored in cleartext in device configuration...

Insecure Password Storage in Zingbox Inspector

A security vulnerability exists in Zingbox Inspector that results in passwords for 3rd party integrations being stored in cleartext in device configuration. Ref: CVE-2019-15023 The vulnerability allows for the viewing of plaintext credentials stored within the Zingbox Inspector software and store...

SQL Injection in Zingbox Inspector

An SQL injection vulnerability exists in the Zingbox Inspector management interface that allows for unsanitized data provided by an authenticated user to be passed from the web UI into the database. Ref: CVE-2019-15016 The vulnerability allows for authenticated users to pass unsanitized commands ...

Insecure Password Storage in Zingbox Inspector

A security vulnerability exists in Zingbox Inspector that results in passwords for 3rd party integrations being stored in cleartext in device configuration. Ref: CVE-2019-15023 The vulnerability allows for the viewing of plaintext credentials stored within the Zingbox Inspector software and store...

PT-2019-3611 · Zingbox · Zingbox Inspector

Name of the Vulnerable Software and Affected Versions: Zingbox Inspector versions 1.294 and earlier Description: A security issue exists where passwords for 3rd party integrations are stored in cleartext in device configuration, potentially allowing a remote attacker to gain unauthorized access t...

RIPS 3.2: Patch Generation and New IDE Integrations

Automated Patch Generation RIPS scans your source code for critical security vulnerabilities fully automated in only a few minutes. But the most time-intense task when securing your application is to research and to write code patches that fix all the detected security problems sufficiently...

CIRTKit - Tools For The Computer Incident Response Team

One DFIR console to rule them all. Built on top of theViper Framework Documentation Please see the wiki for more information about CIRTKit and documentation Roadmap Future integrations Bit9 Palo Alto Networks EnCase/FTK Future modules Packet Analysis possibly Dshell Javascript...

Adaptive Media Player Named Readers' Choice Finalist

In its first time being nominated, Akamai's Adaptive Media Player AMP was named a runner up in the 2018 Streaming Media Readers' Choice Awards "Video Player/SDK" category. The Awards annually survey Streaming Media's readers for the top products and services for streaming video and audio. We are...

Partner Perspectives: More Effective Threat Hunting with ThreatConnect and Carbon Black

Megan Horner is the Director of Product Marketing for ThreatConnect. You’ll hear a lot in cybersecurity - and in technology in general - about the necessity of integrations. The more security solutions can communicate back and forth with what they find “in the wild” and how it compares to what’s...