102 matches found
OS Command Exec, Unix Command Shell, Reverse TCP (/dev/tcp)
Execute an OS command from PHP. Creates an interactive shell via bash's builtin /dev/tcp. This will not work on circa 2009 and older Debian-based Linux distributions including Ubuntu because they compile bash without the /dev/tcp feature. Module Options msf use payload/php/unix/cmd/reversebash ms...
tc Tor Chat Client 1.2
tc is a low-tech free solution to make yourself anonymously reachable for chat by anyone who only know your onion address and your public key. Messages are PGP encrypted end-to-end and forwarded by Tor's relays. Please note this tarball's hash will not match the main release hash on the tor site ...
CyberGym: Evaluating AI Agents' Cybersecurity Capabilities with Real-World Vulnerabilities at Scale
Large language model LLM agents are becoming increasingly skilled at handling cybersecurity tasks autonomously. Thoroughly assessing their cybersecurity capabilities is critical and urgent, given the high stakes in this domain. However, existing benchmarks fall short, often failing to capture...
Demonstration of Quantum-Secure Communications in a Nuclear Reactor
Quantum key distribution QKD, one of the latest cryptographic techniques, founded on the laws of quantum mechanics rather than mathematical complexity, promises for the first time unconditional secure remote communications. Integrating this technology into the next generation nuclear systems -...
Bypassing MTE with CVE-2025-0072
Memory Tagging Extension MTE is an advanced memory safety feature that is intended to make memory corruption vulnerabilities almost impossible to exploit. But no mitigation is ever completely airtight--especially in kernel code that manipulates memory at a low level. Last year, I wrote about...
LogStamping: a Blockchain-Based Log Auditing Approach for Large-Scale Systems
Log management is crucial for ensuring the security, integrity, and compliance of modern information systems. Traditional log management solutions face challenges in achieving tamper-proofing, scalability, and real-time processing in distributed environments. This paper presents a blockchain-base...
Nextcloud Workflows Remote Code Execution
This module adds workflows as an authenticated user which can only be created by administrators by design. If the app "Nextcloud Workflow Script" is installed it is possible to generate a workflow that executes commands. Module Options msf use exploit/unix/webapp/nextcloudworkflowsrce msf...
qianxin
...
Prompt Injection Attack to Tool Selection in LLM Agents
Whitepaper called Prompt Injection Attack To Tool Selection In LLM Agents...
SAP NetWeaver Visual Composer Metadata Uploader CVE-2025-31324 Scanner
This tool checks to see if the SAP NetWeaver Visual Composer Metadata Uploader component is vulnerable to CVE-2025-31324 and if there are known webshells in the system...
Defending against Intelligent Attackers at Large Scales
We investigate the scale of attack and defense mathematically in the context of AI's possible effect on cybersecurity. For a given target today, highly scaled cyber attacks such as from worms or botnets typically all fail or all succeed. Here, we consider the effect of scale if those attack agent...
The First VoicePrivacy Attacker Challenge
The First VoicePrivacy Attacker Challenge is an ICASSP 2025 SP Grand Challenge which focuses on evaluating attacker systems against a set of voice anonymization systems submitted to the VoicePrivacy 2024 Challenge. Training, development, and evaluation datasets were provided along with a baseline...
Exploit for Deserialization of Untrusted Data in Apache Tomcat
Apache Tomcat Unauthenticated RCE - CVE-2025-24813 This reposi...
2025-25427
It is an offensive tool for Linux. The repository slin99/2025-25...
Security update for the Linux Kernel
The SUSE Linux Enterprise 15 SP6 Confidential Computing kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2024-40980: dropmonitor: replace spinlock by rawspinlock bsc1227937. CVE-2024-46858: mptcp: pm: Fix uaf in timerdeletesync bsc1231088...
PT-2025-6026 · Undefined · Undefined
Name of the Vulnerable Software and Affected Versions: No information is available about the vulnerable software and its affected versions. Description: The provided information does not contain details about the issue. There is a mention of a rejected reason and a link to a tweet, but no specifi...
CVE-2024-31207
creationtimestamp| type| source ---|---|--- 2024-04-23 18:21:50+00:00| seen| https://t.me/arpsyndicate/4757 2025-08-31 11:06:41+00:00| seen| https://bsky.app/profile/ferramentaslinux.bsky.social/post/3lxowzve6m22z 2025-08-31 11:08:19+00:00| seen|...
PT-2024-5059 · Siemens · Scalance W786-1 Rj45 +22
Name of the Vulnerable Software and Affected Versions: SCALANCE W1748-1 M12 6GK5748-1GY01-0AA0 SCALANCE W1748-1 M12 6GK5748-1GY01-0TA0 SCALANCE W1788-1 M12 6GK5788-1GY01-0AA0 SCALANCE W1788-2 EEC M12 6GK5788-2GY01-0TA0 SCALANCE W1788-2 M12 6GK5788-2GY01-0AA0 SCALANCE W1788-2IA M12...
PT-2024-13908 · Undefined · Undefined
Name of the Vulnerable Software and Affected Versions: No information is available about the vulnerable software and its affected versions. Description: The provided information does not contain details about the issue. There is a mention of a rejected reason stating that the item is unused, alon...
CVE-2016-10972
creationtimestamp| type| source ---|---|--- 2024-01-15 22:26:38+00:00| seen| https://t.me/pytar/231 2025-08-31 03:12:58+00:00| seen| MISP/d17bd6ef-d68b-317b-ac33-cdbc44c5fc57...