BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- SafeLine - Serve As A Reverse Proxy To Protect Your Web Services From Attacks And Exploits
- PolyDrop - A BYOSI (Bring-Your-Own-Script-Interpreter) Rapid Payload Deployment Toolkit
- Secator - The Pentester'S Swiss Knife
- Damn-Vulnerable-Drone - An Intentionally Vulnerable Drone Hacking Simulator Based On The Popular ArduPilot/MAVLink Architecture, Providing A Realistic Environment For Hands-On Drone Hacking
- File-Unpumper - Tool That Can Be Used To Trim Useless Things From A PE File Such As The Things A File Pumper Would Add
- Mass-Assigner - Simple Tool Made To Probe For Mass Assignment Vulnerability Through JSON Field Modification In HTTP Requests
- Imperius - Make An Linux Kernel Rootkit Visible Again
- BYOSI - Evade EDR's The Simple Way, By Not Touching Any Of The API's They Hook
- Psobf - PowerShell Obfuscator
- ModTracer - ModTracer Finds Hidden Linux Kernel Rootkits And Then Make Visible Again
Exploit DB
- [webapps] SOPlanning 1.52.01 (Simple Online Planning Tool) - Remote Code Execution (RCE) (Authenticated)
- [webapps] dizqueTV 1.5.3 - Remote Code Execution (RCE)
- [webapps] openSIS 9.1 - SQLi (Authenticated)
- [webapps] reNgine 2.2.0 - Command Injection (Authenticated)
- [dos] Windows TCP/IP - RCE Checker and Denial of Service
- [webapps] Gitea 1.22.0 - Stored XSS
- [webapps] Invesalius3 - Remote Code Execution
- [webapps] NoteMark < 0.13.0 - Stored XSS
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Authentication Bypass
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Device Config
Cisco Talos: LilacSquid Threat Actor Targets Multiple Sectors Worldwide With PurpleInk Malware
/in General NewsFind out how the cyberespionage threat actor LilacSquid operates, and then learn how to protect your business from this security risk.
Security | TechRepublic – Read More
Cloud Security Alliance Survey Finds 70% of Organizations Have Established Dedicated SaaS Security Teams
/in General NewsPost Content
darkreading – Read More
EV Manufacturer BYD Selects Karamba Security to Meet Global Automotive Cybersecurity Regulations
/in General NewsPost Content
darkreading – Read More
Notable Capital Launches Rising in Cyber to Spotlight Promising Cybersecurity Startups
/in General NewsPost Content
darkreading – Read More
Few But High-Profile TikTok Accounts Hacked Via Zero-Click Attack in DM
/in General NewsTikTok accounts are being hacked! Celebrities and brands targeted in zero-click attack. Learn more about this major security…
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
Cisco Live 2024: New Unified Observability Experience Packages Cisco & Splunk Insight Tools
/in General NewsThe observability suite is the first major overhaul for Splunk products since the Cisco acquisition. Plus, Mistral AI makes a deal with Cisco’s incubator.
Security | TechRepublic – Read More
Ransomware Attack Disrupts Operations Across London Hospitals
/in General NewsThe incident affecting pathology-services provider Synnovis demonstrates the ripple effect that cyberattacks have on healthcare systems, and demands immediate security response.
darkreading – Read More
Remote Work’s Hidden Dangers
/in General NewsTen cybersecurity strategies for enterprises to keep remote work safer.
darkreading – Read More
Hypr Raises $30 Million for Passwordless Authentication
/in General NewsPasswordless authentication provider Hypr has received a $30 million investment from Silver Lake Waterman.
The post Hypr Raises $30 Million for Passwordless Authentication appeared first on SecurityWeek.
SecurityWeek – Read More
Researchers Show How Malware Could Steal Windows Recall Data
/in General NewsCybersecurity researchers are demonstrating how malware could steal data collected by the new Windows Recall feature.
The post Researchers Show How Malware Could Steal Windows Recall Data appeared first on SecurityWeek.
SecurityWeek – Read More