Lucene search
K
PacketstormnewsRecent

6803 matches found

Packet Storm News
Packet Storm News
•added 2026/06/04 12:0 a.m.•28 views

ExploitBench AI Exploit Benchmark Tool

ExploitBench measures how far AI agents climb, from reaching vulnerable code, to triggering the bug, to building exploit primitives, to arbitrary code execution...

6.1AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/04 12:0 a.m.•9 views

Next.js Concurrent Version Exposure / Vulnerability Audit Tool

This Python script is a lightweight defensive auditing utility designed to identify websites running Next.js and determine whether their detected version falls within predefined potentially vulnerable version ranges...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/04 12:0 a.m.•20 views

Steering LLM Viewpoints through Fabricated Evidence Injection

As chatbots increasingly influence daily decision-making, their potential to produce misleading responses poses substantial risks to users. This paper investigates a critical cognitive vulnerability in LLMs: their tendency to uncritically trust external context when presented with fabricated...

5.6AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/04 12:0 a.m.•19 views

TinyML-Driven Cybersecurity for Autonomous Spacecraft: Latency-Accuracy Analysis for SPARTA RF and Cyber Threat Detection

Autonomous spacecraft require rapid, lightweight, and reliable onboard detection of cyber-RF threats. Using the SPARTA attack model, we analyze the latency-accuracy trade-offs of TinyML-compatible classical models -- Random Forest, Logistic Regression, SVM, and MLP -- for detecting uplink jamming...

5.6AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/04 12:0 a.m.•16 views

Explainable AI-Driven Cyber Risk Analytics and Model Reliability Assessment for Intelligent Governance of U.S. Critical Infrastructure: An XGBoost and SHAP-Based Intrusion Detection Framework

The increasing penetrations of the critical infrastructure sector in the United States with intelligent digital technologies have greatly increased exposure to advanced cyber adversaries and operational vulnerabilities. AI-powered governance and automated decision-making systems are becoming a ke...

5.6AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/04 12:0 a.m.•26 views

Opportunities and Challenges in Securely Reusing and Repurposing Mobile Devices

An estimated 5.3 billion mobile phones became electronic waste in 2022. Many of these devices can be repurposed and used in different contexts to extend their lifetime and to reduce ecological impacts. An often overlooked aspect of smartphone reuse is cybersecurity: these devices embed...

5.5AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/04 12:0 a.m.•17 views

An Improved CNN-LSTM Based Intrusion Detection System for IoT Networks

With the rapid proliferation of IoT devices, security concerns have dramatically escalated and intrusion detection systems have become critical for protecting networked environments. This paper presents an improved CNN-LSTM based intrusion detection model that combines multi-class classification,...

5.5AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/04 12:0 a.m.•14 views

Exploring the Connection between Coding Habits and Cognitive Styles in Malware Developers

Malware research primarily studies the results, the methods, and the impact. Even from an offensive security perspective, what is examined is the method, not the development strategy of the offender. This study investigates the behavioral signatures and coding patterns embedded in the malware...

5.4AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/04 12:0 a.m.•86 views

Membrane: A Self-Evolving Contrastive Safety Memory for LLM Agent Defense

Despite advances in safety alignment, large language models remain vulnerable to continuously evolving jailbreaks. Existing fine-tuned safety classifiers cannot adapt to these evolving attacks, while adaptive memory-based guardrails tend to over-refuse benign queries that resemble stored attacks...

5.5AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/04 12:0 a.m.•14 views

ExploitGym AI Exploit Benchmark Tool

ExploitGym is a large-scale, realistic benchmark built from real-world vulnerabilities designed to evaluate AI agents' ability to develop exploits...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/04 12:0 a.m.•64 views

WebMCP Tool Surface Poisoning: Runtime Manipulation Attacks on LLM Agents

WebMCP is a newly emerging protocol that enables websites to expose tools directly to AI agents, bypassing traditional user interfaces and introducing new security risks. The dynamic exposure of agent-accessible tools in WebMCP expands the attack surface of web sessions, especially when third-par...

5.6AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/04 12:0 a.m.•60 views

GenTI: Benchmarking LLMs for Autonomous IDPS Rule Generation for Unseen Attacks

Rule-based Intrusion Detection and Prevention Systems IDPS offer precise attack detection as well as mitigation, however their manually crafted, signature-driven rules limit adaptability to emerging and zero-day threats. Additionally, existing public datasets e.g., CICIDS2017, UNSW-NB15 focus on...

