Security Vulnerability

Proton Pass

Commercial

Data Protection

NordVPN

Commercial

Network Security

Mandos

Commercial

Consulting

Checkmarx SCA

Commercial

Application Security

Orca Security

Commercial

Cloud Security

DryRun

Commercial

Application Security

LATEST ADDITIONS

• 

  scrying

  A tool for collecting and analyzing screenshots from remote desktop protocols, web applications, and VNC connections.

  0

  Free

  Digital Forensics

  Screenshot

  Rdp

  Vnc

  Web

  Security Vulnerability

  Threat Detection

  Share

  

  scrying

  A tool for collecting and analyzing screenshots from remote desktop protocols, web applications, and VNC connections.

  0

  Free

  Digital Forensics

  Screenshot

  Rdp

  Vnc

  +3
• 

  Entropy Source Evaluation

  Using high-quality entropy sources for CSPRNG seeding is crucial for security.

  0

  Free

  Data Protection

  Cryptography

  Entropy

  Security Vulnerability

  Share

  

  Entropy Source Evaluation

  Using high-quality entropy sources for CSPRNG seeding is crucial for security.

  0

  Free

  Data Protection

  Cryptography

  Entropy

  Security Vulnerability
• 

  Sabotage: Code added to popular NPM package wiped files in Russia and Belarus

  A developer added malicious code to a popular open-source package, wiping files on computers in Russia and Belarus as a protest.

  0

  Free

  Malware Analysis

  Appsec

  Bug Bounty

  Open Source

  Security Vulnerability

  Software Security

  Share

  

  Sabotage: Code added to popular NPM package wiped files in Russia and Belarus

  A developer added malicious code to a popular open-source package, wiping files on computers in Russia and Belarus as a protest.

  0

  Free

  Malware Analysis

  Appsec

  Bug Bounty

  Open Source

  +2
• 

  npm Blog Archive: Reported malicious module: getcookies

  Report on a malicious module posing as a cookie parsing library on npm blog archive.

  0

  Free

  Blogs and News

  Npm

  Malware

  Backdoor

  Package Manager

  Security Vulnerability

  Javascript

  Share

  

  npm Blog Archive: Reported malicious module: getcookies

  Report on a malicious module posing as a cookie parsing library on npm blog archive.

  0

  Free

  Blogs and News

  Npm

  Malware

  Backdoor

  +3
• 

  Node.js Bug Bounty Program

  The Node.js Bug Bounty Program is a program aimed at identifying and fixing security vulnerabilities in the Node.js ecosystem.

  0

  Free

  Vulnerability Management

  Bug Bounty

  Nodejs

  Security Vulnerability

  Share

  

  Node.js Bug Bounty Program

  The Node.js Bug Bounty Program is a program aimed at identifying and fixing security vulnerabilities in the Node.js ecosystem.

  0

  Free

  Vulnerability Management

  Bug Bounty

  Nodejs

  Security Vulnerability
• 

  Phylum

  Identifies 137 malicious npm packages and gathers system information to a remote server.

  0

  Free

  Malware Analysis

  Npm

  Malware

  Package Manager

  Security Vulnerability

  Share

  

  Phylum

  Identifies 137 malicious npm packages and gathers system information to a remote server.

  0

  Free

  Malware Analysis

  Npm

  Malware

  Package Manager

  +1
• 

  h2csmuggler

  A tool for exploiting HTTP/2 cleartext smuggling vulnerabilities

  0

  Free

  Network Security

  Security Vulnerability

  Share

  

  h2csmuggler

  A tool for exploiting HTTP/2 cleartext smuggling vulnerabilities

  0

  Free

  Network Security

  Security Vulnerability
• 

  AWS IAM Privilege Escalation Methods

  An attacker can create a new IAM policy version and set it as the default version without requiring the iam:SetDefaultPolicyVersion permission.

  0

  Free

  IAM

  Iam

  Aws

  Privilege Escalation

  Security Vulnerability

  Attack Vector

  Share

  

  AWS IAM Privilege Escalation Methods

  An attacker can create a new IAM policy version and set it as the default version without requiring the iam:SetDefaultPolicyVersion permission.

  0

  Free

  IAM

  Iam

  Aws

  Privilege Escalation

  +2
• 

  Android-Reports-and-Resources

  A collection of reports and resources highlighting Android security vulnerabilities and best practices.

  0

  Free

  Resources

  Appsec

  App Security

  Vulnerability

  Security Vulnerability

  Android Security

  Share

  

  Android-Reports-and-Resources

  A collection of reports and resources highlighting Android security vulnerabilities and best practices.

  0

  Free

  Resources

  Appsec

  App Security

  Vulnerability

  +2
• 

  Reverse Engineering HID iClass Master Keys

  Exploiting a vulnerability in HID iClass system to retrieve master authentication key for cloning cards and changing reader settings.

  0

  Free

  Malware Analysis

  Appsec

  Appsecurity

  Iot

  Security Vulnerability

  Debugging

  Encryption

  Share

  

  Reverse Engineering HID iClass Master Keys

  Exploiting a vulnerability in HID iClass system to retrieve master authentication key for cloning cards and changing reader settings.

  0

  Free

  Malware Analysis

  Appsec

  Appsecurity

  Iot

  +3