The t2'17 Call For Papers has been announced. It will take place October 26th through the 27th, 2017 in Helsinki, Finland.
89d78b6d86d1c3ad3d8b75ae3fa029eb58b02ee077150dfa9cfbc330506c94fe
Hashcat is an advanced GPU hash cracking utility that includes the World's fastest md5crypt, phpass, mscash2 and WPA / WPA2 cracker. It also has the first and only GPGPU-based rule engine, focuses on highly iterated modern hashes, single dictionary-based attacks, and more. This is the source code release.
3ef7550a4fbd083e583a1dc1e482f1476a36ad95c340b64b3e50cd68f06ef088
Hashcat is an advanced GPU hash cracking utility that includes the World's fastest md5crypt, phpass, mscash2 and WPA / WPA2 cracker. It also has the first and only GPGPU-based rule engine, focuses on highly iterated modern hashes, single dictionary-based attacks, and more. This is the binary release.
84ad1d952081effe32e0f2293fdce65961bb0c5c219026f2a6466c1f99bac8fb
Easy File Sharing Web Server version 7.2 suffers from a buffer overflow vulnerability.
72fcbe905756ed1d42583e8d6fcd1c8a372e756ccb0cc06867748487c3ce9915
Ubuntu Security Notice 3317-1 - It was discovered that Irssi incorrectly handled certain DCC messages. A malicious IRC server could use this issue to cause Irssi to crash, resulting in a denial of service. Joseph Bisch discovered that Irssi incorrectly handled receiving incorrectly quoted DCC files. A remote attacker could possibly use this issue to cause Irssi to crash, resulting in a denial of service. Various other issues were also addressed.
be0c4540a049b3150e94b5a16b4afdfbdd55a2c529e70e76736bf40c072c417f
Evolution Script CMS version 5.3 suffers from a cross site scripting vulnerability.
388d8c17b013c1e33d6a3538f4f8382f9b3547b97426fd325a83e22ab0d20406
Composr CMS version 10.0.0 suffers from a cross site scripting vulnerability.
b709869aa07d3ebc50c212967fd71013fa4609f669d4549639f9ebe6a983da95
MacOS and iOS suffer from a userspace entitlement race condition.
4ebafbb5739c54a9e9cc89090e800144ff08cbe890ca0a497d69232449556a6c
Real Estate Classifieds script suffers from a remote SQL injection vulnerability.
4d02967e8ba5fb31afc8f6c1fa055445d900cc21322bde17f750d5f54a198d55
VMware vSphere Data Protection versions 5.x and 6.x java deserialization exploit.
e258a32e613ab6d1d2f39dd77db5d22e8d887a395552f7368751b78c04acd847
WPForce is a suite of Wordpress Attack tools. Currently this contains 2 scripts - WPForce, which brute forces logins via the API, and Yertle, which uploads shells once admin credentials have been found. Yertle also contains a number of post exploitation modules.
06562f96cee40504f63268ed3261375fa80ce94059f2e9aa6c042492821898a1
DiskBoss version 8.0.16 input directory local buffer overflow exploit.
c8908f8964dcc41bcbf9da0b172c5062fa4ae5fa9645f89fc20bd171c5e48aaf
eCom Cart version 1.3 suffers from a remote SQL injection vulnerability.
9ff4ed1512fa2738bd1ef61c781cb96b4eab9068857bcea6e53affcaac22a64e