Lucene search
K
PacketstormnewsRecent

6788 matches found

Packet Storm News
Packet Storm News
added 2026/06/15 12:0 a.m.8 views

MIPSBLEED: Uncovering Microarchitectural Timing Leaks in Pervasive Embedded Processors

Despite their age, MIPS processors remain deeply embedded in routers, industrial controllers, and IoT systems, yet their security against modern side-channel attacks has received little attention. This paper exposes how Simultaneous Multithreading SMT, a feature increasingly used to boost...

5.6AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/15 12:0 a.m.11 views

FreeType SHZ Patch Validation Harness for Safe Glyph Processing Verification

This C validation tool is designed to verify that a security fix for a suspected SHZ-related vulnerability in the FreeType TrueType interpreter behaves correctly after patching...

5.3AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/15 12:0 a.m.5 views

SoK: Taxonomizing the Low-Level Attack Surface of Modern Web Browsers

The web browser remains one of the most exposed remote attack surfaces on end-user systems, and memory-corruption flaws continue to play a central role in real-world browser exploitation. Despite a decade of intensive browser testing and bug-disclosure efforts, the community still lacks an...

5.7AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/15 12:0 a.m.14 views

Dynamic Malicious Skills in Agentic AI

Skills are a key enabling component of agentic AI. While they enhance agents' capabilities, they also introduce new attack surfaces. In this work, we investigate one such attack surface by demonstrating dynamic malicious skills. By embedding malicious instructions in natural-language documentatio...

5.3AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/15 12:0 a.m.10 views

YARA-X 1.18.0

YARA-X is a re-incarnation of YARA, a pattern matching tool designed with malware researchers in mind. This new incarnation intends to be faster, safer and more user-friendly than its predecessor. The ultimate goal of YARA-X is replacing YARA as the default pattern matching tool for malware...

5.3AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/15 12:0 a.m.11 views

BGP Health Check Scanner

This Ruby script implements a lightweight network scanner for basic health verification of a BGP service. It connects to a target TCP port default 179 and performs a minimal, non-exploitative handshake using simplified BGP OPEN and KEEPALIVE messages based on the protocol structure used by the BI...

5.3AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/15 12:0 a.m.12 views

FreeType Glyph Loader for Font Parsing Validation

This Python script uses the FreeType bindings to load and inspect a specified TrueType font file and test glyph parsing behavior for a chosen glyph index. It initializes a font face, displays basic metadata such as the font family name and glyph count, then attempts to load a target glyph using...

5.3AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/15 12:0 a.m.11 views

Joern 4.0.558

Joern is the bug hunter's workbench. With this tool, you can uncover attack surface, sloppy coding practices, and variants of known vulnerabilities using an interactive code analysis shell. Joern supports C, C++, LLVM bitcode, x86 binaries via Ghidra, JVM bytecode via Soot, and Javascript...

5.3AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/15 12:0 a.m.6 views

Graph Neural Networks at War: Integrating Cybersecurity and Drone Intelligence in the Israeli-Iranian Conflict

Physical cyber systems have brought about new threats and challenges in detection and immediate response. This study examines how Graph Neural Networks GNNs can be used to aid cybersecurity and drone management in a physical cyber system comprising of cyber intrusions and unmanned aerial vehicles...

5.3AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/15 12:0 a.m.14 views

FreeType Scanner for Structural Anomaly Detection

This Python utility implements a heuristic analysis framework for inspecting TrueType glyph metadata and identifying structurally unusual or potentially problematic glyph configurations...

5AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/15 12:0 a.m.9 views

How Much Can We Trust LLM Search Agents? Measuring Endorsement Vulnerability to Web Content Manipulation

Large language model LLM-based search agents synthesize open-web content into actionable recommendations on behalf of users, creating a risk that attacker-published pages are transformed into endorsed claims. We introduce SearchGEO, a controlled evaluation framework for measuring endorsement...

5.4AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/15 12:0 a.m.12 views

From Third-Party to First-Party: Measuring and Protecting against Modern Web Tracking Mechanisms

Web user tracking has always been a cat-and-mouse game between privacy-conscious users and trackers. Recently, this conflict has driven a shift from third-party tracking toward first-party tracking FPT and server-side tracking SST. By relocating tracking logic to the browser's first-party context...

5.4AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/15 12:0 a.m.12 views

Di5Guise: 5G Privacy with VSIM

SIM cards have been the key building block of user authenticationand security in cellular networks. While they are meant to serve as privacy protecting elements in cellular communications, they can be the root cause of privacy loss. Current eSIMs come with a fixed device profile--comprising a...

