SUSE-SU-2025:20746-1 Security update for google-osconfig-agent

This update for google-osconfig-agent fixes the following issues: Update to version 20250416.02 bsc1244304, bsc1244503 defaultSleeper: tolerate 10% difference to reduce test flakiness 810 Add output of some packagemanagers to the testdata 808 From version 20250416.01: Refactor OS Info package 809...

MAL-2025-5514 Malicious code in os-info-es6 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b5db90325052a54f4806fa3551b5830ecb62ee7544dff34a58a48549719bf266 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-4013 Malicious code in os-info-checker-es6 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d7d48d1ef01f6c43c34237496128c5593e34836a51db6b931a38f9d1520562c3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in os-info-checker-es6 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d7d48d1ef01f6c43c34237496128c5593e34836a51db6b931a38f9d1520562c3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Powershell-Backdoor-Generator - Obfuscated Powershell Reverse Backdoor With Flipper Zero And USB Rubber Ducky Payloads

Reverse backdoor written in Powershell and obfuscated with Python. Allowing the backdoor to have a new signature after every run. Also can generate auto run scripts for Flipper Zero and USB Rubber Ducky. usage: listen.py -h --ip-address IPADDRESS --port PORT --random --out OUT --verbose --delay...

Information disclosure

Error in parser function in M-Files Server versions before 22.6.11534.1 and before 22.6.11505.0 allowed unauthenticated access to some information of the underlying operating system...

CentOS 8 : ipmitool (CESA-2020:0981)

The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2020:0981 advisory. - ipmitool: Buffer overflow in readfruareasection function in lib/ipmifru.c CVE-2020-5208 Note that Nessus has not tested for this issue but has instead relied...

CHAOS Framework v3.0 - Generate Payloads And Control Remote Windows Systems

CHAOS is a PoC that allow generate payloads and control remote operating systems. Features Feature | Windows | Mac | Linux ---|---|---|--- Reverse Shell | X | X | X Download File | X | X | X Upload File | X | X | X Screenshot | X | X | X Keylogger | X | | Persistence | X | | Open URL | X | X | X...

MIDA-Multitool - Bash Script Purposed For System Enumeration, Vulnerability Identification And Privilege Escalation

Bash script purposed for system enumeration, vulnerability identification and privilege escalation. MIDA Multitool draws functionality from several of my previous scripts namely SysEnum and RootHelper and is in many regards RootHelpers successor. Besides functionality from these two previous...

IT-Grundschutz M4.014: Obligatorischer Passwortschutz unter Unix

IT-Grundschutz M4.014: Obligatorischer Passwortschutz unter Unix. Stand: 14. Ergänzungslieferung 14. EL. OpenVAS Vulnerability Test $Id: GSHBM4014.nasl 7883 2017-11-23 11:22:59Z emoss $ IT-Grundschutz, 14. EL, Maßnahme 4.014 Authors: Thomas Rotter Copyright: Copyright c 2015 Greenbone Networks...

SAP Host Agent Information Disclosure

This module attempts to retrieve Computer and OS info from Host Agent through the SAP HostControl service. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'rexml/document' class MetasploitModule 'SAP Host Agen...

SMB NativeLanMan

It is possible to extract OS, domain and SMB server information from the Session Setup AndX Response packet which is generated during NTLM authentication. SPDX-FileCopyrightText: 2009 LSS SPDX-FileCopyrightText: New detection methods / pattern / code since 2009 Greenbone AG Some text descriptions...