Aggregator

报税类银狐最新攻击样本分析

国家级黑客钓鱼攻击某985大学，但，翻车了

国家级黑客钓鱼攻击某985大学，但，翻车了

SRUM-DUMP2 SRUM Dump extracts information from the System Resource Utilization Management Database and creates an Excel spreadsheet. The SRUM is one of the best sources for applications that have run on your system in...

The post SRUM Dump: extracts information from the System Resource Utilization Management Database appeared first on Penetration Testing Tools.

Nebula Nebula is an AI-powered assistant specifically designed for the field of ethical hacking. It provides a unique capability for users to input commands using natural language processing, facilitating a seamless transition from intent...

The post nebula: AI-Powered Ethical Hacking Assistant appeared first on Penetration Testing Tools.

A previously disclosed vulnerability in NVIDIA Container Toolkit has an incomplete patch, which, if exploited, could put a wide range of AI infrastructure and sensitive data at risk.

在某项目渗透过程中遇到了瑞数vmp防护，具体表现为不能重放数据包，重放时会报400或者412错误。

关于如何识别瑞数vmp和其版本，可以看这里：

Feng Office 3.11.1.2 - SQL Injection

Cisco Smart Software Manager On-Prem 8-202206 - Account Takeover

Centron 19.04 - Remote Code Execution (RCE)

PandoraFMS 7.0NG.772 - SQL Injection

K7 Ultimate Security K7RKScan.sys 17.0.2019 - Denial Of Service (DoS)

CodeAstro Online Railway Reservation System 1.0 - Cross Site Scripting (XSS)

Cosy+ firmware 21.2s7 - Command Injection

Typecho 1.3.0 - Race Condition