Lucene search
K

7081 matches found

Kitploit
Kitploit
added 2021/06/23 9:30 p.m.57 views

DarkLoadLibrary - LoadLibrary For Offensive Operations

LoadLibrary for offensive operations. How does is work? https://www.mdsec.co.uk/2021/06/bypassing-image-load-kernel-callbacks/ Usage DARKMODULE DarkModule = DarkLoadLibrary LOADLOCALFILE, // control flags L"TestDLL.dll", // local dll path, if loading from disk NULL, // DLL Buffer to load from if...

7.4AI score
Exploits0References1
ThreatPost
ThreatPost
added 2021/06/23 3:11 p.m.234 views

REvil Ransomware Code Ripped Off by Rivals

They say imitation is the sincerest form of flattery: The LV ransomware, a strain that cropped up just this spring, turns out to be based on what is most likely pirated REvil ransomware code, according to researchers. A malware analysis of LV from Secureworks Counter Threat Unit CTU found that it...

6.8AI score
Exploits0References10
Packet Storm
Packet Storm
added 2021/06/22 12:0 a.m.615 views

Dlink DSL2750U Command Injection

Exploit Title: Dlink DSL2750U - 'Reboot' Command Injection Date: 17-06-2021 Exploit Author: Mohammed Hadi HadiMed Vendor Homepage: https://me.dlink.com/consumer Software Link: https://dlinkmea.com/index.php/product/details?det=c0lvN0JoeVVhSXh4TVhjTnd1OUpUUT09 Version: ME1.16 Tested on: firmware...

7.4AI score
Exploits0
Fedora
Fedora
added 2021/06/21 1:4 a.m.37 views

[SECURITY] Fedora 34 Update: radare2-5.3.1-1.fc34

The radare2 is a reverse-engineering framework that is multi-architecture, multi-platform, and highly scriptable. Radare2 provides a hexadecimal editor, wrapped I/O, file system support, debugger support, diffing between two functions or binaries, and code analysis at opcode, basic block, and...

5.5CVSS0.4AI score0.01161EPSS
Exploits1
Fedora
Fedora
added 2021/06/21 1:4 a.m.32 views

[SECURITY] Fedora 34 Update: iaito-5.2.2-3.fc34

iaito is a Qt and C++ GUI for radare2. It is the continuation of Cutter before the fork to keep radare2 as backend. Its goal is making an advanced, customizable and FOSS reverse-engineering platform while keeping the user experience at mind. The iaito is created by reverse engineers for reverse...

5.5CVSS3.2AI score0.01161EPSS
Exploits1
Fedora
Fedora
added 2021/06/21 12:54 a.m.38 views

[SECURITY] Fedora 33 Update: iaito-5.2.2-3.fc33

iaito is a Qt and C++ GUI for radare2. It is the continuation of Cutter before the fork to keep radare2 as backend. Its goal is making an advanced, customizable and FOSS reverse-engineering platform while keeping the user experience at mind. The iaito is created by reverse engineers for reverse...

5.5CVSS3.2AI score0.01161EPSS
Exploits1
Fedora
Fedora
added 2021/06/21 12:54 a.m.40 views

[SECURITY] Fedora 33 Update: radare2-5.3.1-1.fc33

The radare2 is a reverse-engineering framework that is multi-architecture, multi-platform, and highly scriptable. Radare2 provides a hexadecimal editor, wrapped I/O, file system support, debugger support, diffing between two functions or binaries, and code analysis at opcode, basic block, and...

5.5CVSS0.4AI score0.01161EPSS
Exploits1
Apache Tomcat
Apache Tomcat
added 2021/06/15 12:0 a.m.87 views

Fixed in Apache Tomcat 8.5.68

Note: The issue below was fixed in Apache Tomcat 8.5.67 but the release vote for the 8.5.67 release candidate did not pass. Therefore, although users must download 8.5.68 to obtain a version that includes a fix for this issue, version 8.5.67 is not included in the list of affected versions...

5.3CVSS6AI score0.75353EPSS
Exploits1Affected Software1
Apache Tomcat
Apache Tomcat
added 2021/06/15 12:0 a.m.75 views

Fixed in Apache Tomcat 9.0.48

Note: The issue below was fixed in Apache Tomcat 9.0.47 but the release vote for the 9.0.47 release candidate did not pass. Therefore, although users must download 9.0.48 to obtain a version that includes a fix for this issue, version 9.0.47 is not included in the list of affected versions...

