Threat Surface Pulse
Real-time snapshots from CISA KEV and other signals. Highlights exposed risk and trending CVEs.
- Recent KEV additions
- Exec-ready talking points
Sudo
Sudo contains an inclusion of functionality from untrusted control sphere vulnerability. This vulnerability could allow local attacker to leverage sudo’s -R (--chroot) option to run arbitrary commands as root, even if they are not listed in the sudoers file.
Libraesva
Libraesva Email Security Gateway (ESG) contains a command injection vulnerability which allows command injection via a compressed e-mail attachment.
Fortra
Fortra GoAnywhere MFT contains a deserialization of untrusted data vulnerability allows an actor with a validly forged license response signature to deserialize an arbitrary actor-controlled object, possibly leading to command injection.
Cisco
Cisco IOS and IOS XE contains a stack-based buffer overflow vulnerability in the Simple Network Management Protocol (SNMP) subsystem that could allow for denial of service or remote code execution. A successful exploit could allow a low-privileged attacker to cause the affected system to reload, resulting in a DoS condition, or allow a high-privileged attacker to execute arbitrary code as the root user and obtain full control of the affected system.
Adminer
Adminer contains a server-side request forgery vulnerability that, when exploited, allows a remote attacker to obtain potentially sensitive information.
AI/ML Signal Tracker
Tracks model releases, repos, and outages; summarizes impact for platform roadmaps.
- Top moving repos
- Signal strength
mikehubers/Awesome-AI-For-Security
🛡️ Discover essential tools and resources that leverage AI for enhancing cybersecurity, focusing on modern technologies and their applications in security operations.
vittipum/CyberSecurity-Network-Sniffer
🛡️ A lightweight Python-based network scanner that detects and lists all devices on your local network using IP and MAC addresses. Built with Scapy for cybersecurity and network analysis tasks.
daryllundy/wp-ai-security-scanner
An AI-powered WordPress security scanner with intelligent threat detection and automated remediation capabilities
PeterHovng/HUTECH_DACN.CyberSecurity
Đồ án chuyên ngành An ninh mạng "Hệ thống phát hiện tấn công mạng trên AWS bằng Machine Learning"
durellwilson/security-awareness-course
🛡️ Comprehensive security course: Deepfakes & Prompt Injections - Detection, Prevention & Response
natinew77-creator/SmartGuard-SMS-Security
A real-time SMS security agent that uses Deep Learning to intercept and blur phishing threats in <100ms.