BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- SafeLine - Serve As A Reverse Proxy To Protect Your Web Services From Attacks And Exploits
- PolyDrop - A BYOSI (Bring-Your-Own-Script-Interpreter) Rapid Payload Deployment Toolkit
- Secator - The Pentester'S Swiss Knife
- Damn-Vulnerable-Drone - An Intentionally Vulnerable Drone Hacking Simulator Based On The Popular ArduPilot/MAVLink Architecture, Providing A Realistic Environment For Hands-On Drone Hacking
- File-Unpumper - Tool That Can Be Used To Trim Useless Things From A PE File Such As The Things A File Pumper Would Add
- Mass-Assigner - Simple Tool Made To Probe For Mass Assignment Vulnerability Through JSON Field Modification In HTTP Requests
- Imperius - Make An Linux Kernel Rootkit Visible Again
- BYOSI - Evade EDR's The Simple Way, By Not Touching Any Of The API's They Hook
- Psobf - PowerShell Obfuscator
- ModTracer - ModTracer Finds Hidden Linux Kernel Rootkits And Then Make Visible Again
Exploit DB
- [webapps] dizqueTV 1.5.3 - Remote Code Execution (RCE)
- [webapps] openSIS 9.1 - SQLi (Authenticated)
- [webapps] reNgine 2.2.0 - Command Injection (Authenticated)
- [dos] Windows TCP/IP - RCE Checker and Denial of Service
- [webapps] Gitea 1.22.0 - Stored XSS
- [webapps] Invesalius3 - Remote Code Execution
- [webapps] NoteMark < 0.13.0 - Stored XSS
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Authentication Bypass
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Device Config
- [webapps] Elber Wayber Analog/Digital Audio STL 4.00 - Authentication Bypass
Report: Hackers Use PoC Exploits in Attacks 22 Minutes After Release
/in General NewsThreat actors rapidly weaponize proof-of-concept exploits in real attacks, often within 22 minutes of their public release, as per Cloudflare’s 2024 Application Security report covering May 2023 to March 2024.
Cyware News – Latest Cyber News – Read More
4 Linux commands for managing time (and why that’s important)
/in General NewsThe correct time is crucial to computer systems and subsystems. The wrong time might make it impossible to install new software. Here are four Linux commands to help you manage time.
Latest news – Read More
New BugSleep Backdoor Deployed in Recent MuddyWater Campaigns
/in General NewsThe deployment of BugSleep is a significant development in MuddyWater’s tactics, targeting various sectors with phishing emails leading to the distribution of Remote Management Tools and the BugSleep malware.
Cyware News – Latest Cyber News – Read More
CISA Warns of Actively Exploited RCE Flaw in GeoServer GeoTools Software
/in General NewsThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added a critical security flaw impacting OSGeo GeoServer GeoTools to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation.
GeoServer is an open-source software server written in Java that allows users to share and edit geospatial data. It is the reference implementation of the Open
The Hacker News – Read More
Kaspersky Exits U.S. Market Following Commerce Department Ban
/in General NewsRussian security vendor Kaspersky has said it’s exiting the U.S. market nearly a month after the Commerce Department announced a ban on the sale of its software in the country citing a national security risk.
News of the closure was first reported by journalist Kim Zetter.
The company is expected to wind down its U.S. operations on July 20, 2024, the same day the ban comes into effect. It’s also
The Hacker News – Read More
Save $125 on Amazon’s exclusive Dyson Airwrap bundle just hours before Prime Day kicks off
/in General NewsPrime Day starts in just a few hours, but this major deal on Dyson’s flagship Airwrap hair styler — which rarely sees a sale — is already live.
Latest news – Read More
Buy a Samsung Frame TV for up to $1,000 off right now at Best Buy
/in General NewsForget Prime Day — Best Buy has Samsung’s popular TV that doubles as a work of art on deep discount right now.
Latest news – Read More
Singapore Banks Ditch One-Time Passwords
/in General NewsRetail banks in the nation-state will eliminate the use of one-time passwords (OTPs) by bank customers in an effort to thwart phishing.
darkreading – Read More
This all-in-one robot vacuum and mop is only $440 on Prime Day
/in General NewsThe Yeedi Cube almost does everything: strong suction, self-emptying, and self-cleaning. And it’s one of the most affordable robot vacuums and mops to combine all these features.
Latest news – Read More
Hackers Claim to Have Leaked 1.1 TB of Disney Slack Messages
/in General NewsA hacker group called “NullBulge” says it stole more than a terabyte of Disney’s internal Slack messages and files from nearly 10,000 channels in an apparent protest over AI-generated art.
Security Latest – Read More