Lucene search
+L
PacketstormnewsRecent

6907 matches found

Packet Storm News
Packet Storm News
•added 2026/06/02 12:0 a.m.•14 views

PCLink 4.1.1 Basic API Exposure / Header Misconfiguration Scanner

This Python script is a lightweight security auditing tool designed to assess a PCLink server for potential exposure of sensitive headers and extension-related API endpoints. It's written to analyze version 4.1.1...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/02 12:0 a.m.•10 views

Dstack-Capsule: Pod-Level Remote Attestation for Confidential Workloads on Kubernetes

The rise of LLM-as-a-Service and other confidential cloud workloads demands cryptographic proof that user data is processed in a trusted, untampered environment. Existing solutions, notably Confidential Containers CoCo, enforce a strict "one Pod per VM" model that attests only the Guest OS stack,...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/02 12:0 a.m.•18 views

Samba SMB Printer Share Utility Share Enumeration / File Access Testing Tool

This Python utility is a lightweight SMB interaction tool designed for enumerating Samba/Windows shares, identifying printer-related shares, testing write permissions, and uploading files to accessible SMB resources. It's written to target versions 4.22.10, 4.23.8 and 4.24.3...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/02 12:0 a.m.•13 views

Windows Telemetry Persistence

This simulation proof of concept code demonstrates conceptual persistence mechanisms registry-like structures and scheduled task representation without performing actual registry modifications, persistence installation, or execution...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/02 12:0 a.m.•9 views

WebADM LDAP Environment Audit / Data Extraction Engine

This is an authenticated assessment and auditing utility designed to collect and process directory information from a WebADM deployment using available application functionality, rather than a vulnerability proof-of-concept...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/02 12:0 a.m.•14 views

Domain-Conditioned Safety in Frontier Computer-Using Agents: A 793-Episode Browser Benchmark, a Coding-Domain Cross-Reference, and a Reproducibility Audit of Recent Red-Teaming

Recent computer-using-agent CUA red-teaming papers report prompt-injection attack success rates ASR of 42-98%, but these headline numbers cluster on retired models and on the most-vulnerable model in each paper's panel. We ask whether those techniques, reproduced as hand-crafted templates, still...

5.5AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/02 12:0 a.m.•10 views

Windows BITS Persistence Tool

This script implements a BITS-based persistence mechanism with an embedded HTTP server and remote payload delivery for Windows...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/02 12:0 a.m.•9 views

AI Model Extraction Attacks: Bypassing Single-Client Assumptions in Defenses

Ensuring the protection of Artificial Intelligence AI models deployed in military Command and Control C2 systems and critical infrastructure is essential for maintaining information superiority. Model Extraction Attacks MEAs pose a significant threat, as they enable adversaries to replicate...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/02 12:0 a.m.•10 views

TOR Virtual Network Tunneling Tool 0.4.9.9

Tor is a network of virtual tunnels that allows people and groups to improve their privacy and security on the Internet. It also enables software developers to create new communication tools with built-in privacy features. It provides the foundation for a range of applications that allow...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/02 12:0 a.m.•10 views

A Hybrid Approach for Malware Classification Using Secondary Features Fusion

The number of malware either variant or novel is rapidly increasing, making malware detection and mitigation a complex problem. One approach to improving malware mitigation is automatic detection and malware family classification. However, traditional malware detection methods cannot classify...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/02 12:0 a.m.•19 views

Samba Print Configuration Checker

This Python script is a lightweight configuration analysis tool designed to inspect Samba smb.conf printing settings and identify potentially unsafe print command configurations associated with command injection risks. It's written to target versions 4.22.10, 4.23.8 and 4.24.3...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/02 12:0 a.m.•12 views

From Untrusted Input to Trusted Memory: A Systematic Study of Memory Poisoning Attacks in LLM Agents

Memory is a core component of AI agents, enabling them to accumulate knowledge across interactions and improve performance. However, persistent memory introduces the risk of memory poisoning, where a single adversarial memory write can exert long-term influence over agent behavior. We present a...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/02 12:0 a.m.•38 views

Bastet: A Fine-Grained Expert-Labeled Dataset for DeFi Smart Contract Vulnerability Detection

Smart contract vulnerabilities in Decentralized Finance DeFi protocols resulted in over 1.49 billion USD in confirmed losses in 2024 alone, across 192 incidents 1. As LLM-based vulnerability detection emerges as a promising approach to address these threats, the quality of evaluation datasets has...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/02 12:0 a.m.•32 views

Detecting Aimbot Cheaters in MOGs

Multiplayer Online Games have become a multibillion dollar industry in the entertainment sector. However, the presence of cheaters undermines the experience of honest players and devalues the effort of game developers, as it directly affects player retention, competitive integrity, the legitimacy...

