what you don't know can hurt you
Showing 1 - 25 of 9,060 RSS Feed

Operating System: UNIX

Lynis Auditing Tool 3.0.8
Posted May 17, 2022
Authored by Michael Boelen | Site cisofy.com

Lynis is an auditing tool for Unix (specialists). It scans the system and available software to detect security issues. Beside security related information it will also scan for general system information, installed packages and configuration mistakes. This software aims in assisting automated auditing, software patch management, vulnerability and malware scanning of Unix based systems.

Changes: Added MALW-3274, PKGS-7346, and PKGS-7395. Modifications have been made to AUTH-9408, FILE-7524, HTTP-6643, KRNL-5788, KRNL-5820, KRNL-5830, KRNL-5830, and PRNT-2308.
tags | tool, scanner
systems | unix
SHA-256 | 98373a4cc9d0471ab9bebb249e442fcf94b6bf6d4e9c6fc0b22bca1506646c63
COOPER Analysis Tool
Posted May 13, 2022
Authored by Purui Su, Hong Hu, Yanhao Wang, Peng Xu | Site github.com

Cooper utilizes cooperative mutation to test the binding code of scripting languages to find memory-safe issues. Cooperative mutation simultaneously modifies the script code and the related document objects to explore various code paths of the binding code. To support cooperative mutation, the authors infer the relationship between script code and document objects to guide the two-dimensional mutation. They applied their tool Cooper on three popular commercial PDF tools, Adobe Acrobat, Foxit Reader, and Microsoft Word. Cooper detected 134 previously unknown bugs, which resulted in 33 CVE entries and 22K bug bounties.

tags | tool
systems | unix
SHA-256 | 2b1855049e54d63e476c65196cd445f22b388370ab838980e67d3919d5943a51
Aircrack-ng Wireless Network Tools 1.7
Posted May 11, 2022
Site aircrack-ng.org

aircrack-ng is a set of tools for auditing wireless networks. It's an enhanced/reborn version of aircrack. It consists of airodump (an 802.11 packet capture program), aireplay (an 802.11 packet injection program), aircrack (static WEP and WPA-PSK cracking), airdecap (decrypts WEP/WPA capture files), and some tools to handle capture files (merge, convert, etc.).

Changes: Airdecap-ng has endianness fixes, outputs PCAP as little endian, and a fixed blank encryption field when APs have TKIP (and/or CCMP) with WPA2. Airodump-ng has fixes related to handshake replay, timeouts when parsing EAPOL, WEP display, and much more. Airodump-ng has an updated encryption filter, a fix for out-of-order timestamp captures, and much more. In total this release has 78 changes and updates.
tags | tool, wireless
systems | unix
SHA-256 | 05a704e3c8f7792a17315080a21214a4448fd2452c1b0dd5226a3a55f90b58c3
Red Hat Security Advisory 2022-1950-01
Posted May 11, 2022
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2022-1950-01 - Dovecot is an IMAP server for Linux and other UNIX-like systems, written primarily with security in mind. It also contains a small POP3 server, and supports e-mail in either the maildir or mbox format. The SQL drivers and authentication plug-ins are provided as subpackages.

tags | advisory, imap
systems | linux, redhat, unix
advisories | CVE-2021-33515
SHA-256 | c96d5111f5070a5af8936a5b285732d58b1ba5c094025f86d272acb9af844c39
Red Hat Security Advisory 2022-2013-01
Posted May 11, 2022
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2022-2013-01 - OpenSSH is an SSH protocol implementation supported by a number of Linux, UNIX, and similar operating systems. It includes the core files necessary for both the OpenSSH client and server. Issues addressed include a privilege escalation vulnerability.

tags | advisory, protocol
systems | linux, redhat, unix
advisories | CVE-2021-41617
SHA-256 | 13bc1420d8a6b3ab9e7cc3edb50bece9071c44dfad388f8f4a9f1a3ec25f6121
Samhain File Integrity Checker 4.4.9
Posted May 10, 2022
Authored by Rainer Wichmann | Site samhain.sourceforge.net

Samhain is a file system integrity checker that can be used as a client/server application for centralized monitoring of networked hosts. Databases and configuration files can be stored on the server. Databases, logs, and config files can be signed for tamper resistance. In addition to forwarding reports to the log server via authenticated TCP/IP connections, several other logging facilities (e-mail, console, and syslog) are available. Tested on Linux, AIX, HP-UX, Unixware, Sun and Solaris.

