Lucene search
K
PacketstormnewsRecent

6803 matches found

Packet Storm News
Packet Storm News
•added 2026/05/08 12:0 a.m.•17 views

VIM Plugin Persistence

This Metasploit module creates a VIM Plugin which executes a payload on VIM startup...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/08 12:0 a.m.•11 views

Securing the Dark Matter: A Semantic-Enhanced Neuro-Symbolic Framework for Supply Chain Analysis of Opaque Industrial Software

Automated vulnerability detection in critical-infrastructure software confronts a fundamental barrier: industrial software is routinely deployed as stripped, symbol-free binaries that deprive conventional Software Composition Analysis of the source-level transparency it requires. Existing binary...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/08 12:0 a.m.•10 views

CodeQL 2.25.4

Discover vulnerabilities across a codebase with CodeQL, an industry-leading semantic code analysis engine. CodeQL lets you query code as though it were data. Write a query to find all variants of a vulnerability, eradicating it forever. Then share your query to help others do the same...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/08 12:0 a.m.•20 views

Forensic Analysis of Video Data Deletion and Recovery in Honeywell Surveillance File System

Real-time video surveillance systems store recorded video using digital video recorders DVRs and network video recorders NVRs. To support continuous high-volume video storage, these devices employ specialized, nonstandard file systems that are often proprietary and undocumented. This lack of...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/08 12:0 a.m.•9 views

Can I Check What I Designed? Mapping Security Design DSLs to Code Analyzers

When assessing the potential impact of code-level vulnerabilities, e.g., discovered by automated analyzers, it is essential to consider them in the context of the system's security design. However, this is a challenging task due to the abstraction gap between security design, often specified usin...

5.7AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/08 12:0 a.m.•14 views

Dash-Uploader 0.7.0a2 Denial of Service

dash-uploader versions 0.1.0 through 0.7.0a2 suffer from multiple denial of service vulnerabilities...

7.5CVSS5.8AI score0.02643EPSS
Exploits5
Packet Storm News
Packet Storm News
•added 2026/05/08 12:0 a.m.•8 views

An Automated Framework for Cybersecurity Policy Compliance Assessment against Security Control Standards

Organizational cybersecurity policies are often examined to determine whether they adequately comply standard security controls. This task is difficult because control statements are abstract, whereas policy documents describe governance practices in varied natural language. As a result,...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/08 12:0 a.m.•9 views

When the Ruler Is Broken: Parsing-Induced Suppression in LLM-Based Security Log Evaluation

LLM-based SOC log classifiers are commonly evaluated using regular-expression pipelines that extract structured fields from free-form model output. We demonstrate that this practice introduces a class of silent, systematic evaluation errors, which we term parsing-induced suppression that can caus...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/08 12:0 a.m.•52 views

Longitudinal Analyses of SAST Tools: A CodeQL Case Study

Open-source software OSS pipelines rely on automated static analysis tools to prevent the introduction of vulnerabilities in code. However, there is limited understanding of the efficacy of these tools across the OSS ecosystem over time. In this paper, we introduce a novel method to evaluate stat...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/08 12:0 a.m.•13 views

On the Security of Research Artifacts

Research artifacts are widely shared to support reproducibility, and artifact evaluation AE has become common at many leading conferences. However, AE mainly checks whether artifacts work as claimed and can be reproduced. It largely overlooks potential security risks. Since these artifacts are...

6AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/08 12:0 a.m.•11 views

Quantifiable Uncertainty: A Stochastic Consensus Multi-Agent RAG Framework for Robust Malware Detection

While contemporary deep learning malware detectors define a dominant defense paradigm, their sophistication also exposes them to novel structural evasion attacks, a limitation we attribute to their inherent inability to express epistemic uncertainty. To address this challenge, we present MAGMA, a...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/08 12:0 a.m.•9 views

Spying across Chiplets: Side-Channel Attacks in 2.5/3D Integrated Systems

Advanced packaging and chiplet-based integration are increasingly adopted to build complex heterogeneous systems beyond the limits of monolithic scaling. While these architectures offer major benefits in terms of modularity, yield, and performance, they also introduce new physical attack surfaces...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/08 12:0 a.m.•27 views

DarkMoon - the Open-Source AI-Powered Autonomous Penetration Testing Platform

DarkMoon is an automated penetration testing tool that orchestrates complete security assessments using artificial intelligence security agents. Built as an open-source cybersecurity tool, it enables organizations to run professional-grade vulnerability assessments without manual intervention...

6AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/08 12:0 a.m.•10 views

From Conceptual Scaffold to Prototype: A Standardized Zonal Architecture for Wi-Fi Security Training

Wi-Fi is the dominant wireless access technology, but its widespread use also exposes systems to threats such as rogue access points, deauthentication attacks, and other IEEE 802.11-specific vulnerabilities. Although Cyber Ranges CRs have become valuable platforms for cybersecurity training and...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/08 12:0 a.m.•13 views

SL5 Standard for AI Security

Security Level 5 SL5 is a security posture for AI systems that could plausibly thwart top-priority operations by the world's most cyber-capable institutions: those with extensive resources, state-level infrastructure, and expertise years ahead of the public state of the art. The SL5 terminology...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/08 12:0 a.m.•9 views

Hard to Read, Easy to Jailbreak: How Visual Degradation Bypasses MLLM Safety Alignment

Recent advancements in visual context compression enable MLLMs to process ultra-long contexts efficiently by rendering text into images. However, we identify a critical vulnerability inherent to this paradigm: lowering image resolution inadvertently catalyzes jailbreaking. Our experiments reveal...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/07 12:0 a.m.•11 views

Heimdallr: Characterizing and Detecting LLM-Induced Security Risks in GitHub CI Workflows

GitHub Continuous Integration CI workflows increasingly integrate Large Language Models LLMs to automate review, triage, content generation, and repository maintenance. This creates a new attack surface: externally controllable workflow inputs can shape LLM prompts and outputs, which may in turn...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/07 12:0 a.m.•18 views

Profiling for Pennies: Unveiling the Privacy Iceberg of LLM Agents

Large Language Models LLMs have revolutionized how information are collected, aggregated, and reasoned. However, this enables a novel and accessible vector of privacy intrusion: the automated and in-depth personal profiling; this engenders a chilling effect of "peepers everywhere". Existing...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/07 12:0 a.m.•16 views

Benchmarking Large Language Models for IoC Recovery under Adversarial Code Obfuscation and Encryption

Software obfuscation and encryption present persistent challenges for program comprehension and security analysis, particularly when adversaries conceal Indicators of Compromise IoCs such as IP addresses within source code. While Large Language Models LLMs have recently demonstrated remarkable...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/07 12:0 a.m.•12 views

MAGIQ: A Post-Quantum Multi-Agentic AI Governance System with Provable Security

Our computing ecosystem is being transformed by two emerging paradigms: the increased deployment of agentic AI systems and advancements in quantum computing. With respect to agentic AI systems, one of the most critical problems is creating secure governing architectures that ensure agents follow...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/07 12:0 a.m.•11 views

ClawGuard: Out-Of-Band Detection of LLM Agent Workflow Hijacking Via EM Side Channel

Autonomous LLM agents face a critical security risk known as workflow hijacking, where attackers subtly alter tool and skill invocations. Existing defenses rely on host-internal telemetry such as audit logs, which can be forged if the host OS is compromised. To solve this, we introduce ClawGuard,...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/07 12:0 a.m.•18 views

Stego Battlefield: Evaluating Image Steganography Attacks and Steganalysis Defenses

Image steganography is widely used to protect user privacy and enable covert communication. However, it can also be abused by the adversary as a covert channel to bypass content moderation, disseminate harmful semantics, and even hide malicious instructions in images to elicit dangerous outputs...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/07 12:0 a.m.•12 views

LCC-LLM: Leveraging Code-Centric Large Language Models for Malware Attribution

LLMs are increasingly explored for malware analysis; however, current LLM-based malware attribution remains limited by unsupported indicators and insufficient code-level grounding for identifying malicious and vulnerable code segments. To address these limitations, this research introduces LCC-LL...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/07 12:0 a.m.•33 views

On Fixing Insecure AI-Generated Code through Model Fine-Tuning and Prompting Strategies

The security of AI-generated code remains a major obstacle to its widespread adoption. Although code generation models achieve strong performance on functional benchmarks, their outputs frequently contain bugs and security weaknesses that undermine their trustworthiness. Prior work has explored a...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/07 12:0 a.m.•11 views

Beyond the Wrapper: Identifying Artifact Reliance in Static Malware Classifiers Using TRUSTEE

Modern cybersecurity relies heavily on static machine-learning-based malware classifiers. However, transformations such as packing and other non-semantic modifications applied to executable files limit their reliability. Malware classifiers often learn these unnecessary artifacts rather than the...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/07 12:0 a.m.•25 views