5.3AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/15 12:0 a.m.7 views

SoK: Security and Privacy of Foundation-Model-Powered Robots

Foundation models are reshaping robotics by enabling robots to interpret open-ended instructions, reason over multimodal contexts, and operate in complex, open-world environments. However, their integration also introduces security and privacy S&P risks that extend beyond the FMs themselves to...

5.6AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/15 12:0 a.m.4 views

ARVO: Atlas of Reproducible Vulnerabilities for Open-Source Software

Achieving reproducibility, quantity, and diversity in vulnerability datasets has long been viewed as an inherent three-way trade-off, where improving one dimension often comes at the cost of the others. In practice, reproducibility has been the dimension most often neglected. This has limited wha...

5.4AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/15 12:0 a.m.11 views

SPARK: Security Knowledge Priming and Representation-Guided Knowledge Activation for LLM-Based Secure Code Generation

Large language models routinely generate code with exploitable security flaws. Prior literature attributes this limitation to a lack of security expertise, steering current defense mechanisms toward heavy fine-tuning or external knowledge retrieval, which introduces significant computational...

5.4AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/14 12:0 a.m.18 views

Obliv-Clang: Real-World Oblivious Programming in C++

Side-channel vulnerabilities, particularly timing and access-pattern-based attacks, have become critical issues for confidential data processing in trusted environments. Oblivious programming is an effective approach to alleviate these attacks by making program execution not leak any secret throu...

5.7AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/14 12:0 a.m.8 views

FuseChain: Runtime Evidence Reconstruction for Software Supply-Chain Attacks

Software supply-chain SSC attacks are increasingly multi-stage, cross-source, and temporally distributed. A single attack campaign may leave weak and fragmented traces across multi-source telemetry that captures different granularities and perspectives of runtime behavior. Existing runtime...

5.4AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/14 12:0 a.m.13 views

SkillVetBench: LLM-As-Judge for Multi-Dimensional Security Risk Evaluation in Open-Source LLM Agent Skills

Open-source LLM agent ecosystems are growing rapidly, yet the security of community-contributed skills - modular tool definitions that extend agent capabilities - remains largely unvetted. The gap we fill: existing scanners operate at the code layer and are structurally blind to instruction-layer...

5.5AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/14 12:0 a.m.27 views

Snyk VulnBench JS 1.0: Can LLMs Find the Same Bugs Twice?

We ran 300 repeated vulnerability-finding scans to measure how repeatable agentic large language model LLM security review is on the same JavaScript code, prompt, and benchmark harness. The headline result is that LLM security findings were unevenly repeatable: reference-matched findings were...

5.4AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/14 12:0 a.m.9 views

MASCOT-Android: A Curated Dataset and Automated Collection Pipeline for Android Malware Source Code Specimens

Compared with binaries and decompiled code, malware source code more directly reflects the attackers' original intent. However, the scarcity of source code and the high cost of manual review make such datasets difficult to build and maintain. We propose MASCOT-Android, a curated dataset of Androi...

5.3AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/14 12:0 a.m.10 views

AttackonCTF: Defending Hardware Security Competition Benchmarks in the Age of LLMs

Hardware security competitions such as HackTheSilicon serve as benchmarking platforms for evaluating vulnerability detection methods and for training humans and AI. However, our study reveals that LLMs threaten their validity. Instead of genuine security reasoning, detectors exploit a diff-style...

5.3AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/14 12:0 a.m.19 views

Binary Decompilation LLM with Feedback-Driven Multi-Turn Refinement

Binary decompilation is fundamental to security tasks such as vulnerability discovery, malware inspection, and executable-only program understanding. Recent LLM-based decompilation methods have shown promising results, but most still follow a single-turn generation paradigm: given assembly code o...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/13 12:0 a.m.26 views

LLM: LSTM Look-Ahead Moving Target Defense Based on Historical Malicious Scan

Network scanning is a critical preliminary step for most adversaries to gain essential information before launching cyber attacks. Moving Target Defense MTD based on IP shuffling has emerged as a proactive defense strategy to counteract these reconnaissance efforts. Unlike static, reactive defens...