5.5AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/04 12:0 a.m.•10 views

CodeQL 2.25.6

Discover vulnerabilities across a codebase with CodeQL, an industry-leading semantic code analysis engine. CodeQL lets you query code as though it were data. Write a query to find all variants of a vulnerability, eradicating it forever. Then share your query to help others do the same...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/04 12:0 a.m.•11 views

MalTree: Tracing Malware Evolution from Embeddings at Scale

Malware detection remains largely reactive: machine learning models trained on known samples degrade as threats evolve. Understanding evolutionary relationships among malware families can inform proactive defense, but traditional reverse engineering can take months to years to uncover such lineag...

5.5AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/04 12:0 a.m.•33 views

RedEdit: Agentic Red-Teaming of Image Safety Classifiers Via MCTS-Guided Photo-Editing

Image safety classifiers serve as a critical component of contemporary content moderation systems on the internet. However, their resilience against user-style malicious image editing remains underexplored. Such behaviors are highly prevalent in daily scenarios but difficult to fully reproduce. T...

5.5AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/04 12:0 a.m.•10 views

angr 9.2.221

angr is an open-source binary analysis platform for Python. It combines both static and dynamic symbolic "concolic" analysis, providing tools to solve a variety of tasks...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/04 12:0 a.m.•17 views

Securing the Sandbox: A Rootless Containerized Framework for Process-Oriented Monitoring in Computer Graphics Education

Computer Science education fundamentally depends on intensive laboratory hours to foster true programming mastery and logical reasoning. However, the widespread adoption of Generative Artificial Intelligence AI has made it virtually impossible to distinguish authentic student effort from instant ...

5.7AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/04 12:0 a.m.•29 views

Credential Disclosure in (EU) Digital Identity Wallets: Privacy Risks and Practical Mitigations

The European Union will introduce the EUDI Wallet by late 2026, which allows users to hold digital credentials i.e., representations of physical official identity documents on their devices. This will allow users to securely and privately disclose identity attributes to websites. Although such a...

5.5AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/03 12:0 a.m.•20 views

Online Safety Regulation Increases Privacy Risk: Evidence from the UK Online Safety Act

Governments worldwide are increasingly regulating digital platforms to reduce online harms, particularly those affecting children. However, access restrictions can alter user behaviour and introduce new privacy and security risks. The UK Online Safety Act OSA, passed in October 2023, illustrates...

5.5AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/03 12:0 a.m.•11 views

Revisiting Vul-RAG: Reproducibility and Replicability of RAG-Based Vulnerability Detection with Open-Weight Models

Large language models LLMs have shown strong potential for automated software vulnerability detection, particularly in retrieval-augmented generation RAG settings. However, for approaches relying on proprietary models and APIs, reproducibility and replicability remain largely unexplored, raising...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/03 12:0 a.m.•12 views

Remote Sunrise Helper for Windows GUI Boundary / Access Control Integrity Auditor

This is a script that tests GUI boundary and access controls in Remote Sunrise Helper for Windows. It launches the application, waits for the target window, and provides manual testing guidance. It does not validate process-boundary handling by itself, does not target any specific known...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/03 12:0 a.m.•9 views

TIBlender: Early-Warning Threat Intelligence from Cross-Platform Social Media Evidence

Cyber threat signals are fragmented across multiple social media platforms, yet no existing approach has fully automated their integration into actionable threat intelligence TI reports. We present TIBlender, a multi-agent system that monitors four platforms X, Reddit, Telegram, and Discord and...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/03 12:0 a.m.•9 views

NLLog: Lightweight, Explainable SOC Anomaly Detection Via Log-To-Language Rewriting

System-generated logs underpin security monitoring, yet their rigid template-based format hinders both automated analysis and human comprehension. We present NLLog Natural-Language Log, a lightweight pipeline that deterministically rewrites parsed templates into WHO-WHAT-SEVERITY sentences, pools...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/03 12:0 a.m.•10 views

CISA: CISA and Partners Urge Hardening Automatic Tank Gauge Systems

The Cybersecurity and Infrastructure Security Agency CISA, the Federal Bureau of Investigation FBI, the National Security Agency NSA, the Department of Energy DOE, the Environmental Protection Agency EPA, the Transportation Security Administration TSA, the Department of Transportation DOT, and th...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/03 12:0 a.m.•13 views

SHIELDS: Automating OS Hardening with Iterative Multi-Agent Remediation

Security misconfigurations remain a leading cause of OS-level compromise, and manually keeping systems compliant with standards like Defense Information Systems Agency DISA Security Technical Implementation Guides STIGs is a tedious and expensive process. Existing compliance automation tools can...