5.3AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/02 12:0 a.m.•55 views

Windows BITS Jobs Persistence Scanner

This is a Windows BITS Job auditing tool that scans all Background Intelligent Transfer Service BITS tasks using bitsadmin, then analyzes them for suspicious behavior such as executable downloads, command execution cmd.exe, powershell, and remote URLs. It classifies jobs as normal or suspicious a...

6AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/02 12:0 a.m.•16 views

The Role of Domain-Specific Features in Malware Detection: A MacOS Case Study

Despite the growing popularity of macOS among end users and enterprise systems, malware research has primarily focused on Windows and Android operating systems, leaving the problem of macOS malware detection relatively unexplored. Indeed, the specificity of the operating system and the unique...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/02 12:0 a.m.•10 views

Don't Trust Us: A Privacy-By-Design Android Malware Detection Pipeline

Android malware detection increasingly relies on collecting and processing sensitive user data, including device identifiers, network artifacts, and runtime traces, while privacy is too often treated as a secondary concern. Existing privacy-aware approaches typically enforce privacy after data...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/02 12:0 a.m.•27 views

Towards Intrusion Detection Systems for RPL-Based IoT Networks Using Foundation Models

AI-based intrusion detection systems IDS have shown promise in detecting attacks on IoT systems. In this work, we explore the use of foundation models to detect and identify attacks, with a specific focus on RPL-based IoT networks. We study multiple attack types, attack variations, and network...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/02 12:0 a.m.•24 views

FlowGuard: Flow Matching for Identity-Independent Detection of Data-Free Model Stealing Attacks on Energy System Intrusion Detection Systems

Artificial Intelligence AI-based Intrusion Detection Systems IDS deployed in energy infrastructure are vulnerable to model theft attacks, which allow adversaries to create evasive traffic offline. Current defences against model extraction rely either on identity-bound query monitoring, which is...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/01 12:0 a.m.•12 views

KubeSec V1 Kubernetes Scanner

KubeSec is a Kubernetes security auditing tool designed to identify dangerous RBAC permissions, insecure pod configurations, exposed secrets, privileged workloads, risky host mounts, weak network exposure, and cluster hardening weaknesses across Kubernetes environments. performs automated read-on...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/01 12:0 a.m.•12 views

AgentRedBench: Dynamic Redteaming and Integration-Aware Defense for LLM Agents over SaaS Integrations

Indirect prompt injection in tool-use agents is a concrete production threat: LLM agents read from integrations third-party services such as Gmail, Salesforce, or Jira accessed through tool calls whose response content the user neither writes nor controls. Existing benchmarks under-measure the...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/01 12:0 a.m.•29 views

UniFi Network Application Path Traversal Vulnerability Assessment Tool

This tool lets you safely detect whether a UniFi Network Application controller is vulnerable to CVE-2026-22557 without causing any disruption. CVE-2026-22557 is an unauthenticated path traversal vulnerability in the UniFi Network Application's guest captive portal that allows remote attackers to...

10CVSS6.2AI score0.15601EPSS
Exploits3
Packet Storm News
Packet Storm News
•added 2026/06/01 12:0 a.m.•10 views

Gate AI: LLM Security Benchmark Evaluation Methodology and Results

Published evaluations of prompt-injection and jailbreak detectors for Large Language Models often suffer from two systematic weaknesses: per-dataset threshold tuning and undisclosed operating points. We describe an evaluation harness that addresses both. The detector under evaluation is scored...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/01 12:0 a.m.•35 views

YellowKey Bitlocker Bypass Mitigation

YellowKey is a zero-day physical attack vulnerability discovered in May 2026 that allows attackers with physical access to completely bypass BitLocker encryption on Windows 11 devices. This is a mitigation that modifies the Windows Recovery Environment to remove or disable the vulnerable...