5.5AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/13 12:0 a.m.7 views

Data-Centric Benchmarking of Exploit Generation in LLMs: Understanding the Impact of Fine-Tuning

We study the task of CVE-conditioned exploit generation, where a model drafts proof-of-concept PoC exploits given software vulnerability context. We adopt a data-centric approach, constructing a high-quality dataset via multi-stage preprocessing and introducing a scalable evaluation framework wit...

5.4AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/13 12:0 a.m.8 views

The Audit Gap in Blockchain Security: A Four-Year Empirical Study of Public Audit Findings and Real-World Exploit Incidents

This paper presents an empirical analysis of the Web3 security landscape over the four-year and three-month period from 1 January 2022 to 27 March 2026. The dataset combines 23,818 public audit findings produced by 22 independent security firms with 218 real-world exploit incidents documented by...

5.3AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/12 12:0 a.m.7 views

HTTP/2 Exposure Auditor

The script safely evaluates HTTP/2 exposure by negotiating ALPN, initiating a minimal HTTP/2 session, collecting server SETTINGS frames, and identifying potentially permissive protocol configurations. It avoids stream amplification, flooding behavior, connection fan-out, and sustained resource...

5.3AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/12 12:0 a.m.18 views

Breaking TinyML: Why Quantized Neural Networks Need Domain-Specific Security Analysis

Most TinyML hardware accelerators focus on supporting Quantized Neural Networks QNNs to meet stringent constraints on power consumption and size. Despite this, the security aspects of quantization within TinyML hardware remain largely unexplored. Although previous studies indicate that QNNs...

5.4AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/12 12:0 a.m.5 views

Security Threats and Their Impact on Blockchain Interoperability: Identification and Countermeasures

Blockchain interoperability enables independent blockchain systems to communicate and exchange assets across heterogeneous networks. However, the lack of comprehensive security mechanisms remains a critical weakness -- one that attackers have already exploited to cause hundreds of millions of...

5.4AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/12 12:0 a.m.18 views

Ultra-Broadband Anti-Jamming Communication Via a Rydberg Atomic Receiver

Ultra-broadband anti-jamming communication represents a promising approach to secure and robust information transfer through spread-spectrum techniques, effectively combatting malicious interference and eavesdropping. Rydberg atoms, enhanced by waveguide coupling, facilitate ultra-broadband...

5.2AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/12 12:0 a.m.10 views

Security in a Workflow: Exploring Role-Based Agentic Architectures for Vulnerability Handling

Secure software engineering in practice is a multi-stage workflow involving vulnerability analysis, remediation, and fix verification. However, current LLM-based software security approaches often focus on isolated tasks such as detection or patch generation, with limited attention to agentic...

5.4AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/12 12:0 a.m.7 views

Investigating Metamorphic Fuzz Oracle Enhancement Via Large Language Models

Fuzz drivers are essential components of greybox fuzzing, as they encapsulate target interfaces, define test spaces, and largely determine fuzzing effectiveness. Existing fuzz drivers typically rely on crash-based oracles for security testing, overlooking library functionality and limiting bug...

5.3AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/12 12:0 a.m.21 views

Evaluating LLMs for Obfuscation Detection and Classification in Android Apps

Android applications apps developers increasingly rely on code obfuscation techniques to hinder reverse engineering and protect intellectual property. However, obfuscation also reduces the effectiveness of static analysis and vulnerability detection tools, creating challenges for Android security...

5.4AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/12 12:0 a.m.17 views

Giving AI a Headache: Acoustic Adversarial Attacks to Computer Vision Applications

Artificial Intelligence AI is increasingly used to automate a variety of real-world computer vision CV applications, such as autonomous vehicle control, facial recognition, and security cameras. Recent research has shown that acoustic vibration can induce real physical motion in cameras,...

5.2AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/12 12:0 a.m.8 views

Joern 4.0.557

Joern is the bug hunter's workbench. With this tool, you can uncover attack surface, sloppy coding practices, and variants of known vulnerabilities using an interactive code analysis shell. Joern supports C, C++, LLVM bitcode, x86 binaries via Ghidra, JVM bytecode via Soot, and Javascript...

5.3AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/12 12:0 a.m.8 views

Palo Alto GlobalProtect TLS Posture Scanner

This Metasploit auxiliary module is structured as a defensive assessment tool focused on TLS posture analysis and service identification for GlobalProtect deployments...

