BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- SafeLine - Serve As A Reverse Proxy To Protect Your Web Services From Attacks And Exploits
- PolyDrop - A BYOSI (Bring-Your-Own-Script-Interpreter) Rapid Payload Deployment Toolkit
- Secator - The Pentester'S Swiss Knife
- Damn-Vulnerable-Drone - An Intentionally Vulnerable Drone Hacking Simulator Based On The Popular ArduPilot/MAVLink Architecture, Providing A Realistic Environment For Hands-On Drone Hacking
- File-Unpumper - Tool That Can Be Used To Trim Useless Things From A PE File Such As The Things A File Pumper Would Add
- Mass-Assigner - Simple Tool Made To Probe For Mass Assignment Vulnerability Through JSON Field Modification In HTTP Requests
- Imperius - Make An Linux Kernel Rootkit Visible Again
- BYOSI - Evade EDR's The Simple Way, By Not Touching Any Of The API's They Hook
- Psobf - PowerShell Obfuscator
- ModTracer - ModTracer Finds Hidden Linux Kernel Rootkits And Then Make Visible Again
Exploit DB
- [webapps] SOPlanning 1.52.01 (Simple Online Planning Tool) - Remote Code Execution (RCE) (Authenticated)
- [webapps] dizqueTV 1.5.3 - Remote Code Execution (RCE)
- [webapps] openSIS 9.1 - SQLi (Authenticated)
- [webapps] reNgine 2.2.0 - Command Injection (Authenticated)
- [dos] Windows TCP/IP - RCE Checker and Denial of Service
- [webapps] Gitea 1.22.0 - Stored XSS
- [webapps] Invesalius3 - Remote Code Execution
- [webapps] NoteMark < 0.13.0 - Stored XSS
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Authentication Bypass
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Device Config
New Research Reveals Spectre Vulnerability Persists in Latest AMD and Intel Processors
/in General NewsMore than six years after the Spectre security flaw impacting modern CPU processors came to light, new research has found that the latest AMD and Intel processors are still susceptible to speculative execution attacks.
The attack, disclosed by ETH Zürich researchers Johannes Wikner and Kaveh Razavi, aims to undermine the Indirect Branch Predictor Barrier (IBPB) on x86 chips, a crucial mitigation
The Hacker News – Read More
Armis Raises $200M at $4.2B Valuation, Eyes IPO
/in General NewsArmis raised an additional $200 million in funding at valuation of $4.2 billion as the company aims for an IPO.
The post Armis Raises $200M at $4.2B Valuation, Eyes IPO appeared first on SecurityWeek.
SecurityWeek – Read More
China’s Elite Cyber Corps Hone Skills on Virtual Battlefields
/in General NewsThe nation leads in the number of capture-the-flag tournaments sponsored by government and industry — a strategy from which Western nations could learn.
darkreading – Read More
Sophos-SecureWorks Deal Focuses on Building Advanced MDR, XDR Platform
/in General NewsSophos CEO Joe Levy says $859 million deal to acquire SecureWorks from majority owner Dell Technologies will put the Taegis platform — with network detection and response, vulnerability detection and response, and identity threat detection and response capabilities — at the core.
darkreading – Read More
2024 Startup Battlefield Top 20 Finalists: DGLegacy
/in General NewsEnsures that in the case of an unforeseen event, your assets won’t be lost and your loved ones would be able to claim their rightful ownership with a digital legacy planning and inheritance app. Subscribe for more on YouTube: https://tcrn.ch/youtube Follow TechCrunch on Instagram: http://tcrn.ch/instagram TikTok: https://tcrn.ch/tiktok X: tcrn.ch/x Threads: https://tcrn.ch/threads Facebook: https://tcrn.ch/facebook Bluesky: https://tcrn.ch/bluesky […]
© 2024 TechCrunch. All rights reserved. For personal use only.
Security News | TechCrunch – Read More
Windows ‘Downdate’ Attack Reverts Patched PCs to a Vulnerable State
/in General NewsWindows 11 machines remain open to downgrade attacks, where attackers can abuse the Windows Update process to revive a patched driver signature enforcement (DSE) bypass.
darkreading – Read More
Delta Launches $500M Lawsuit Against CrowdStrike
/in General NewsDelta argues that it lost hundreds of million of dollars in downtime and other costs in the aftermath of the incident, while CrowdStrike says it isn’t liable for more than $10 million.
darkreading – Read More
Apple Launches ‘Apple Intelligence’ and Offers $1M Bug Bounty for Security
/in General NewsApple unveils ‘Apple Intelligence’ for iPhone, iPad, and Mac devices while offering a $1 million bug bounty for…
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
The most secure browser on the web just got a major update – what’s new
/in General NewsTor Browser 14.0’s many improvements include more efficient Android browsing.
Latest stories for ZDNET in Security – Read More
Russia Kneecaps Ukraine Army Recruitment With Spoofed ‘Civil Defense’ App
/in General NewsPosing as an application used to locate Ukrainian military recruiters, a Kremlin-backed hacking initiative delivers malware, along with disinformation designed to undermine sign-ups for soldiers in the war against Russia.
darkreading – Read More