BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- SafeLine - Serve As A Reverse Proxy To Protect Your Web Services From Attacks And Exploits
- PolyDrop - A BYOSI (Bring-Your-Own-Script-Interpreter) Rapid Payload Deployment Toolkit
- Secator - The Pentester'S Swiss Knife
- Damn-Vulnerable-Drone - An Intentionally Vulnerable Drone Hacking Simulator Based On The Popular ArduPilot/MAVLink Architecture, Providing A Realistic Environment For Hands-On Drone Hacking
- File-Unpumper - Tool That Can Be Used To Trim Useless Things From A PE File Such As The Things A File Pumper Would Add
- Mass-Assigner - Simple Tool Made To Probe For Mass Assignment Vulnerability Through JSON Field Modification In HTTP Requests
- Imperius - Make An Linux Kernel Rootkit Visible Again
- BYOSI - Evade EDR's The Simple Way, By Not Touching Any Of The API's They Hook
- Psobf - PowerShell Obfuscator
- ModTracer - ModTracer Finds Hidden Linux Kernel Rootkits And Then Make Visible Again
Exploit DB
- [webapps] SOPlanning 1.52.01 (Simple Online Planning Tool) - Remote Code Execution (RCE) (Authenticated)
- [webapps] dizqueTV 1.5.3 - Remote Code Execution (RCE)
- [webapps] openSIS 9.1 - SQLi (Authenticated)
- [webapps] reNgine 2.2.0 - Command Injection (Authenticated)
- [dos] Windows TCP/IP - RCE Checker and Denial of Service
- [webapps] Gitea 1.22.0 - Stored XSS
- [webapps] Invesalius3 - Remote Code Execution
- [webapps] NoteMark < 0.13.0 - Stored XSS
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Authentication Bypass
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Device Config
This $28 ‘magic arm’ makes taking pictures so much easier
/in General NewsForget tripods, this concoction from SmallRig is a far better camera accessory.
Latest news – Read More
This 3-in-1 MagSafe dock will charge your Apple devices while keeping them cool
/in General NewsESR’s HaloLock 3-in-1 charging station will keep your iPhone and accessories optimized for all environments.
Latest news – Read More
MediSecure Data Breach Impacts 12.9 Million Individuals
/in General NewsThe personal and health information of 12.9 million was stolen in a ransomware attack at Australian digital prescription services provider MediSecure.
The post MediSecure Data Breach Impacts 12.9 Million Individuals appeared first on SecurityWeek.
SecurityWeek – Read More
Grype: Open-Source Vulnerability Scanner for Container Images, Filesystems
/in General NewsGrype is an open-source vulnerability scanner for container images and filesystems that works with Syft to detect vulnerabilities in major operating system and language-specific packages like Alpine, Debian, Ruby, Java, Python, and more.
Cyware News – Latest Cyber News – Read More
Revolver Rabbit Gang Registers 500,000 Domains for Malware Campaigns
/in General NewsThe Revolver Rabbit cybercriminal gang has registered over 500,000 domain names for infostealer campaigns targeting Windows and macOS systems. They utilize registered domain generation algorithms (RDGAs) to rapidly register multiple domains at once.
Cyware News – Latest Cyber News – Read More
CISA Appoints New Cybersecurity, Stakeholder Group Leaders
/in General NewsThe Cybersecurity and Infrastructure Security Agency (CISA) has appointed new leaders to its cybersecurity division and stakeholder engagement role to enhance national cyber defenses and foster collaboration between the public and private sectors.
Cyware News – Latest Cyber News – Read More
This tiny accessory gives your Android thermal vision superpowers
/in General NewsIt might seem like a total gimmick, but it’s a must-have tool in my toolbox.
Latest news – Read More
SAP AI Core Flaws Expose Sensitive Customer Data and Keys
/in General NewsSecurity researchers discovered vulnerabilities in SAP AI Core that allowed attackers to execute arbitrary code, access sensitive data and cloud credentials, and manipulate internal artifacts.
Cyware News – Latest Cyber News – Read More
Bad CrowdStrike Update Linked to Major IT Outages Worldwide
/in General NewsOrganizations worldwide are reporting major outages due to Windows system crashes caused by a bad CrowdStrike update.
The post Bad CrowdStrike Update Linked to Major IT Outages Worldwide appeared first on SecurityWeek.
SecurityWeek – Read More
Attacks on Israeli Orgs ‘More Than Doubled’ Since October 7, Cyber Researcher Says
/in General NewsCyberattacks on Israeli organizations have more than doubled since the October 7 terrorist attack, with politically-motivated groups like hackers affiliated with Iran and Hezbollah, along with hacktivists, being the main drivers behind these attacks.
Cyware News – Latest Cyber News – Read More