5.3AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/12 12:0 a.m.7 views

Security Engineering of OpenClaw: Analyzing Attack Surface Expansion and Trust-Boundary Violations

Agentic large language model LLM systems can now execute actions, not only produce text. When model outputs trigger privileged operations such as shell commands, browser automation, or external tool calls, the security problem shifts from alignment alone to system configuration and structural...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/12 12:0 a.m.9 views

FreeType Automated Font Corpus Scanner

This Python framework implements a structured font-analysis pipeline for large-scale robustness testing of FreeType font parsing behavior...

5.2AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/12 12:0 a.m.25 views

FortiSandbox Endpoint Validation Tool

This Python script is a utility designed to evaluate the exposure and configuration state of a FortiSandbox deployment through publicly reachable management endpoints...

5.3AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/12 12:0 a.m.8 views

FreeType Experimental TrueType Glyph Construction

This Python code outlines an experimental framework for constructing synthetic TrueType font structures intended for studying parser behavior, glyph-processing logic, and edge-case handling within font-rendering pipelines...

5.3AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/12 12:0 a.m.27 views

Detecting Bot Detection: Prevalence, Techniques, and Implications for Web Measurement Research

Browser automation frameworks are essential tools for security and privacy research on the web, yet bot detection scripts increasingly probe their artifacts, threatening measurement validity as automated browsers may be blocked or served different content. Prior work measures detection deployment...

5.3AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/12 12:0 a.m.7 views

FreeType Contour Boundary Validation Utility

This is a FreeType contour boundary validation utility for detecting indexing and integer-limit risks. It implements a validation routine for detecting unsafe contour metadata conditions by evaluating contour counts and index boundaries against expected limits...

5.3AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/11 12:0 a.m.21 views

Information Flow Paths from RTL Traces

Security validation is an important yet challenging part of the hardware design process, yet, by convention, validation engineers are tasked with defining the threat model, specifying the relevant security properties, detecting any violations of those properties, and assessing the consequences to...

5.3AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/11 12:0 a.m.10 views

LNTest: A Testbed for Evaluating Bitcoin Lightning Network-Based Botnets

Bitcoin's Lightning Network LN can be exploited as a covert, low-cost command-and-control C&C channel for botnets, as demonstrated by the LNBot and D-LNBot designs. However, both remain proof-of-concept prototypes evaluated only through simulation, leaving key questions about real-world topology...

5.4AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/11 12:0 a.m.8 views

Side-Channel Attacks Bypass Protection in 3D Printers

Active Motor Noise Cancellation AMNC ships in commercial fused deposition modeling FDM 3D printers as a hardware countermeasure against acoustic side-channel attacks that target intellectual property IP. We present the first empirical evaluation of a deployed AMNC countermeasure, using a public...

5.4AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/11 12:0 a.m.21 views

Safety-Contract Graph Multi-Agent Reinforcement Learning for Autonomous Network Security Response

Autonomous network-security response systems promise to reduce Security Operations Centre SOC reaction latency, but reward-only multi-agent reinforcement learning MARL can improve security reward while remaining non-deployable. We present a safety-contract graph MARL framework and instantiate it ...

5.3AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/11 12:0 a.m.19 views

Pseudonym Scheme Based on Hybrid Certificates for Security Credential Management System in Vehicular Communications

In recent years, the Institute of Electrical and Electronics Engineers IEEE and the European Telecommunications Standards Institute ETSI have developed a series of security communication standards for vehicular communications. These standards include mechanisms such as the Security Credential...

5.4AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/11 12:0 a.m.12 views

VS Code Extension Persistence

This Metasploit module installs a malicious VS Code extension into the target's VS Code extensions directory. The extension executes the payload each time VS Code is launched, providing persistent code execution. Supports VS Code, VS Code Insiders, VSCodium, VS Code Server, and Cursor. Tested...

5.5AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/11 12:0 a.m.24 views

SEVRA-BENCH: Social Engineering of Vulnerabilities in Review Agents

Large language model LLM reviewers are increasingly used in pull-request PR workflows, where their approvals help decide which code is merged into a repository. This raises a question that benchmarks for static vulnerability detection or code generation do not address: can an automated reviewer...

5.5AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/11 12:0 a.m.18 views

DNGBehaviorAnalyzer Telemetry-Based DNG/TIFF Metadata Parser and Anomaly Detection

This Python script provides a telemetry-driven analysis framework for inspecting Digital Negative DNG files through low-level TIFF metadata parsing and runtime event logging. The tool reads and validates TIFF headers, traverses Image File Directory IFD entries, and records parser activity using...

5.6AI score
Exploits0
Total number of security vulnerabilities6788