Changes: Added a fix for double newline stripping when reading from database.
tags | tool, tcp, intrusion detection
systems | linux, unix, solaris, aix, hpux, unixware
SHA-256 | 9f02f9145915ba4b5ef6657d539d3dbdbd9a4ad9fd35308bb9bb64509f6c4015
Adversary3 2.0
Posted May 6, 2022
Authored by malvuln | Site malvuln.com

Adversary3 is a tool to navigate the vast www.malvuln.com malware vulnerability dataset.

Changes: Added new exploit class Code Execution and Ransomware vulnerabilities targeting Conti, REvil, BlackBasta, Lokilocker, WannaCry, etc.
tags | tool
systems | unix
SHA-256 | db3216d29a33f761f3f5971b760c344d0ec4ceceed18eb0654f31683dba10f40
Wireshark Analyzer 3.6.5
Posted May 5, 2022
Authored by Gerald Combs | Site wireshark.org

Wireshark is a GTK+-based network protocol analyzer that lets you capture and interactively browse the contents of network frames. The goal of the project is to create a commercial-quality analyzer for Unix and Win32 and to give Wireshark features that are missing from closed-source sniffers. This is the source code release.

Changes: This release fixes an installation issue on Windows which was introduced in the 3.6.4 release.
tags | tool, sniffer, protocol
systems | windows, unix
SHA-256 | a2d741d60ff3516137d4b9f38cdc07eee54a56ec36046f4c3afee6bfb4f6eaa1
Clam AntiVirus Toolkit 0.105.0
Posted May 4, 2022
Authored by Tomasz Kojm | Site clamav.net

Clam AntiVirus is an anti-virus toolkit for Unix. The main purpose of this software is the integration with mail servers (attachment scanning). The package provides a flexible and scalable multi-threaded daemon, a command-line scanner, and a tool for automatic updating via Internet. The programs are based on a shared library distributed with the Clam AntiVirus package, which you can use in your own software.

Changes: Starting with ClamAV v0.105, the Rust toolchain is required to compile ClamAV. Increased the default limits for file-size and scan-size. Added image fuzzy hash subsignatures for logical signatures. Updated the LLVM bytecode runtime support so that it can use LLVM versions 8 through 12 and removed support for earlier LLVM versions. Added a GenerateMetadataJson option to ClamD. Various other updates.
tags | tool, virus
systems | unix
SHA-256 | 270203a54c458049db54fcd93683ff5b2db19151f363c48e82cecefdde2b35d4
OpenSSL Toolkit 3.0.3
Posted May 3, 2022
Site openssl.org

OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide. The 3.x series is the current major version of OpenSSL.

Changes: Fixed a bug in the c_rehash script which was not properly sanitizing shell metacharacters to prevent command injection. Fixed a bug in the function OCSP_basic_verify that verifies the signer certificate on an OCSP response. Fixed a bug where the RC4-MD5 ciphersuite incorrectly used the AAD data as the MAC key. Fixed a bug in the OPENSSL_LH_flush() function that breaks reuse of the memory occupied by the removed hash table entries.
tags | tool, encryption, protocol
systems | unix
advisories | CVE-2022-1292, CVE-2022-1343, CVE-2022-1434, CVE-2022-1473
SHA-256 | ee0078adcef1de5f003c62c80cc96527721609c6f3bb42b7795df31f8b558c0b
OpenSSL Toolkit 1.1.1o
Posted May 3, 2022
Site openssl.org

OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide.

