TGTGInsighttelegram intelligenceLIVE / telegram public index
← GitHub Trends

TGINSIGHT SIMILAR POSTS

Find similar content

Source channel @githubtrending · Post #15024 · Aug 2

#java#adversary_emulation#adversary_exposure_validation#aev#attack_simulation#breach_simulator#cybersecurity#purple_team OpenBAS is a free, open-source platform that helps you plan and run cyberattack simulations to find security weaknesses in your organization. It supports teamwork, real-time monitoring, and detailed feedback, letting you test defenses against real-world threats using up-to-date intelligence from OpenCTI. You can simulate attacks through emails, SMS, social media, and more, making your training realistic and comprehensive. OpenBAS offers both a Community Edition and a more advanced Enterprise Edition. It’s easy to install with Docker or manually, and you can try it online before using it. This helps you improve your cybersecurity by practicing and identifying gaps before real attacks happen. https://github.com/OpenBAS-Platform/openbas

Results

1 similar post found

Search: #w3

当前筛选 #w3清除筛选
科技&趣闻&杂记

@kejiqu · Post #3997 · 12/25/2025, 12:26 AM

WordPress 头部插件曝 9/10 分高危漏洞,官方连发三补丁全失效 WordPress 缓存插件 W3 Total Cache 遭遇严重安全漏洞(CVE-2025-9501),该插件安装量超过100万。漏洞源于插件处理动态内容时使用 PHP 的 eval() 函数,允许攻击者通过在评论中注入代码执行恶意指令。研究人员指出,W3 Total Cache 针对该漏洞发布的2.8.13、2.8.14和2.8.15三个补丁均未能有效修复,存在逻辑缺陷可被绕过。漏洞利用需要攻击者获取 W3TC_DYNAMIC_SECURITY 安全令牌,且网站需允许未登录用户发布评论并开启页面缓存功能。安全专家建议管理员立即审计安全令牌的唯一性,限制未验证用户的评论权限,并审查近期评论日志。IT之家 🏷#W3#Total#Cache#CVE#WordPress 📢频道👥群组📝投稿