Google added malicious apps scanner to Chrome Web Store

Over the past few years, Cyber Criminals have choose the official Google Chrome Web Store to push malware. In a recent announcement by Google, like Google Play Android apps store, all new apps uploaded to the Chrome Web Store will now also be automatically scanned for malware. Also, Google warned...

Dell Remote Access Controller (DRAC) Server Detection

Binary data 6952.prm...

Post-Scan Rules Application

Binary data pluginrules.nbin...

Cisco Security Service File Verification Bypass Could Allow Elevation of Privilege

Executive Summary Microsoft is providing notification of the discovery and remediation of a vulnerability in the Cisco Host Scan component of Cisco AnyConnect Secure Mobility and Cisco Secure Desktop software. The vulnerability affects the Host Scan component included in Cisco AnyConnect VPN Clie...

Host Scan End

This routine is the last action of scanning a host. It stores information about the applied VT Feed and Version as well as the applied Scanner version. Finally the time of finishing the scan of this host is determined and stored. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions...

pykto

This plugin is a nikto port to python. It uses the scandatabase file from nikto to search for new and vulnerable URLs. The following configurable parameters exist: cgidirs admindirs nukedirs extradbfile mutatetests This plugin reads every line in the scandatabase and extradbfile and based on the...

wordpress_fingerprint

This plugin finds the version of a WordPress installation by fingerprinting it. It first checks whether or not the version is in the index header and then it checks for the "real version" through the existance of files that are only present in specific versions. Plugin type Crawl Options This...

SAP SMB Relay Abuse

This module exploits provides several SMB Relay abuse through different SAP services and functions. The attack is done through specially crafted requests including a UNC Path which will be accessing by the SAP system while trying to process the request. In order to get the hashes the...

Design/Logic Flaw

html/System-NeDi.php in the NeDi component in GroundWork Monitor Enterprise 6.7.0 allows remote authenticated users to execute arbitrary commands via shell metacharacters in the scan functionality in the System / NeDi menu...

[Nessus 5.2] Nessus Vulnerability Scanner

New release of the Nessus vulnerability scanner! This is a major release moving from 5.0.3 to 5.2.0 and includes several new features and enhancements, including: IPv6 is now supported on all platforms including Windows Nessus server support for Windows 8 and Windows 2012 Add attachments within...

VsFtp2 Version 2.3.4 Backdoor vulnerability-vulnerability warning-the black bar safety net

Metasploit+Nmap using the Test to build a virtual machine nmap –sT –A IP address Or use metaspliot scan to ftp –version to scan Here using someone else's figure ! image metasploit exploit use exploit/unix/ftp/vsftpd234backdoor msf exploitvsftpd234backdoor show options Need to fill out the attack...

Cisco Host Scan Component of AnyConnect Secure Mobility and Secure Desktop Heap Overflow Vulnerability

The Cisco Host Scan component of Cisco AnyConnect Secure Mobility and Cisco Secure Desktop contains a heap overflow vulnerability that could allow a local, unprivileged user to elevate its privileges to those of SYSTEM. Cisco has confirmed the vulnerability in a security notice and software updat...

D-Link DIR-300B / DIR-600B / DIR-815 / DIR-645 HTTP Login Utility

This module attempts to authenticate to different D-Link HTTP management services. It has been tested successfully on D-Link DIR-300 Hardware revision B, D-Link DIR-600 Hardware revision B, D-Link DIR-815 Hardware revision A and DIR-645 Hardware revision A devices. It is possible that this module...

texproc/expat2 -- billion laugh attack

Kurt Seifried reports: So here are the CVE's for the two big ones, libxml2 and expat. Both are affected by the expansion of internal entities which can be used to consume resources and external entities which can cause a denial of service against other services, be used to port scan, etc.. A...

Palo Alto Networks PAN-OS Settings

This script initializes the credentials used for Palo Alto Firewall. To set the credentials, edit your scan policy and go to the 'Credentials' section. TRUSTED...

Scada Modbus Function Code Scan

...

Joomla Plugins Scanner

This module scans a Joomla install for plugins and potential vulnerabilities. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Joomla Plugins Scanner', 'Description' = %q This module scans a...

RHEL 5 : kernel (RHSA-2011:1813)

The remote Redhat Enterprise Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2011:1813 advisory. - kernel: sctp dos CVE-2011-2482 - kernel: rpc task leak after flocking NFS share CVE-2011-2491 - kernel: /proc/PID/io infoleak CVE-2011-249...

UBUNTU-CVE-2013-0722

Stack-based buffer overflow in the scanloadhosts function in ecscan.c in Ettercap 0.7.5.1 and earlier might allow local users to gain privileges via a Trojan horse hosts list containing a long line...

Wordpress Pingback Locator

This module will scan for wordpress sites with the Pingback API enabled. By interfacing with the API an attacker can cause the wordpress site to port scan an external target and return results. Refer to the wordpresspingbackportscanner module. This issue was fixed in wordpress 3.5.1 This module...