BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- SafeLine - Serve As A Reverse Proxy To Protect Your Web Services From Attacks And Exploits
- PolyDrop - A BYOSI (Bring-Your-Own-Script-Interpreter) Rapid Payload Deployment Toolkit
- Secator - The Pentester'S Swiss Knife
- Damn-Vulnerable-Drone - An Intentionally Vulnerable Drone Hacking Simulator Based On The Popular ArduPilot/MAVLink Architecture, Providing A Realistic Environment For Hands-On Drone Hacking
- File-Unpumper - Tool That Can Be Used To Trim Useless Things From A PE File Such As The Things A File Pumper Would Add
- Mass-Assigner - Simple Tool Made To Probe For Mass Assignment Vulnerability Through JSON Field Modification In HTTP Requests
- Imperius - Make An Linux Kernel Rootkit Visible Again
- BYOSI - Evade EDR's The Simple Way, By Not Touching Any Of The API's They Hook
- Psobf - PowerShell Obfuscator
- ModTracer - ModTracer Finds Hidden Linux Kernel Rootkits And Then Make Visible Again
Exploit DB
- [webapps] SOPlanning 1.52.01 (Simple Online Planning Tool) - Remote Code Execution (RCE) (Authenticated)
- [webapps] dizqueTV 1.5.3 - Remote Code Execution (RCE)
- [webapps] openSIS 9.1 - SQLi (Authenticated)
- [webapps] reNgine 2.2.0 - Command Injection (Authenticated)
- [dos] Windows TCP/IP - RCE Checker and Denial of Service
- [webapps] Gitea 1.22.0 - Stored XSS
- [webapps] Invesalius3 - Remote Code Execution
- [webapps] NoteMark < 0.13.0 - Stored XSS
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Authentication Bypass
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Device Config
Ex-Cybersecurity Adviser to Bush, Obama Weighs in On Current Admin
/in General NewsMelissa Hathaway, a former White House cybersecurity adviser, says Biden is pushing through more regulatory reforms than previous administrations.
darkreading – Read More
Code Scanner by Piiano Helps Enterprises Prevent Data Leaks Proactively
/in General NewsPost Content
darkreading – Read More
XM Cyber Launches Kubernetes Exposure Management to Intelligently Protect Critical Container Environments
/in General NewsPost Content
darkreading – Read More
New AI Security Guidelines Published by NCSC, CISA & More International Agencies
/in General NewsThe Guidelines for Secure AI System Development have been drawn up to help developers ensure security is baked into the heart of new artificial intelligence models.
Security | TechRepublic – Read More
Critical Zoom Vulnerability Let Hackers Take Over Meetings, Steal Data
/in General NewsBy Waqas
A critical Zoom Room vulnerability allowed exploiting service accounts for unauthorized tenant access.
This is a post from HackRead.com Read the original post: Critical Zoom Vulnerability Let Hackers Take Over Meetings, Steal Data
Hackread – Latest Cybersecurity News, Press Releases & Technology Today – Read More
BlueVoyant Acquires Conquest Cyber to Help Clients Mitigate Risks
/in General NewsBlueVoyant will integrate Conquest Cyber’s technology into its existing products and services to create the first solution to deliver comprehensive internal and external cyber defense mapped to risk maturity.
Cyware News – Latest Cyber News – Read More
Thought GDPR Compliance Was Hard? Buckle Up
/in General NewsThe days of a one-size-fits-all consent strategy are gone. Consider a two-pronged approach and use smart consent management technology to adapt to differing regulations.
darkreading – Read More
Cybercriminals Exploit ActiveMQ Flaw to Spread GoTitan Botnet, PrCtrl Rat
/in General NewsBy Deeba Ahmed
The ActiveMQ flaw has been patched, but despite this, numerous threat actors continue to exploit it.
This is a post from HackRead.com Read the original post: Cybercriminals Exploit ActiveMQ Flaw to Spread GoTitan Botnet, PrCtrl Rat
Hackread – Latest Cybersecurity News, Press Releases & Technology Today – Read More
Qilin Ransomware Claims Attack on Automotive Giant Yanfeng
/in General NewsThe threat actors published multiple samples to prove their alleged access to Yanfeng systems and files, including financial documents, non-disclosure agreements, quotation files, technical data sheets, and internal reports.
Cyware News – Latest Cyber News – Read More
Why Ransomware Could Surge in the Middle East & Africa
/in General NewsOrganizations from the Middle East and Africa have typically escaped public ransoms, but that’s changing amid heightened geopolitical conflicts and digitalization initiatives.
darkreading – Read More