Home Tools Page 98

Tools

The latest hacking and hacker tools. Open source offensive and defensive security tools. Browse interactive maps of offensive security tools used by malicious actors and cybercriminals. Check out some live threat maps and malware intelligence databases.

This will be a curated list of mostly open source hacking tools. These can range from Red Teaming offensive security tools to fuzzers and debuggers for malware analysis. We are always looking for new state of the art tools that can be used for security professionals. Please feel free to send us a tool via email or one of our social media accounts.

YahooPOPs 1.6 Denial Of Service

0
Authored by Fernando Mengali YahooPOPs version 1.6 remote denial of service exploit. Change Mirror Download use IO::Socket; sub intro { print q { ...

Vinchin Backup And Recovery 7.2 setNetworkCardInfo Command Injection

0
Authored by Valentin Lobstein Vinchin Backup and Recovery versions 7.2 and below suffer from a command injection vulnerability in the setNetworkCardInfo function. advisories | CVE-2024-22900 Change Mirror Download CVE ID: CVE-2024-22900Title: Command Injection...

Atlassian Confluence SSTI Injection

0
Authored by Spencer McIntyre, Harsh Jaiswal, Rahul Maini | Site metasploit.com This Metasploit module exploits an SSTI injection in Atlassian Confluence servers. A specially crafted HTTP request uses the injection...

CloudLinux CageFS 7.1.1-1 Token Disclosure

0
Authored by David Gnedt | Site sba-research.org CloudLinux CageFS versions 7.1.1-1 and below pass the authentication token as a command line argument. In some configurations this allows local users to...

CloudLinux CageFS 7.0.8-2 Insufficiently Restricted Proxy Command

0
Authored by David Gnedt | Site sba-research.org CloudLinux CageFS versions 7.0.8-2 and below insufficiently restrict file paths supplied to the sendmail proxy command. This allows local users to read and...

Vinchin Backup And Recovery 7.2 syncNtpTime Command Injection

0
Authored by Valentin Lobstein Vinchin Backup and Recovery versions 7.2 and below suffer from a command injection vulnerability in the syncNtpTime function. advisories | CVE-2024-22899 Change Mirror Download CVE ID: CVE-2024-22899Title: Command Injection...

Vinchin Backup And Recovery 7.2 Default MySQL Credentials

0
Authored by Valentin Lobstein A critical security issue has been discovered in Vinchin Backup and Recovery version 7.2. The software has been found to use default MYSQL credentials, which could...

Vinchin Backup And Recovery 7.2 Default Root Credentials

0
Authored by Valentin Lobstein Vinchin Backup and Recovery version 7.2 has been identified as being configured with default root credentials, posing a significant security vulnerability. advisories | CVE-2024-22902 Change Mirror Download CVE ID:...

Vinchin Backup And Recovery 7.2 SystemHandler.class.php Command Injection

0
Authored by Valentin Lobstein Vinchin Backup and Recovery versions 7.2 and below suffer from a command injection vulnerability in SystemHandler.class.php. advisories | CVE-2024-22903 Change Mirror Download CVE ID: CVE-2024-22903Title: Command Injection Vulnerability in...

MajorDoMo Command Injection

0
Authored by Valentin Lobstein, smcintyre-r7 | Site metasploit.com This Metasploit module exploits a command injection vulnerability in MajorDoMo versions before 0662e5e. advisories | CVE-2023-50917 Change Mirror Download ### This module requires Metasploit: https://metasploit.com/download#...