Aggregator

这篇研究论文主要探讨了在社交媒体时代，用户地理位置信息泄露的问题。

复现了WPS Office软件漏洞CVE-2024-7262，并与微软Office软件进行了安全特性、漏洞披露情况的对比分析

A vulnerability was found in Playscape Bouncy Bill 1.9.1. It has been rated as critical. This issue affects some unknown processing of the component X.509 Certificate Handler. The manipulation leads to cryptographic issues. The identification of this vulnerability is CVE-2014-5780. The attack needs to be done within the local network. There is no exploit available.

### This module requires Metasploit: https://metasploit.com/download# Current source: https://gith

### This module requires Metasploit: https://metasploit.com/download# Current source: https://gith

### This module requires Metasploit: https://metasploit.com/download# Current source: https://gith

### This module requires Metasploit: https://metasploit.com/download# Current source: https://gith

### This module requires Metasploit: https://metasploit.com/download# Current source: https://gith

### This module requires Metasploit: https://metasploit.com/download# Current source: https://gith

### This module requires Metasploit: https://metasploit.com/download# Current source: https://gith

由

Name: DEF CON CTF 2024 (an DEF CON CTF event.)
Date: Aug. 9, 2024, 4 p.m. — 11 Aug. 2024, 20:00 UTC  [add to calendar]
Format: Attack-Defense
On-site
Location: Las Vegas, USA
Offical URL: https://nautilus.institute/
Rating weight: 35.00
Event organizers: Nautilus Institute

Mobile Verification Toolkit Mobile Verification Toolkit (MVT) is a collection of utilities to simplify and automate the process of gathering forensic traces helpful to identify a potential compromise of Android and iOS devices. It...

The post Mobile Verification Toolkit: forensic tool to look for signs of infection in smartphone devices appeared first on Penetration Testing Tools.

A vulnerability was found in Adobe Acrobat Reader up to 11.0.19/15.006.30280/15.023.20070 and classified as critical. Affected by this issue is some unknown functionality. The manipulation leads to use after free. This vulnerability is handled as CVE-2017-3047. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

ESP32 Marauder The ESP32 Marauder is a suite of WiFi/Bluetooth offensive and defensive tools created for the ESP32 and was originally inspired by Spacehuhn’s esp8266_deauther project. The tool itself serves as a portable device used to test...

The post ESP32 Marauder: suite of WiFi/Bluetooth offensive and defensive tools for the ESP32 appeared first on Penetration Testing Tools.

A vulnerability was found in Jackdapp Jack'd - Gay Chat! Dating 1.4.53. It has been declared as critical. This vulnerability affects unknown code of the component X.509 Certificate Handler. The manipulation leads to cryptographic issues. This vulnerability was named CVE-2014-5779. The attack can only be initiated within the local network. There is no exploit available.