Changes: Fixed a bug in the c_rehash script which was not properly sanitizing shell metacharacters to prevent command injection.
tags | tool, encryption, protocol
systems | unix
advisories | CVE-2022-1292
SHA-256 | 9384a2b0570dd80358841464677115df785edb941c71211f75076d72fe6b438f
Samhain File Integrity Checker 4.4.8
Posted Apr 30, 2022
Authored by Rainer Wichmann | Site samhain.sourceforge.net

Samhain is a file system integrity checker that can be used as a client/server application for centralized monitoring of networked hosts. Databases and configuration files can be stored on the server. Databases, logs, and config files can be signed for tamper resistance. In addition to forwarding reports to the log server via authenticated TCP/IP connections, several other logging facilities (e-mail, console, and syslog) are available. Tested on Linux, AIX, HP-UX, Unixware, Sun and Solaris.

Changes: New server option Alias=alias@hostname.
tags | tool, tcp, intrusion detection
systems | linux, unix, solaris, aix, hpux, unixware
SHA-256 | 8970a6f4fea1df3c66f97d3637efbf1c050e5f59e827b30e5428970311648b47
TOR Virtual Network Tunneling Tool 0.4.7.7
Posted Apr 29, 2022
Authored by Roger Dingledine | Site tor.eff.org

Tor is a network of virtual tunnels that allows people and groups to improve their privacy and security on the Internet. It also enables software developers to create new communication tools with built-in privacy features. It provides the foundation for a range of applications that allow organizations and individuals to share information over public networks without compromising their privacy. Individuals can use it to keep remote Websites from tracking them and their family members. They can also use it to connect to resources such as news sites or instant messaging services that are blocked by their local Internet service providers (ISPs). This is the source code release.

Changes: This is the first stable version of the 0.4.7.x series. This series includes several major bugfixes from previous series and one massive new feature: congestion control.
tags | tool, remote, local, peer2peer
systems | unix
SHA-256 | 3e131158b52b9435d7e43d1c47ef288b96d005342cc44b8c950bb403851a5b44
nfstream 6.5.1
Posted Apr 27, 2022
Authored by Zied Aouini | Site github.com

nfstream is a Python package providing fast, flexible, and expressive data structures designed to make working with online or offline network data both easy and intuitive. It aims to be the fundamental high-level building block for doing practical, real world network data analysis in Python. Additionally, it has the broader goal of becoming a common network data processing framework for researchers providing data reproducibility across experiments.

Changes: Fix for broken pypi Linux wheels.
tags | tool, python
systems | unix
SHA-256 | 11018a20c5c4a8ffe5475a7ea057d506b57d4c3b931d8a2018a96c1341de0d95
Mandos Encrypted File System Unattended Reboot Utility 1.8.15
Posted Apr 26, 2022
Authored by Teddy | Site fukt.bsnet.se

The Mandos system allows computers to have encrypted root file systems and at the same time be capable of remote or unattended reboots. The computers run a small client program in the initial RAM disk environment which will communicate with a server over a network. All network communication is encrypted using TLS. The clients are identified by the server using an OpenPGP key that is unique to each client. The server sends the clients an encrypted password. The encrypted password is decrypted by the clients using the same OpenPGP key, and the password is then used to unlock the root file system.

Changes: Bug fix added related to password handling and backslashes.
tags | tool, remote, root
systems | linux, unix
SHA-256 | 74e7e1915cb5cb3617d80c379d9ecac315cfe154c815faf6a226ae482383f03f
Zeek 4.2.1
Posted Apr 22, 2022
Authored by Robin Sommer, Vern Paxson | Site zeek.org

Zeek is a powerful network analysis framework that is much different from the typical IDS you may know. While focusing on network security monitoring, Zeek provides a comprehensive platform for more general network traffic analysis as well. Well grounded in more than 15 years of research, Zeek has successfully bridged the traditional gap between academia and operations since its inception. Today, it is relied upon operationally in particular by many scientific environments for securing their cyber-infrastructure. Zeek's user community includes major universities, research labs, supercomputing centers, and open-science communities. This is the source code release.

