theregister

CISA releases malware analysis for Sharepoint Server attack

CISA has published a malware analysis report with compromise indicators and Sigma rules for "ToolShell" attacks targeting specific Microsoft SharePoint Server versions. "Cyber threat actors have ...
Security Boulevard

Updated: ACTIVE EXPLOITATION ALERT: Zero-Day Vulnerability Affecting Self-Hosted SharePoint Servers (CVE-2025-53770/53771)

On July 18, 2025, Eye Security identified large-scale exploitation of a zero-day SharePoint vulnerability chain that enables unauthenticated remote code execution (RCE). Within hours, attackers were ...
CSOonline

Microsoft mitigation for new Exchange Server zero-day exploits can be bypassed

Attackers are currently exploiting two unpatched vulnerabilities to remotely compromise on-premises Microsoft Exchange servers. Microsoft confirmed the flaws late last week and published mitigation ...
GitHub

CSI/php_webshell_rules.yara

1. a webshell must always execute some kind of payload (in $payload*). the payload is either: -- direct php function like exec, file write, sql, ... -- indirect via ...
GitHub

In this repo you will find the Penetration Testing tools available on the internet

Notifications You must be signed in to change notification settings And many more. I created this repo to have an overview over my starred repos. I was not able to filter in categories before. Feel ...