BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- SafeLine - Serve As A Reverse Proxy To Protect Your Web Services From Attacks And Exploits
- PolyDrop - A BYOSI (Bring-Your-Own-Script-Interpreter) Rapid Payload Deployment Toolkit
- Secator - The Pentester'S Swiss Knife
- Damn-Vulnerable-Drone - An Intentionally Vulnerable Drone Hacking Simulator Based On The Popular ArduPilot/MAVLink Architecture, Providing A Realistic Environment For Hands-On Drone Hacking
- File-Unpumper - Tool That Can Be Used To Trim Useless Things From A PE File Such As The Things A File Pumper Would Add
- Mass-Assigner - Simple Tool Made To Probe For Mass Assignment Vulnerability Through JSON Field Modification In HTTP Requests
- Imperius - Make An Linux Kernel Rootkit Visible Again
- BYOSI - Evade EDR's The Simple Way, By Not Touching Any Of The API's They Hook
- Psobf - PowerShell Obfuscator
- ModTracer - ModTracer Finds Hidden Linux Kernel Rootkits And Then Make Visible Again
Exploit DB
- [webapps] SOPlanning 1.52.01 (Simple Online Planning Tool) - Remote Code Execution (RCE) (Authenticated)
- [webapps] dizqueTV 1.5.3 - Remote Code Execution (RCE)
- [webapps] openSIS 9.1 - SQLi (Authenticated)
- [webapps] reNgine 2.2.0 - Command Injection (Authenticated)
- [dos] Windows TCP/IP - RCE Checker and Denial of Service
- [webapps] Gitea 1.22.0 - Stored XSS
- [webapps] Invesalius3 - Remote Code Execution
- [webapps] NoteMark < 0.13.0 - Stored XSS
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Authentication Bypass
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Device Config
Notorious Chinese Hacker Gang GhostEmperor Re-Emerges After 2 Years
/in General NewsAfter an extended period underground, the Chinese hackers have added a more sophisticated infection chain and additional EDR evasion techniques.
darkreading – Read More
This $129 pen has spoiled every other writing utensil for me – and it’s still on sale after Prime Day
/in General NewsIf you had to treat yourself to one thing this summer, Ridge’s Bolt Pen will give you your money’s worth.
Latest news – Read More
DHS Inspector General: Coast Guard Shortcomings Hinder US Maritime Security
/in General NewsPrivate sector organizations are “hesitant” to seek guidance from the Coast Guard, which isn’t sufficiently equipped to help them yet.
darkreading – Read More
Recent Splunk Enterprise Vulnerability Easy to Exploit: Security Firm
/in General NewsSonicWall warns that a simple GET request is enough to exploit a recent Splunk Enterprise vulnerability.
The post Recent Splunk Enterprise Vulnerability Easy to Exploit: Security Firm appeared first on SecurityWeek.
SecurityWeek – Read More
9 settings I changed on my Windows 11 PC to maximize the battery life
/in General NewsFeeling anxiety at the thought of disconnecting from AC power? Follow these nine steps to make sure you’re getting the most out of your laptop’s battery.
Latest news – Read More
Learn a new language with over 50% off a lifetime subscription to Rosetta Stone
/in General NewsGet access to language lessons in Spanish, French, Chinese, and more at a big discount right now.
Latest news – Read More
How One Bad CrowdStrike Update Crashed the World’s Computers
/in General NewsA defective CrowdStrike kernel driver sent computers around the globe into a reboot death spiral, taking down air travel, hospitals, banks, and more with it. Here’s how that’s possible.
Security Latest – Read More
US Data Breach Victim Numbers Surge 1170% Annually
/in General NewsThe number of US data breach victims in Q2 2024 increased annually by over 1000%, despite a 12% decrease in the actual number of incidents in those three months, according to the Identity Theft Resource Center (ITRC).
Cyware News – Latest Cyber News – Read More
China’s APT41 Targets Global Logistics, Utilities Companies
/in General NewsAccording to Mandiant, among the many cyber espionage tools the threat actor is using is a sophisticated new dropper called DustTrap.
darkreading – Read More
Larger Deals Propel Cybersecurity Funding to Two-Year High in Q2 2024
/in General NewsAccording to Crunchbase data, cybersecurity funding reached a two-year high in Q2 of 2024, with venture capitalists investing $4.4 billion in startups, the strongest quarter since 2022. This marked a 144% increase from the previous year.
Cyware News – Latest Cyber News – Read More