Changes: Fixed a potential unbounded state growth in the FTP analyzer when receiving a specially-crafted stream of commands that could lead to a buffer overflow. Fix to ensure both protocol and analyzer confirmation and violation events can be called. Addressed an issue where empty table constructors with &default attributes may cause a crash. Fixed a bug in ZAM when a function containing a loop is inlined. Reduced the interpreter frames generated by ZAM when inlining function bodies. Various other updates.
tags | tool, intrusion detection
systems | unix
SHA-256 | 6b13489b30494c7c5dda453fc50981e5943d6715b6c9b5b7a85abb80bbe6d116
Suricata IDPE 6.0.5
Posted Apr 21, 2022
Site suricata.io

Suricata is a network intrusion detection and prevention engine developed by the Open Information Security Foundation and its supporting vendors. The engine is multi-threaded and has native IPv6 support. It's capable of loading existing Snort rules and signatures and supports the Barnyard and Barnyard2 tools.

Changes: Three security issues, dozens of bug fixes, three features, three tasks, and some documentation changes.
tags | tool, intrusion detection
systems | unix
SHA-256 | 0d4197047c84ba070dfc6b1d9f9ee92f52a71403bfac0e29b2554bb21fe00754
AIEngine 2.1.0
Posted Apr 18, 2022
Authored by Luis Campo Giralte | Site bitbucket.org

AIEngine is a packet inspection engine with capabilities of learning without any human intervention. It helps network/security professionals to identify traffic and develop signatures for use them on NIDS, Firewalls, Traffic classifiers and so on.

Changes: Docker support. Bug fixing. Configure the engine over HTTP REST API. Support for domain matching on the binary. Support for remote code execution on python over the API. Support for callback run execution with Cache object fails. Support for network device changes (up/down).
tags | tool
systems | unix
SHA-256 | 66a2915707cf32687ba04b9a702b1e289d10ca25b17ae96de3d358637a5d683a
Haveged 1.9.18
Posted Apr 11, 2022
Site issihosts.com

haveged is a daemon that feeds the /dev/random pool on Linux using an adaptation of the HArdware Volatile Entropy Gathering and Expansion algorithm invented at IRISA. The algorithm is self-tuning on machines with cpuid support, and has been tested in both 32-bit and 64-bit environments. The tarball uses the GNU build mechanism, and includes self test targets and a spec file for those who want to build an RPM.

Changes: Round bits up and target full pool size. Specify the right kernel commit in README.
tags | tool
systems | linux, unix
SHA-256 | b835fa02b52ee7d06276e028571cadcb14d08f5e5a4b5767adf81451f70561c7
OpenSSH 9.0p1
Posted Apr 8, 2022
Authored by Damien Miller | Site openssh.com

This is a Linux/portable port of OpenBSD's excellent OpenSSH. OpenSSH is based on the last free version of Tatu Ylonen's SSH with all patent-encumbered algorithms removed, all known security bugs fixed, new features reintroduced, and many other clean-ups.

Changes: This release is focused on bug fixing. This release switches scp(1) from using the legacy scp/rcp protocol to using the SFTP protocol by default. 6 bug fixes, 3 new features, and 7 portability updates.
tags | tool, encryption
systems | linux, unix, openbsd
SHA-256 | 03974302161e9ecce32153cfa10012f1e65c8f3750f573a73ab1befd5972a28a
PHP filter_var Bypass Patch
Posted Mar 29, 2022
Authored by Jordy Zomer

When the filter_var function is used in conjunction with the flags FILTER_VALIDATE_DOMAIN and FILTER_FLAG_HOSTNAME, there is a vulnerability in PHP that allows the filter to be bypassed. A patch has been included by the researcher as the PHP security team seems to have ignored this concern.

tags | advisory, php, patch, bypass
systems | unix
SHA-256 | adddea024dbdd005a547c113193969e21a6c422c65e5611f207efd46bf8ae635
Wireshark Analyzer 3.6.3
Posted Mar 24, 2022
Authored by Gerald Combs | Site wireshark.org

Wireshark is a GTK+-based network protocol analyzer that lets you capture and interactively browse the contents of network frames. The goal of the project is to create a commercial-quality analyzer for Unix and Win32 and to give Wireshark features that are missing from closed-source sniffers. This is the source code release.