5.3CVSS6AI score0.75353EPSS
Exploits1Affected Software1
Apache Tomcat
Apache Tomcat
added 2021/06/15 12:0 a.m.47 views

Fixed in Apache Tomcat 10.0.7

Important: Request Smuggling CVE-2021-33037 Apache Tomcat did not correctly parse the HTTP transfer-encoding request header in some circumstances leading to the possibility of request smuggling when used with a reverse proxy. Specifically: Tomcat incorrectly ignored the transfer-encoding header i...

5.3CVSS6AI score0.75353EPSS
Exploits1Affected Software1
Kitploit
Kitploit
added 2021/06/14 12:30 p.m.255 views

Redpill - Assist Reverse Tcp Shells In Post-Exploration Tasks

Project Description The redpill project aims to assist reverse tcp shells in post-exploration tasks. Often in redteam engagements we need to use unconventional ways to access target system, such as reverse tcp shells not metasploit in order to bypass the defenses implemented by the system...

7.8AI score
Exploits0References2
Rapid7 Blog
Rapid7 Blog
added 2021/06/11 7:51 p.m.91 views

Metasploit Wrap-Up

NSClient++ Community contributor Yann Castel has contributed an exploit module for NSClient++ which targets an authenticated command execution vulnerability. Users that are able to authenticate to the service as admin can leverage the external scripts feature to execute commands with SYSTEM level...

10CVSS0.6AI score0.99999EPSS
Exploits6
Fedora
Fedora
added 2021/06/11 1:19 a.m.74 views

[SECURITY] Fedora 33 Update: nginx-1.20.1-2.fc33

Nginx is a web server and a reverse proxy server for HTTP, SMTP, POP3 and IMAP protocols, with a strong focus on high concurrency, performance and low memory usage...

7.7CVSS2.2AI score0.52838EPSS
Exploits10
Fedora
Fedora
added 2021/06/11 1:15 a.m.68 views

[SECURITY] Fedora 34 Update: nginx-1.20.1-2.fc34

Nginx is a web server and a reverse proxy server for HTTP, SMTP, POP3 and IMAP protocols, with a strong focus on high concurrency, performance and low memory usage...

7.7CVSS2.2AI score0.52838EPSS
Exploits10
Kitploit
Kitploit
added 2021/06/09 12:30 p.m.231 views

Bbscope - Scope Gathering Tool For HackerOne, Bugcrowd, And Intigriti!

The ultimate scope gathering tool for HackerOne, Bugcrowd, and Intigriti by sw33tLie. Need to grep all the large scope domains that you've got on your bug bounty platforms? This is the right tool for the job. What about getting a list of android apps that you are allowed to test? We've got you...

7.1AI score
Exploits0References5
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.39 views

SUSE: Security Advisory (SUSE-SU-2013:0469-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.9CVSS8AI score0.90734EPSS
Exploits30References2
Kitploit
Kitploit
added 2021/06/07 12:30 p.m.185 views

RedWarden - Flexible CobaltStrike Malleable Redirector

RedWarden - Flexible CobaltStrike Malleable Redirector previously known as proxy2's malleableredirector plugin Let's raise the bar in C2 redirectors IR resiliency, shall we? Red Teaming business has seen several different great ideas on how to combat incident responders and misdirect them while...

7.2AI score
Exploits0References4
Gitee
Gitee
added 2021/06/05 7:25 p.m.5 views

charlotte

It is an offensive tool for Windows. The repository contains a Python script, charlotte.py, which is a fully undetected shellcode launcher. The script uses XOR encryption to encrypt the shellcode and function names. The script is designed to be used with the Metasploit framework, and it can be us...

6.9AI score
Exploits0
CNVD
CNVD
added 2021/06/04 12:0 a.m.5 views

Mcafee Database Security Server Code Issue Vulnerability

Mcafee Database Security Server is a database security software from Mcafee USA. The software provides users with a holistic view of the database and the corresponding security status, protecting business-critical databases from external, internal and insider database threats in real time. A code...

9CVSS6.9AI score0.0187EPSS
Exploits0References1
CNVD
CNVD
added 2021/06/04 12:0 a.m.6 views

Mcafee Database Security Server Code Issue Vulnerability (CNVD-2021-39504)

Mcafee Database Security Server is a database security software from Mcafee USA. The software provides users with a holistic view of the database and the corresponding security status, protecting business-critical databases from external, internal and insider database threats in real time. A code...

10CVSS7AI score0.02242EPSS
Exploits0References1
Rows per page
Query Builder