5.7AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/03 12:0 a.m.•24 views

CyberGym-E2E: Scalable Real-World Benchmark for AI Agents' End-To-End Cybersecurity Capabilities

AI has the potential to transform cybersecurity by enabling systems that can autonomously detect, analyze, and remediate software vulnerabilities. However, existing cybersecurity evaluations of AI systems are limited in scale or scope, and fail to capture the end-to-end lifecycle of real-world...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/03 12:0 a.m.•9 views

CLIF: Cross-Layer LEO-ISL Fingerprinting for Physical and Network Attack Detection in Dense LEO Constellations

Low-Earth Orbit LEO mega-constellations such as Starlink by SpaceX and Kuiper by Amazon rely on optical Inter-Satellite Links ISLs for autonomous mesh routing to provide low-latency telecommunication, Internet of Things IoT, and security services globally. As commercial operators and governments...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/03 12:0 a.m.•18 views

From Attack Simulation to SIEM Rule: Deterministic Detection-As-Code Synthesis with Probe-Level Traceability

Security teams routinely simulate attacks against their own systems to check whether their monitoring would catch a real intruder. These Breach-and-Attack-Simulation BAS tools surface findings, but the security information and event management SIEM systems that watch production need detection rul...

5.4AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/03 12:0 a.m.•23 views

CRESS: Quantifying Vulnerabilities of Attack Scenarios in Hardware Reverse Engineering

The safety, security, and reliability of microelectronic systems depend on a trustworthy, secured supply chain and design flow. Globally distributed supply chains or unintentional design weaknesses leave the door open for attacks on the hardware level. These scenarios encompass counterfeiting,...

5.5AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/03 12:0 a.m.•14 views

The Coverage Gap: Chile's Cyber Disclosure Framework Versus the USA, EU and UK

We introduce the Coverage Gap as a measurable distance between the observable public exposure of critical-infrastructure operators and their declared capability to coordinate vulnerability disclosure. We instantiate it against the 915 Chilean Operadores de Importancia Vital OIVs -- Operators of...

5.5AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/03 12:0 a.m.•35 views

Description-Code Inconsistency in Real-World MCP Servers: Measurement, Detection, and Security Implications

The Model Context Protocol MCP has emerged as a critical standard empowering Large Language Models LLMs to utilize external tools. In this ecosystem, LLMs rely on natural language descriptions provided by MCP servers to select and execute functions. This interaction implicitly assumes that tool...

6AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/03 12:0 a.m.•9 views

TeleHunt: A Framework and Tool for Efficient Cybercriminal Community Discovery on Telegram

This paper presents TeleHunt, a framework and tool for evaluating the effectiveness of different strategies to discover cybercriminal communities on Telegram. TeleHunt employs a set of reference-driven snowballing strategies, integrating message-level classification, contextual filtering, and...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/03 12:0 a.m.•8 views

Linux Kernel FD-Race Monitoring

This C program is a defensive process-monitoring utility, not a privilege-escalation exploit. It continuously inspects /proc/pid/fd to detect suspicious activity related to excessive file descriptor usage, activity from sensitive SUID binaries, and potential file descriptor leakage or theft...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/03 12:0 a.m.•45 views

ZERO-APT: A Closed-Loop Adversarial Framework for LLM-Driven Automated Penetration Testing under Intelligent Defense

LLM-driven automated penetration testing agents are typically evaluated against static targets that neither detect nor respond to attacks, so their behavior under intelligent defense remains untested. The causal consistency of multi-step attack chains likewise hinges on unstable LLM reasoning, an...

5.5AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/03 12:0 a.m.•12 views

Dimensionality Reduction for Cyberattack Classification: A Comparative Evaluation of PCA and Linear Predictive Coding

High-dimensional feature representations are widely used in machine learning-based cyberattack detection systems. However, they increase computational complexity and may hinder deployment in resource-constrained environments. In this paper, we investigate feature compression techniques for...

5.3AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/03 12:0 a.m.•9 views

American Fuzzy Lop plus plus 5.00c

Google's American Fuzzy Lop is a brute-force fuzzer coupled with an exceedingly simple but rock-solid instrumentation-guided genetic algorithm. afl++ is a superior fork to Google's afl. It has more speed, more and better mutations, more and better instrumentation, custom module support, etc...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/03 12:0 a.m.•8 views

MCPJam Inspector 1.4.2 Defensive API Security Assessment Tool

This Python-based defensive auditing tool evaluates the exposure and security posture of MCP-related API endpoints in a controlled and authorized environment. It is designed to assist security teams in identifying insecure API configurations, exposed execution interfaces, and potential operationa...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/03 12:0 a.m.•16 views

Prioritization of Risks from Artificial Intelligence: A Delphi Study of 272 International Experts