Changes: 8 bug fixes added. Updated protocol support for CSN.1, HTTP, IEEE 802.11, NTLM SSP, PFCP, PKTLOG, SSDP, TLS, and USB HID. No new or updated features in this release.
tags | tool, sniffer, protocol
systems | windows, unix
SHA-256 | b60364a4c0068a10811ab3fd075ca6c1eb0e75d44600271b88a20ed93a2ef631
Adversary3 1.0
Posted Mar 21, 2022
Authored by malvuln | Site malvuln.com

Adversary3 is a tool to navigate the vast www.malvuln.com malware vulnerability dataset.

tags | tool
systems | unix
SHA-256 | b3a55de6e0020ab30f2d793cc9afd88e324fe8b4fd73dc245afb8d7eed7cc19f
nfstream 6.4.3
Posted Mar 16, 2022
Authored by Zied Aouini | Site github.com

nfstream is a Python package providing fast, flexible, and expressive data structures designed to make working with online or offline network data both easy and intuitive. It aims to be the fundamental high-level building block for doing practical, real world network data analysis in Python. Additionally, it has the broader goal of becoming a common network data processing framework for researchers providing data reproducibility across experiments.

Changes: Added CSV rotating files feature. Added pypi wheels for aarch64 and armhf. nDPI maintenance update. Fixed RAW datalink handling on Windows.
tags | tool, python
systems | unix
SHA-256 | 9731627a953810a577873c5bb602e83d5338288165babb0b69ad6cec1104b403
OpenSSL Toolkit 3.0.2
Posted Mar 16, 2022
Site openssl.org

OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide. The 3.x series is the current major version of OpenSSL.

Changes: Fixed a bug in the BN_mod_sqrt() function that can cause it to loop forever for non-prime moduli. Added ciphersuites based on DHE_PSK (RFC 4279) and ECDHE_PSK (RFC 5489) to the list of ciphersuites providing Perfect Forward Secrecy as required by SECLEVEL greater than or equal to 3. Made the AES constant time code for no-asm configurations optional due to the resulting 95% performance degradation. Fixed PEM_write_bio_PKCS8PrivateKey() to make it possible to use empty passphrase strings. The negative return value handling of the certificate verification callback was reverted. The replacement is to set the verification retry state with the SSL_set_retry_verify() function.
tags | tool, encryption, protocol
systems | unix
SHA-256 | 98e91ccead4d4756ae3c9cde5e09191a8e586d9f4d50838e7ec09d6411dfdb63
Page 1 of 363
Back12345Next

File Archive:

May 2022

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    May 1st
    0 Files
  • 2
    May 2nd
    15 Files
  • 3
    May 3rd
    19 Files
  • 4
    May 4th
    24 Files
  • 5
    May 5th
    15 Files
  • 6
    May 6th
    14 Files
  • 7
    May 7th
    0 Files
  • 8
    May 8th
    0 Files
  • 9
    May 9th
    13 Files
  • 10
    May 10th
    7 Files
  • 11
    May 11th
    99 Files
  • 12
    May 12th
    45 Files
  • 13
    May 13th
    7 Files
  • 14
    May 14th
    0 Files
  • 15
    May 15th
    0 Files
  • 16
    May 16th
    16 Files
  • 17
    May 17th
    26 Files
  • 18
    May 18th
    4 Files
  • 19
    May 19th
    17 Files
  • 20
    May 20th
    2 Files
  • 21
    May 21st
    0 Files
  • 22
    May 22nd
    0 Files
  • 23
    May 23rd
    6 Files
  • 24
    May 24th
    0 Files
  • 25
    May 25th
    0 Files
  • 26
    May 26th
    0 Files
  • 27
    May 27th
    0 Files
  • 28
    May 28th
    0 Files
  • 29
    May 29th
    0 Files
  • 30
    May 30th
    0 Files
  • 31
    May 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close