Aggregator

既是挑战，也是机遇

HyperDbg Debugger HyperDbg debugger is an open-source, hypervisor-assisted user-mode, and kernel-mode Windows debugger with a focus on using modern hardware technologies. It is a debugger designed for analyzing, fuzzing, and reversing. HyperDbg is designed...

The post HyperDbg: open-source, hypervisor-assisted user-mode, and kernel-mode Windows debugger appeared first on Penetration Testing Tools.

openappsec open-appsec (openappsec.io) builds on machine learning to provide preemptive web app & API threat protection against OWASP-Top-10 and zero-day attacks. It can be deployed as an add-on to Kubernetes Ingress, NGINX, Envoy (soon), and API Gateways....

The post openappsec: machine learning security engine to prevents threats against Web Application & APIs appeared first on Penetration Testing Tools.

It takes more than technical knowledge to write about cybersecurity in a way people want to read. It takes creativity, discipline, and other key skills.

Vulnerability / Hardware SecurityA novel side-channel attack has been found to leverage radio sign

A vulnerability, which was classified as critical, was found in tcpdump up to 4.9.1. This affects the function chdlc_print of the file print-chdlc.c of the component Cisco HDLC Parser. The manipulation leads to memory corruption. This vulnerability is uniquely identified as CVE-2017-13687. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

该安全漏洞还影响了防火墙的SSLVPN功能，且已被黑客用以网络攻击。该公司提醒客户尽快为受影响的产品打上补丁。

华为三折叠手机预约量突破 300 万人；美的集团有望成为香港股市三年来最大上市项目；盖茨： AI 比电动汽车用电量小得多。

The threat actor known as Konni, which has been previously linked to the North Korean state-sponsor

A vulnerability classified as critical has been found in Ruben Boelinger myflash 1.00 on WordPress. Affected is an unknown function of the file myflash-button.php. The manipulation of the argument wpPATH leads to file inclusion. This vulnerability is traded as CVE-2007-2485. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

iPhone 16 的发布，意味着苹果迈入 AiPhone 时代。

A review board of federal and industry officials led by the Homeland Security Department is readyin

A vulnerability was found in mb Support openVIVA. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component Vorgang Handler. The manipulation of the argument Name/Hauptverantwortlicher leads to cross site scripting. This vulnerability is known as CVE-2022-39172. The attack can be launched remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.