Aggregator

A vulnerability has been found in Apple watchOS up to 5.1.2 and classified as critical. Affected by this vulnerability is an unknown functionality of the component FaceTime. The manipulation leads to memory corruption. This vulnerability is known as CVE-2019-6224. The attack can be launched remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in aGSM 2.35c/2.51c and classified as critical. Affected by this issue is some unknown functionality. The manipulation leads to memory corruption. This vulnerability is handled as CVE-2004-2277. The attack may be launched remotely. Furthermore, there is an exploit available.

bloodyAD BloodyAD is an Active Directory Privilege Escalation Framework. This tool can perform specific LDAP/SAMR calls to a domain controller in order to perform AD privesc. It supports authentication using cleartext passwords, pass-the-hash, pass-the-ticket,...

The post bloodyAD: Active Directory Privilege Escalation Framework appeared first on Penetration Testing Tools.

Muraena Muraena is an almost-transparent reverse proxy aimed at automating phishing and post-phishing activities. The tool re-implements the 15-years old idea of using a custom reverse proxy to dynamically interact with the origin to be...

The post muraena: almost-transparent reverse proxy aimed at automating phishing and post-phishing activities appeared first on Penetration Testing Tools.

Makes A software supply chain framework powered by Nix. Ever needed to run applications locally to try out your code? Execute CI/CD pipelines locally to make sure jobs are being passed. Keep execution environments frozen...

The post makes: DevSecOps framework appeared first on Penetration Testing Tools.

Как крошечная муха привела к огромным открытиям.

环境异常 当前环境异常，完成验证后即可继续访问。 去验证

01阅读须知此文所提供的信息只为网络安全人员对自己所负责的网站、服务器等（包括但不限于）进行检测或维护参考，未经授权请勿利用文章中的技术资料对任何计算机系统进行入侵操作。利用此文所提供的信息而造成的直

01欢迎加入社区为了更好地应对基于.NET技术栈的风险识别和未知威胁，dotNet安全矩阵星球从创建以来一直聚焦于.NET领域的安全攻防技术，定位于高质量安全攻防星球社区，也得到了许多师傅们的支持和信

A vulnerability, which was classified as problematic, has been found in Digital Hive DigitalHive 2.0. Affected by this issue is some unknown functionality of the file base.php. The manipulation of the argument mt leads to cross site scripting. This vulnerability is handled as CVE-2008-1985. The attack may be launched remotely. Furthermore, there is an exploit available.

阿里发布 Qwen-Agent 框架，赋能开发者构建复杂 AI 智能体；Anthropic 让步：Claude AI 不再生成受版权保护的歌词；比亚迪发布汉 / 唐 L 设计图

全球航天新年首飞，SpaceX 发射阿联酋卫星北京时间 1 月 4 日晨，猎鹰 9 号火箭从卡纳维拉尔角太空军基地发射升空，将阿联酋通信卫星 Thuraya 4-NGS 送入轨道。起飞 8 分 40

A vulnerability has been found in Activestate Activeperl up to 5.8.3 and classified as critical. This vulnerability affects unknown code. The manipulation leads to integer coercion error. This vulnerability was named CVE-2004-2286. The attack can be initiated remotely. Furthermore, there is an exploit available.

Plaintiffs Sued After Report that Apple Eavesdropped on Intimate Moments
Apple agreed to pay $95 million to settle a lawsuit accusing the smart device giant of illegally recording audio through its Siri virtual assistant and sharing extracts with human reviewers. Class members who purchased Siri-enabled devices could receive $20 per device.

Plaintiffs Sued After Report that Apple Eavesdropped on Intimate Moments
Apple agreed to pay $95 million to settle a lawsuit accusing the smart device giant of illegally recording audio through its Siri virtual assistant and sharing extracts with human reviewers. Class members who purchased Siri-enabled devices could receive $20 per device.

A vulnerability was found in Microsoft Windows 2000/Server 2003/XP and classified as critical. This issue affects some unknown processing of the component Routing/Remote Access Service. The manipulation as part of RPC Request leads to memory corruption. The identification of this vulnerability is CVE-2006-2370. The attack may be initiated remotely. Furthermore, there is an exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability has been found in Microsoft Internet Explorer up to 6 and classified as critical. This vulnerability affects unknown code of the component HTA Handler. The manipulation leads to memory corruption. This vulnerability was named CVE-2006-1388. The attack can be initiated remotely. There is no exploit available. It is recommended to replace the affected component with an alternative.