6.8CVSS6.1AI score0.01249EPSS
Exploits2
Packet Storm News
Packet Storm News
•added 2026/06/01 12:0 a.m.•11 views

MaskForge: Structure-Aware Adaptive Attacks for Jailbreaking Diffusion Large Language Models

Diffusion large language models dLLMs generate text by iteratively denoising partially masked sequences under bidirectional context, exposing a safety surface distinct from autoregressive LLMs. Because mask tokens are native inputs and tokens are committed by confidence rather than position,...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/01 12:0 a.m.•24 views

Apache ActiveMQ Jolokia Security Auditor

This is a security assessment tool for Apache ActiveMQ deployments that expose the Jolokia management interface. It verifies connectivity, evaluates authentication status, retrieves Jolokia agent information, and identifies accessible ActiveMQ broker instances through JMX endpoints...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/01 12:0 a.m.•12 views

Cross-Vendor Sola ISPM Benchmark: Evaluating Agentic AI for Federated Identity Security Reasoning

The rapid proliferation of multi-cloud and SaaS platforms has transformed Identity Security Posture Management ISPM into a fundamentally cross-vendor challenge: critical misconfigurations and privilege escalation paths increasingly span multiple identity providers, infrastructure layers, and...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/01 12:0 a.m.•75 views

PyFEX: Uncovering Evasive Python-Based Threats Via Resilient and Exhaustive Path Exploration

The rapid expansion of the Python ecosystem has fueled two distinct but converging threats: adversaries increasingly target the software supply chain via the Python Package Index PyPI, while also building evasive, cross-platform malicious binaries compiled from source code written in Python...

6AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/01 12:0 a.m.•10 views

OpenBMC Denial of Service / Authentication Bypass

OpenBMC suffers from denial of service and authentication bypass vulnerabilities...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/01 12:0 a.m.•20 views

Quantum Secure Blind Decryption with Two Users

We propose two types of protocols for quantum secure blind decryption, involving two users and servers. User 1 holds the encrypted ciphertext. The servers store several indexed keys including the key encrypting the ciphertext. User 2 aims to obtain the decrypted text. The protocols are designed t...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/01 12:0 a.m.•9 views

Patcher: Post-Hoc Patching of Backdoored Large Language Models

Large language models remain vulnerable to jailbreak backdoor attacks, where adversaries poison safety alignment data to embed hidden triggers that bypass safety mechanisms. Existing defenses often require comprehensive attack information or multiple triggered examples, making them impractical wh...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/01 12:0 a.m.•72 views

SkillGuard: A Permission Framework for Agent Skills

Agent skills extend LLM agents with reusable instructions, scripts, tool bindings, and contextual dependencies. However, current skill ecosystems largely rely on trust-based loading and static inspection, leaving a gap between what a skill can inject into an agent's context and what it can cause...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/01 12:0 a.m.•17 views

PeAR: A Static Binary Rewriting Framework for Binary-Only Fuzzing

Binary-only fuzzing is a key technique for finding bugs in close-source software. Without access to source code, the fuzzer must rely on static or dynamic binary instrumentation for coverage guidance. In practice, most fuzzers favor dynamic binary instrumentation DBI, accepting runtime overhead t...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/01 12:0 a.m.•14 views

SECUREVENT: Hybrid AI/ML Security Monitoring for Distributed Event-Based Systems

Distributed event-based systems have become a common substrate for Internet-scale publish/subscribe services, IoT telemetry, cloud-native microservices, and security operations pipelines. Their loose coupling and asynchronous delivery improve scalability, but they also expand the attack surface:...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/01 12:0 a.m.•12 views

SeClaw: Spec-Driven Security Task Synthesis for Evaluating Autonomous Agents

Autonomous LLM agents increasingly operate in stateful environments where they access tools, files, memory, and external services. While such capabilities enable complex real-world workflows, they also introduce security risks that are difficult to capture with existing evaluations. Current agent...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/01 12:0 a.m.•11 views

Human Factors in Cybersecurity in Icelandic Small and Medium-Sized Enterprises

Cybersecurity threats are increasing in all aspects of society due to the integration of digital systems into modern-day life and a volatile geo-political landscape. Technical factors are an ongoing arms race; however, the threat surface from human and social factors is still present, often...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/01 12:0 a.m.•13 views

FortiClient EMS 7.4.6 Detection Scanner

FortiClient EMS CVE-2026-35616 Detection Scanner is a non-destructive security assessment module designed to identify whether Fortinet hotfix protections for CVE-2026-35616 are properly applied on FortiClient EMS servers. The scanner performs safe behavioral validation by comparing server respons...

