CISA adds 95 flaws to the Known Exploited Vulnerabilities Catalog
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added 95 vulnerabilities to its Known Exploited Vulnerabilities Catalog. The U.S. Cybersecurity and...
hacking
HaccTheHub – Open Source Self-Hosted Cyber Security Learning Platform
Open source self-hosted HaccTheHub is an open source project that provides cyber security The HaccTheHub system consists of 3 main...
These are the sources of DDoS attacks against Russia, local NCCC warns
Russian government released a list containing IP addresses and domains behind DDoS attacks that hit Russian infrastructure after the invasion. While the...
Ocr-Recon – Tool To Find A Particular String In A List Of URLs Using Tesseract’S OCR (Optical Character Recognition) Capabilities
This tool is useful to find a particular string in a list of URLs using tesseract's OCR (Optical Character Recognition)...
Russia-Ukraine, who are the soldiers that crowd cyberspace?
While Russia is invading Ukraine, multiple forces are joining in the conflict, especially in the cyber space, let’s analyze them...
Avast released a free decryptor for the HermeticRansom that hit Ukraine
Avast released a decryptor for the HermeticRansom ransomware used in recent targeted attacks against Ukrainian entities. Avast has released a...
Chaya – Advance Image Steganography
Chaya protects your privacy through steganography, Supports AES-256-GCM cryptography Supports Standard LSB steganography Supports LSB-LPS steganography Supports FLIF lossless compression...
75% of medical infusion pumps affected by known vulnerabilities
Researchers analyzed more than 200,000 network-connected medical infusion pumps and discovered that over 100,000 of them are vulnerable. Researchers from...
Cisco fixed two critical flaws in Expressway, TelePresence VCS solutions
Cisco fixed critical flaws in its Expressway Series and TelePresence Video Communication Server (VCS) unified communications products. Cisco announced security...
The Difference Between Human and Machine Identities
As digital transformation is advancing and automation is becoming an essential component of modern enterprises, collaboration between humans and machines...
Ukrainian WordPress sites under massive complex attacks
Researchers observed a spike in the attacks against Ukrainian WordPress sites since the beginning of the military invasion of the...
Litefuzz – A Multi-Platform Fuzzer For Poking At Userland Binaries And Servers
Litefuzz is meant to serve a purpose: fuzz and triage on all the major platforms, support both CLI/GUI apps, network...
A cyberattack on Russian satellites is an act of war, the invasion of Ukraine no
Russia considers it legitimate to invade another country but warns it will consider cyberattacks on its satellites an act of...
Popular open-source PJSIP library is affected by critical flaws
Researchers from JFrog’s Security Research team discovered five vulnerabilities in the PJSIP open-source multimedia communication library. Researchers from JFrog’s Security...
Asylum Ambuscade spear-phishing campaign targets EU countries aiding Ukrainian refugees
A spear-phishing campaign, tracked as Asylum Ambuscade, targets European government personnel aiding Ukrainian refugees. Researchers from cybersecurity firm Proofpoint uncovered...
Searpy – Search Engine Tookit
1. Install git clone https://github.com/j3ers3/Searpypip install -r requirement.txt配置API及账号 ./config.pypython Searpy -h 2. Help baidu Engine --google Using google Engine --so...
NVIDIA discloses data breach after the recent ransomware attack
Chipmaker giant Nvidia confirmed a data breach after the recently disclosed security incident, proprietary information stolen. The chipmaker giant Nvidia...
Anonymous and its affiliates continue to cause damage to Russia
The massive operation launched by the Anonymous collective against Russia for its illegitimate invasion continues. The popular collective Anonymous, and...
CAPEv2 – Malware Configuration And Payload Extraction
CAPE is a malware sandbox. It was derived from Cuckoo with the goal of adding automated malware unpacking and config...
Ukrainian researcher leaked the source code of Conti Ransomware
A Ukrainian researcher leaked the source for the Conti ransomware and components for the control panels. Recently a Ukrainian researcher leaked...
IsaacWiper, the third wiper spotted since the beginning of the Russian invasion
IsaacWiper, a new data wiper was used against an unnamed Ukrainian government network after Russia’s invasion of Ukraine. ESET researchers...
BruteShark – Network Analysis Tool
BruteShark is a Network Building a Network Diagram File Carving Password Extracting Reconstruct all TCP Sessions Extract VoIP Calls ...
China-linked APT used Daxin, one of the most sophisticated backdoor even seen
Daxin is the most advanced backdoor in the arsenal of China-linked threat actors designed to avoid the detection of sophisticated...
Checkov – Prevent Cloud Misconfigurations During Build-Time For Terraform, CloudFormation, Kubernetes, Serverless Framework And Other Infrastructure-As-Code-Languages
Checkov is a Getting started Requirements Python >= 3.7 (Data classes are available for Python 3.7+) Terraform >= 0.12 Installation...
