CISA Releases Securing Industrial Control Systems: A Unified Initiative

Original release date: July 7, 2020

The Cybersecurity and Infrastructure Security Agency (CISA) has released its five-year industrial control systems (ICS) strategy: Securing Industrial Control Systems: A Unified Initiative. The strategy—developed in collaboration with industry and government partners—lays out CISA's plan to improve, unify, and focus the effort to secure ICS and protect critical infrastructure.

CISA encourages users—including ICS and critical infrastructure partners—to review Securing Industrial Control Systems: A Unified Initiative for more information.

This product is provided subject to this Notification and this Privacy & Use policy.

Axiom – Pen-Testing Server For Collecting Bug Bounties

Axiom – Pen-Testing Server For Collecting Bug Bounties

Project Axiom is a set of utilities for managing a small dynamic infrastructure setup for bug bounty, basically a pen-testing server out of the box with 1-line.

With Axiom, you just need to run a single command to get setup, and then you can use the Axiom toolkit scripts to spin up and down your new hacking VPS.

Setting up your own ‘hacking vps’, to catch shells, run enumeration tools, scan, let things run in the background in a tmux window, used to be an afternoon project – running into a whole day sometimes if you hit some package isues or ‘dependency hell’.

Read the rest of Axiom – Pen-Testing Server For Collecting Bug Bounties now! Only available at Darknet.

F5 Releases Security Advisory for BIG-IP TMUI RCE vulnerability, CVE-2020-5902

Original release date: July 4, 2020

F5 has released a security advisory to address a remote code execution (RCE) vulnerability—CVE-2020-5902—in the BIG-IP Traffic Management User Interface (TMUI). An attacker could exploit this vulnerability to take control of an affected system.

The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the F5 advisory for CVE-2020-5902 and upgrade to the appropriate version.

This product is provided subject to this Notification and this Privacy & Use policy.

F5 Releases Security Advisory for BIG-IP TMUI RCE vulnerability, CVE-2020-5902

Original release date: July 4, 2020

F5 has released a security advisory to address a remote code execution (RCE) vulnerability—CVE-2020-5902—in the BIG-IP Traffic Management User Interface (TMUI). An attacker could exploit this vulnerability to take control of an affected system.

The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the F5 advisory for CVE-2020-5902 and upgrade to the appropriate version.

This product is provided subject to this Notification and this Privacy & Use policy.