60 matches found
PT-2026-48500
In Splunk SOAR Security Orchestration, Automation, and Response versions below 8.5.0, an unauthenticated attacker could inject American National Standards Institute ANSI escape codes into SOAR application log files through specially crafted HTTP request paths, which a terminal emulator might...
cve-poc-nuclei
CVE PoC & Nuclei Templates Auto-generated from t...
redhound-arsenal
Red Hound Arsenal Agent-consumable security skill library for...
Wa3r-OffSec-Kit
Waer's Cybersecurity Knowledge Base 50+ documents · 2...
From Threat Intelligence to Firewall Rules: Semantic Relations in Hybrid AI Agent and Expert System Architectures
Web security demands rapid response capabilities to evolving cyber threats. Agentic Artificial Intelligence AI promises automation, but the need for trustworthy security responses is of the utmost importance. This work investigates the role of semantic relations in extracting information for...
SecureBank: A Financially-Aware Zero Trust Architecture for High-Assurance Banking Systems
Financial institutions increasingly rely on distributed architectures, open banking APIs, cloud native infrastructures, and high frequency digital transactions. These transformations expand the attack surface and expose limitations in traditional perimeter based security models. While Zero Trust...
Rating The Best Vulnerability Management Tools for Security Pros
A home security system doesn't just tell you that a window is unlocked; it tells you which window, whether someone is actively trying to open it, and in which room your most valuable possessions are stored. It gives you the context to act decisively. Similarly, a modern vulnerability management...
How To Automate Alert Triage With AI Agents and Confluence SOPs Using Tines
Run by the team at workflow orchestration and AI platform Tines, the Tines library features over 1,000 pre-built workflows shared by security practitioners from across the community - all free to import and deploy through the platform's Community Edition. The workflow we are highlighting...
Have You Turned Off Your Virtual Oven?
You check that the windows are shut before leaving home. Return to the kitchen to verify that the oven and stove were definitely turned off. Maybe even circle back again to confirm the front door was properly closed. These automatic safety checks give you peace of mind because you know the unlike...
The AI-Powered Security Shift: What 2025 Is Teaching Us About Cloud Defense
Now that we are well into 2025, cloud attacks are evolving faster than ever and artificial intelligence AI is both a weapon and a shield. As AI rapidly changes how enterprises innovate, security teams are now tasked with a triple burden: 1. Secure AI embedded in every part of the business. 2. Use...
Smarter ITSM Automation with ServiceNow Integration
Effective Information Technology and Service Management ITSM today requires intelligent automation, proactive security, and seamless integration between platforms. To keep security operations efficient, vulnerability management workflows need to be streamlined and connected with broader IT...
Remediate Risk Without the Roadblocks: Automate with Qualys Flow
Remediation and Workflow Automation, Redefined Still relying on manual steps in your cloud security? It’s outdated, and it’s risky. Manual processes lead to slower threat detection, human errors, increased operational costs, and compliance delays. This isn’t just inefficient—it’s a liability. Ent...
Comparative Analysis of AI-Driven Security Approaches in DevSecOps: Challenges, Solutions, and Future Directions
The integration of security within DevOps, known as DevSecOps, has gained traction in modern software development to address security vulnerabilities while maintaining agility. Artificial Intelligence AI and Machine Learning ML have been increasingly leveraged to enhance security automation, thre...
Fortinet FortiSOAR 代码注入漏洞
Fortinet FortiSOAR is a Security Orchestration, Automation and Response SOAR solution from Fortinet. A code injection vulnerability exists in Fortinet FortiSOAR that stems from improper code generation controls and can be exploited by an attacker to cause arbitrary code to be executed...
The vulnerability of the Cortex XSOAR CommonScripts package for security management, automation, and response solutions lies in the lack of data cleansing at the control level, allowing attackers to execute arbitrary commands.
The vulnerability of the Cortex XSOAR CommonScripts package for security management, automation, and response involves a lack of data cleansing measures at the control level. Exploiting this vulnerability allows an attacker operating remotely to execute arbitrary commands...
PT-2024-33294 · Logpoint · Logpoint
Name of the Vulnerable Software and Affected Versions: Logpoint versions prior to 7.5.0 Description: An issue was discovered in Logpoint where SOAR uses a static JWT secret key to generate tokens, allowing access to SOAR API endpoints without authentication. This enables attackers to create custo...
Malicious code in security-automation-job (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 38eb272538ac306cb26b84b3887bf6fd77f00fe00e64a10814f34258702eb442 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
MAL-2024-11703 Malicious code in security-automation-job (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 38eb272538ac306cb26b84b3887bf6fd77f00fe00e64a10814f34258702eb442 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
The Golden Age of Automated Penetration Testing is Here
Network penetration testing plays a vital role in detecting vulnerabilities that can be exploited. The current method of performing pen testing is pricey, leading many companies to undertake it only when necessary, usually once a year for their compliance requirements. This manual approach often...
CVE-2023-38020
IBM SOAR QRadar Plugin App 1.0 through 5.0.3 could allow an authenticated user to manipulate output written to log files. IBM X-Force ID: 260576...