Category Archives: Vulnerabilities

OWASP-Nettacker – Automated Penetration Testing Framework

OWASP-Nettacker project is created to automate information gathering, vulnerability scanning and eventually generating a report for networks, including services, bugs, vulnerabilities, misconfigurations, and other information

Researchers Remotely Hijack Facebook single sign-on

Single Sign-On is becoming the first way used to allow users logging into several web resources. This technology may include several vulnerabilities and here as any technology will have some advantages and disadvantages

Crowdfense launches new vulnerability research platform

Crowdfense a Dubai based company launched a new vulnerability research platform with bug bounty program where security researchers are able to sell new zero days and exploit online. This will provide users a convenient web interface to discuss/validate their finding.

Cloud Security Suite – Tool for Auditing AWS & GCP Infrastructure

Cloud Security Suite is an open source tool that will help in auditing the configuration and security of the cloud account.

Lynis – Security auditing tool for Unix/Linux systems

Lynis is an open source security auditing tool. Used by system administrators, security professionals, and auditors, to evaluate the security defenses of their Linux and Unix-based systems. It runs on the host itself, so it performs more extensive security scans

Rakos Malware that targets IoT devices and servers under SSH

Rakos Malware that targets IoT devices and servers under SSH. Security researchers at ESET uncovered a new malware that targets IoT-devices and servers running Linux.

OpenSSL Fixed a Critical Vulnerability

This week OpenSSL Fixed a Critical Vulnerability, the new security vulnerability discovered in OpenSSL. CVE-2015-1793 is due to a problem with authentication certificate processing which may lead to MITM man in the middle attack. OpenSSL Foundation released the patch to