Autonomous Adversary: Red-Teaming in the Age of LLM

Language Model Agents LMAs are emerging as a powerful primitive for augmenting red-team operations. They can support attack planning, adversary emulation, and the orchestration of multi-step activity such as lateral movement, a core enabling capability of advanced persistent threat APT campaigns...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/07 12:0 a.m.•11 views

SkillScope: Toward Fine-Grained Least-Privilege Enforcement for Agent Skills

Agent Skills have become a practical way to extend LLM agents by packaging metadata, natural-language instructions, and executable resources into reusable capability bundles. However, this growing Skill ecosystem introduces a new compliance risk: a Skill may perform high-impact actions that excee...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/07 12:0 a.m.•10 views

TUANDROMD-X: Advanced Entropy and Visual Analytics Dataset for Enhanced Malware Detection and Classification

Malware and malware-based attacks are becoming more prevalent and complex. Attackers regularly come up with new techniques that have the ability to evade conventional and signature-based malware defense. In order to address such threats, there is an increasing demand for advanced and better defen...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/07 12:0 a.m.•9 views

Demystifying and Detecting Agentic Workflow Injection Vulnerabilities in GitHub Actions

GitHub Actions is increasingly used to deploy LLM-based agents for repository-centric tasks such as issue triage, pull-request review, code modification, and release assistance. These agentic workflows extend traditional CI/CD automation with agentic capabilities but also create a new injection...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/07 12:0 a.m.•11 views

A UEFI System with SPDM to Protect against Unauthorized Device Connections

Attackers willing to compromise computing systems can use malicious peripherals as an attack vector, threatening users that cannot verify the hardware's authenticity. To address this problem, our work uses the Security Protocol and Data Model to propose a UEFI system capable of authenticating PCI...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/07 12:0 a.m.•11 views

Cryptographic and Information-Theoretic Security Capacities for General Arbitrarily Varying Wiretap Channels

We compare the strong secrecy capacities of Arbitrarily Varying Wiretap Channels AVWCs and General Arbitrary Varying Wiretap Channels GAVWCs with their capacities under semantic secrecy constraint and other equivalent cryptographic secrecy constraints. It turns out that the average error and stro...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/07 12:0 a.m.•15 views

From Specification to Deployment: Empirical Evidence from a W3C VC + DID Trust Infrastructure for Autonomous Agents

Autonomous AI agents now transact at production scale -- 69,000 bots executing 165 million transactions across 50 million USDC in cumulative volume on a single marketplace -- without any shared trust layer between participants. Regulatory frameworks Singapore IMDA, NIST CAISI, EU AI Act and major...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/06 12:0 a.m.•17 views

AoI-Guided Client Selection for Robust and Timely Federated Intrusion Detection in Cloud-Edge Security Analytics

Federated learning FL is attractive for cloud-edge intrusion detection because it enables collaborative training over distributed telemetry without centralizing raw logs. In production security analytics pipelines, however, only a subset of clients participates in each round, and heterogeneous...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/06 12:0 a.m.•14 views

A Novel Byte-Level Flow-To-Image Encoding Method for Network Intrusion Detection Systems

Network-based Intrusion Detection Systems IDS are predominantly trained on tabular flow records, whose one-dimensional representations limit convolutional architectures from exploiting inter-feature spatial correlations. This paper presents a novel byte-level flow-to-image encoding method that...

5.7AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/06 12:0 a.m.•24 views

GLiNER Guard: Unified Encoder Family for Production LLM Safety and Privacy

Production LLM systems require both safety moderation and PII detection under strict latency and cost constraints. This creates a trade-off: autoregressive moderators are accurate but expensive, while lightweight encoders are faster but less capable. We present GLiNER Guard GLiGuard, a unified...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/06 12:0 a.m.•11 views

Securing the Web with HSTS-Enforced

TLS stripping attacks expose sensitive web traffic by forcing secure HTTPS connections to fall back to unencrypted HTTP. At present, protection against these attacks relies on website operators explicitly opting into security by deploying mechanisms such as HTTP Strict Transport Security HSTS...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/06 12:0 a.m.•13 views

Age Verification in the Web -- Holy Grail to Control Access to Restricted Content

Age verification before accessing restricted content is critical to protecting minors from exposure to harmful material such as pornography, gambling, violence, hateful speech, and substance purchases like alcohol and tobacco. Currently, the absence of reliable age-checking mechanisms allows...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/06 12:0 a.m.•10 views

Pen-Strategist: A Reasoning Framework for Penetration Testing Strategy Formation and Analysis