Artificial intelligence poses many risks, ranging from familiar present-day harms to unprecedented and potentially catastrophic ones. Effective risk management requires prioritization: we must understand which risks are most severe, who is most vulnerable, and who is most responsible for addressi...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/02 12:0 a.m.•14 views

The Role of Domain-Specific Features in Malware Detection: A MacOS Case Study

Despite the growing popularity of macOS among end users and enterprise systems, malware research has primarily focused on Windows and Android operating systems, leaving the problem of macOS malware detection relatively unexplored. Indeed, the specificity of the operating system and the unique...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/02 12:0 a.m.•8 views

Operationalizing Cyber Attack Prediction: A Gap-Prioritized Framework with Dataset and Model Selection Guidelines

While AI and machine learning for cyber attack prediction have advanced, a critical gap persists between theoretical research and practical operational deployment. Building on Ankalaki et al. 2025, this paper provides a comprehensive analysis of 150+ benchmark datasets and 200+ studies to identif...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/02 12:0 a.m.•19 views

Windows Scheduled Task Persistence Using S4U Authentication

This Python script defines a class called S4UPersistence that automates the creation of a Windows Scheduled Task to repeatedly execute an executable payload. It generates a Task Scheduler XML configuration and uses the S4U logon type, allowing the task to run without requiring an interactive...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/02 12:0 a.m.•23 views

FlowGuard: Flow Matching for Identity-Independent Detection of Data-Free Model Stealing Attacks on Energy System Intrusion Detection Systems

Artificial Intelligence AI-based Intrusion Detection Systems IDS deployed in energy infrastructure are vulnerable to model theft attacks, which allow adversaries to create evasive traffic offline. Current defences against model extraction rely either on identity-bound query monitoring, which is...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/02 12:0 a.m.•8 views

Don't Trust Us: A Privacy-By-Design Android Malware Detection Pipeline

Android malware detection increasingly relies on collecting and processing sensitive user data, including device identifiers, network artifacts, and runtime traces, while privacy is too often treated as a secondary concern. Existing privacy-aware approaches typically enforce privacy after data...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/02 12:0 a.m.•9 views

High-Precision APT Malware Attribution with Out-Of-Scope Resilience

Early attribution of Advanced Persistent Threat APT activity can help defenders prioritise investigation, select countermeasures, and reduce the impact of an intrusion. Malware provides useful attribution evidence, but automated APT malware attribution remains difficult in practice. Existing...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/02 12:0 a.m.•55 views

Windows BITS Jobs Persistence Scanner

This is a Windows BITS Job auditing tool that scans all Background Intelligent Transfer Service BITS tasks using bitsadmin, then analyzes them for suspicious behavior such as executable downloads, command execution cmd.exe, powershell, and remote URLs. It classifies jobs as normal or suspicious a...

6AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/02 12:0 a.m.•8 views

AI Model Extraction Attacks: Bypassing Single-Client Assumptions in Defenses

Ensuring the protection of Artificial Intelligence AI models deployed in military Command and Control C2 systems and critical infrastructure is essential for maintaining information superiority. Model Extraction Attacks MEAs pose a significant threat, as they enable adversaries to replicate...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/02 12:0 a.m.•10 views

Dstack-Capsule: Pod-Level Remote Attestation for Confidential Workloads on Kubernetes

The rise of LLM-as-a-Service and other confidential cloud workloads demands cryptographic proof that user data is processed in a trusted, untampered environment. Existing solutions, notably Confidential Containers CoCo, enforce a strict "one Pod per VM" model that attests only the Guest OS stack,...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/02 12:0 a.m.•18 views

Samba SMB Printer Share Utility Share Enumeration / File Access Testing Tool

This Python utility is a lightweight SMB interaction tool designed for enumerating Samba/Windows shares, identifying printer-related shares, testing write permissions, and uploading files to accessible SMB resources. It's written to target versions 4.22.10, 4.23.8 and 4.24.3...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/02 12:0 a.m.•13 views

Windows Telemetry Persistence

This simulation proof of concept code demonstrates conceptual persistence mechanisms registry-like structures and scheduled task representation without performing actual registry modifications, persistence installation, or execution...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/02 12:0 a.m.•14 views

Domain-Conditioned Safety in Frontier Computer-Using Agents: A 793-Episode Browser Benchmark, a Coding-Domain Cross-Reference, and a Reproducibility Audit of Recent Red-Teaming

Recent computer-using-agent CUA red-teaming papers report prompt-injection attack success rates ASR of 42-98%, but these headline numbers cluster on retired models and on the most-vulnerable model in each paper's panel. We ask whether those techniques, reproduced as hand-crafted templates, still...

5.5AI score
Exploits0
Total number of security vulnerabilities6803