Home Tools Page 280

Tools

The latest hacking and hacker tools. Open source offensive and defensive security tools. Browse interactive maps of offensive security tools used by malicious actors and cybercriminals. Check out some live threat maps and malware intelligence databases.

This will be a curated list of mostly open source hacking tools. These can range from Red Teaming offensive security tools to fuzzers and debuggers for malware analysis. We are always looking for new state of the art tools that can be used for security professionals. Please feel free to send us a tool via email or one of our social media accounts.

ChurchCRM 4.4.5 SQL Injection

Authored by nu11secur1ty ChurchCRM version 4.4.5 suffers from a remote SQL injection vulnerability. advisories | CVE-2022-31325 Change Mirror Download ## Title: ChurchCRM 4.4.5 SQLi session hijacking L2## Author: nu11secur1ty## Date: 05.11.2022## Vendor: https://churchcrm.io/##...

JM-DATA ONU JF511-TV 1.0.67 / 1.0.62 / 1.0.55 XSS / CSRF / Open Redirect

Authored by Neurogenesia | Site zeroscience.mk JM-DATA ONU JF511-TV versions 1.0.67, 1.0.62, and 1.0.55 suffer from cross site request forgery, persistent cross site scripting, default credential, and open redirection vulnerabilities. Change...

Trojan-Banker.Win32.Banker.agzg MVID-2022-0608 Insecure Permissions

Authored by malvuln | Site malvuln.com Trojan-Banker.Win32.Banker.agzg malware suffers from an insecure permissions vulnerability. Change Mirror Download Discovery / credits: Malvuln (John Page aka hyp3rlinx) (c) 2022Original source:https://malvuln.com/advisory/ef1e59148c9a902ae5454760aaab73fe.txtContact: [email protected]: twitter.com/malvulnThreat: Trojan-Banker.Win32.Banker.agzgVulnerability: Insecure...

Trojan-Banker.Win32.Banbra.cyt MVID-2022-0611 Insecure Permissions

Authored by malvuln | Site malvuln.com Trojan-Banker.Win32.Banbra.cyt malware suffers from an insecure permissions vulnerability. Change Mirror Download Discovery / credits: Malvuln (John Page aka hyp3rlinx) (c) 2022Original source: https://malvuln.com/advisory/e0f2bee25dd103d92e91e895e313ec34.txtContact: [email protected]: twitter.com/malvulnThreat: Trojan-Banker.Win32.Banbra.cytVulnerability:...

Trojan-Proxy.Win32.Symbab.o MVID-2022-0610 Heap Corruption

Authored by malvuln | Site malvuln.com Trojan-Proxy.Win32.Symbab.o malware suffers from a heap corruption vulnerability. Change Mirror Download Discovery / credits: Malvuln (John Page aka hyp3rlinx) (c) 2022Original source: https://malvuln.com/advisory/bffc519fbaf2d119bd307cd22368cdc7.txtContact: [email protected]: twitter.com/malvulnThreat: Trojan-Proxy.Win32.Symbab.oVulnerability:...

Ransom.Haron MVID-2022-0609 Code Execution

Authored by malvuln | Site malvuln.com Haron ransomware looks for and executes DLLs in its current directory. Therefore, we can potentially hijack a DLL to execute our own code and...

Backdoor.Win32.Cabrotor.10.d MVID-2022-0612 Remote Command Execution

Authored by malvuln | Site malvuln.com Backdoor.Win32.Cabrotor.10.d malware suffers from an unauthenticated remote command execution vulnerability. Change Mirror Download Discovery / credits: Malvuln (John Page aka hyp3rlinx) (c) 2022Original source: https://malvuln.com/advisory/40acf109fa9621eae6930ef18f804909.txtContact: [email protected]:...

Microsoft Office Word MSDTJS Code Execution

Authored by Ramella Sebastien, nao sec | Site metasploit.com This Metasploit module generates a malicious Microsoft Word document that when loaded, will leverage the remote template feature to fetch an...

WordPress Download Manager 3.2.42 Cross Site Scripting

Authored by Rafie Muhammad | Site wordfence.com WordPress Download Manager versions 3.2.42 and below suffer from a cross site scripting vulnerability. advisories | CVE-2022-1985 Change Mirror Download Description: Reflected Cross-Site ScriptingAffected Plugin: Download...

Atlassian Confluence Namespace OGNL Injection

Authored by unknown, Spencer McIntyre, jbaines-r7, bturner-r7 | Site metasploit.com This Metasploit module exploits an OGNL injection in Atlassian Confluence servers. A specially crafted URI can be used to evaluate...