9.8CVSS6.1AI score0.88505EPSS
Exploits8
Packet Storm News
Packet Storm News
•added 2026/06/01 12:0 a.m.•11 views

DMonitor 1.0.3 Outbound Connection / Port Configuration Auditor

This Python script is an outbound connection and port configuration auditor for DMonitor version 1.0.3...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/01 12:0 a.m.•32 views

Espanso 2.3.0 Configuration Security Auditor

This Python script implements a security auditing tool for Espanso configuration files. The EspansoSecurityAuditor class scans Espanso match configurations for potentially dangerous shell commands, insecure permissions, and suspicious execution patterns that could indicate malicious automation or...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/01 12:0 a.m.•65 views

Poking around in the Dark: Why a Shared Understanding of Components Matters

By listing the components included in an application, Software Bills of Materials SBOMs are intended to support the timely identification of vulnerable components and ensure the security of the software supply chain. However, we question the underlying assumption that there is agreement on the...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/06/01 12:0 a.m.•23 views

Quantum Resonance Encryption for Secure Data Storage and Communication with Quantum Kicked Top

In a shared quantum computer, how to ensure data privacy and protection from access by unauthorized parties? We propose a genuine quantum protocol for protecting user's data which is not accessible even to the service provider. The protocol is based on quantum kicked top -- the dynamics of a spin...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/31 12:0 a.m.•21 views

Needles at Scale: LLM-Assisted Target Selection for Windows Vulnerability Research

The attack surface of a modern operating system is a haystack: thousands of signed binaries and millions of functions, almost none relevant to any given vulnerability. A human analyst or an LLM agent must pick the function worth reading before analyzing it. At whole-OS scope, this target selectio...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/31 12:0 a.m.•39 views

Formal Verification of Secure Encrypted Virtualization

Trusted execution environments TEEs provide a secure environment for data and code in use, ensuring that they are protected with respect to confidentiality and integrity. Virtual machine VM-based TEEs utilize virtualization technology to create isolated execution spaces that can support a complet...

6AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/31 12:0 a.m.•23 views

Defenses and Enablers for Skill Injection Attacks on Terminal Based Agents

Large language model LLM agents increasingly rely on reusable skills i.e. documents describing task-specific procedures. However, this introduces a new attack surface for agents to manage. We study two complementary directions for this threat. First, we evaluate guardian-based defenses: an...

5.7AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/31 12:0 a.m.•36 views

ClawHub Security Signals: When VirusTotal, Static Analysis, and SkillSpector Disagree

Agent skills extend AI agents with reusable instructions, tools, scripts, references, and workflows, establishing a security boundary distinct from both model safety and traditional package-malware detection. ClawHub Security Signals is a sanitized dataset of 67,453 latest public OpenClaw skill...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/31 12:0 a.m.•13 views

A New Framework for Cybersecurity Refusals in AI Agents

Agentic scaffolds have dramatically improved LLM performance on complex, long-horizon tasks, yielding both broad benefits and amplified risks in domains like cybersecurity. Existing benchmarks for AI agents in cybersecurity focus mainly on measuring proficiency--how effectively agents can complet...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/31 12:0 a.m.•12 views

On the Evaluation of Spiking Neural Network Configurations for Network Intrusion Detection

Network intrusion detection is a core component of modern cybersecurity infrastructure, yet the deep learning models that dominate the field are computationally demanding, motivating interest in lightweight alternatives suited to edge and neuromorphic deployment. Spiking Neural Networks SNNs are...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/30 12:0 a.m.•13 views

One (Thread) Can Keep a (PRNG) Secret, but Not Two

We present a novel, practical attack on the IPv6 Fragment ID generation algorithm of XNU, which is the kernel used by Apple products such as macOS and iOS. This attack exploits a race-condition vulnerability in the algorithm's pseudorandom number generator PRNG to cryptanalytically break, learn t...

5.9CVSS7.3AI score0.00687EPSS
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/30 12:0 a.m.•34 views

Quality-Diversity Evolution for Discovering Diverse Vulnerabilities in LLM Safety

Current approaches to LLM adversarial testing suffer from coverage gaps: manual red-teaming does not scale, LLM-as-attacker methods exhibit mode collapse, and gradient-based approaches produce uninterpretable gibberish. We introduce a quality-diversity evolutionary framework that operates at the...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/30 12:0 a.m.•20 views

A Lightweight Hybrid MLP-Based Framework for Real-Time Phishing URL Detection Using Structural URL Features

Phishing attacks remain a major cybersecurity threat, exploiting deceptive URLs to steal sensitive user information. Traditional blacklist and rule-based detection approaches are reactive and often fail to identify newly emerging phishing URLs. This paper proposes a lightweight hybrid framework f...

5.8AI score
Exploits0
Total number of security vulnerabilities6907