Aggregator

内网渗透该怎么学-小白篇

朝鲜组织Kimsuky投放xml恶意软件

Vaadin New Gadgets分享

活动正式开始｜14家SRC邀您加入双11安全保卫战

点击上方蓝字关注我们随着技术的进步和全球安全环境的变化，美国情报界的领域也在不断扩展，包括网络安全、数据科学、

对黎巴嫩BP机爆炸的硬件拆解分析。

你们面临的大多数问题我们都已经处理过了。所以我真心相信，如果你认真阅读并理解这里的知识，你将会更好地为成功做好准备。

NetAlertX – Network scanner & notification framework Get visibility of what’s going on on your WIFI/LAN network. Schedule scans for devices, port changes and get alerts if unknown devices or changes are found. Write...

The post NetAlertX: WIFI/LAN intruder detector appeared first on Penetration Testing Tools.

BotKube BotKube integration with Slack, Mattermost, or Microsoft Teams helps you monitor your Kubernetes cluster, debug critical deployments, and gives recommendations for standard practices by running checks on the Kubernetes resources. You can also ask BotKube to execute...

The post botkube: monitor your Kubernetes cluster, debug critical deployments appeared first on Penetration Testing Tools.

chainsaw –  Rapidly Search and Hunt through Windows Event Logs Chainsaw provides a powerful “first-response” capability to quickly identify threats within Windows event logs. It offers a generic and fast method of searching through...

The post chainsaw: Rapidly Search and Hunt through Windows Event Logs appeared first on Penetration Testing Tools.

Feds: 3 Defendants Acted on Behalf of Iran’s Military to Interfere With US Election
The United States indicted three Iranian hackers, alleging they stole sensitive data from government officials and the campaign of President Donald Trump. The hackers reportedly worked with the Iranian Revolutionary Guard to spread disinformation and manipulate the 2024 U.S. elections.

Exploitation Requires Victim to Print On Rogue Printer
Attackers can exploit a series of vulnerabilities in the OpenPrinting Common Unix Printing System utility to remotely execute arbitrary code on certain machines. Major Linux distributions reacted Friday by releasing patches. Exploitation requires a victim to attempt to print from a malicious device.

Fine Is For 2019 Disclosure That Meta Stored User Passwords In Plaintext
The Irish data regulator fined social media giant Meta 91 million euros after an investigation found the company insecurely stored passwords of millions of European Facebook and Instagram users. A Meta spokesperson said the company identified the problem in 2019 and took "immediate action."

The U.K. antitrust regulator called off an investigation into the March $4 billion deal between Amazon and artificial intelligence firm Anthropic. "Amazon’s partnership with Anthropic does not qualify for investigation under the merger provisions of the Enterprise Act 2002," the regulator said.

因密码泄露事件 Meta 遭爱尔兰罚款 9100 万欧元； 前腾讯 Robotics X 控制中心负责人郑宇加入「人形机器人第一股」优必选； 三只羊卢某录音门嫌疑人被抓：用国产 AI 合成录音，平台已配合调查

A vulnerability, which was classified as critical, was found in Zenturi ProgramChecker 1.5.0.531. Affected is an unknown function in the library sasatl.dll of the component ActiveX Control. The manipulation leads to memory corruption. This vulnerability is traded as CVE-2007-3984. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

A vulnerability classified as problematic has been found in Microsoft Internet Explorer. Affected is an unknown function of the file explorer.exe of the component GIF File Handler. The manipulation leads to denial of service. This vulnerability is traded as CVE-2007-3958. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

A vulnerability, which was classified as critical, was found in Linux Kernel up to 6.9.5. Affected is the function cancel_gc of the component netfilter. The manipulation leads to use after free. This vulnerability is traded as CVE-2024-39503. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.