Cyber threats are rapidly increasing, expanding their impact from large-scale enterprises to government services and individual users, making robust security systems increasingly essential. However, a significant shortage of skilled cybersecurity professionals exacerbates this challenge. While...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/06 12:0 a.m.•19 views

Gray-Box Poisoning of Continuous Malware Ingestion Pipelines

Modern malware detection pipelines rely on continuous data ingestion and machine learning to counter the high volume of novel threats. This work investigates a realistic gray-box poisoning threat model targeting these pipelines. Using the secmlmalware framework, we generate problem-space...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/06 12:0 a.m.•25 views

DecodingTrust-Agent Platform (DTap): A Controllable and Interactive Red-Teaming Platform for AI Agents

AI agents are increasingly deployed across diverse domains to automate complex workflows through long-horizon and high-stakes action executions. Due to their high capability and flexibility, such agents raise significant security and safety concerns. A growing number of real-world incidents have...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/06 12:0 a.m.•10 views

AgentTrust: Runtime Safety Evaluation and Interception for AI Agent Tool Use

Modern AI agents execute real-world side effects through tool calls such as file operations, shell commands, HTTP requests, and database queries. A single unsafe action, including accidental deletion, credential exposure, or data exfiltration, can cause irreversible harm. Existing defenses are...

6.1AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/06 12:0 a.m.•13 views

Evolution of Log-Based Detection Rules in Public Repositories

Log-based detection rules remain central to modern security operations, encoding domain expertise that analysts iteratively refine to balance detection coverage against alert volume. Yet while prior work has examined the evolution of network intrusion detection signatures, the longitudinal behavi...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/06 12:0 a.m.•8 views

Apache HTTP Server 2.4.66 Double-Free / Remote Code Execution

Apache HTTP Server version 2.4.66 suffers from a double-free vulnerability related to the HTTP/2 protocol that can allow for remote code execution...

8.8CVSS6.3AI score0.4581EPSS
Exploits16
Packet Storm News
Packet Storm News
•added 2026/05/06 12:0 a.m.•24 views

SecureMCP: A Policy-Enforced LLM Data Access Framework for AIoT Systems Via Model Context Protocol

The deployment of Large Language Model LLM-generated SQL queries in Artificial Intelligence of Things AIoT systems introduces critical security risks, as prompt injection attacks can manipulate LLMs into producing unauthorized queries that expose sensitive data or execute destructive operations...

6.2AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/06 12:0 a.m.•6 views

Joern 4.0.534

Joern is the bug hunter's workbench. With this tool, you can uncover attack surface, sloppy coding practices, and variants of known vulnerabilities using an interactive code analysis shell. Joern supports C, C++, LLVM bitcode, x86 binaries via Ghidra, JVM bytecode via Soot, and Javascript...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/06 12:0 a.m.•27 views

AFL-ICP: Enhancing Industrial Control Protocol Reliability Via Specification-Guided Fuzzing

Industrial Control Protocols ICPs are critical to the reliability and stability of industrial infrastructure, yet their security is fundamentally compromised by a specification-blindness bottleneck. Modern fuzzers, constrained by observation-driven inference, struggle to penetrate deep protocol...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/06 12:0 a.m.•11 views

Agentic Vulnerability Reasoning on Windows COM Binaries

Windows Component Object Model COM services run with elevated privileges and are widely accessible to authenticated users, making race conditions in these binaries a critical surface for local privilege escalation. We present SLYP, an end-to-end agentic pipeline that discovers race condition...

5.7AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/06 12:0 a.m.•24 views

YARA-X 1.16.0

YARA-X is a re-incarnation of YARA, a pattern matching tool designed with malware researchers in mind. This new incarnation intends to be faster, safer and more user-friendly than its predecessor. The ultimate goal of YARA-X is replacing YARA as the default pattern matching tool for malware...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/06 12:0 a.m.•11 views

Evaluating the Reliability of Multiple Large Language Models in Risk Assessment: A CIS Controls Based Approach

Proper implementation of technical and administrative controls reinforces an organization's cybersecurity posture and business resilience, reduces risks, and enhances governance, ultimately elevating business maturity. The dynamics of the technological landscape and emerging threats negatively...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
•added 2026/05/06 12:0 a.m.•12 views

PINSIGHT: A Comprehensive Threat Exploration of Domain-Adaptive Wi-Fi Based PIN Code Inference

Wi-Fi signals can be exploited by adversaries as a sensing side channel to eavesdrop on physical information. By monitoring propagation effects of radio waves within the victim's environment, attackers can remotely infer sensitive information. One particularly concerning example is PIN code...

5.8AI score
Exploits0
Total number of security vulnerabilities6803