🔴 #Intel Graphics Driver Vulnerability (#CVE-2024-44160) - Critical

https://dailycve.com/intel-graphics-driver-vulnerability-cve-2024-44160-critical/

@Daily_CVE

🟠 Checkmk, Cross-Site Scripting (XSS), #CVE-2024-38860 (MEDIUM)

https://dailycve.com/checkmk-cross-site-scripting-xss-cve-2024-38860-medium/

@Daily_CVE

🔴 #Apple #iOS: Authentication Bypass (#CVE-2024-44202) - Critical

https://dailycve.com/apple-ios-authentication-bypass-cve-2024-44202-critical/

@Daily_CVE

🔴 #IBM Cognos Controller Vulnerability: Malicious File Upload (#CVE-2024-25019 - Critical)

https://dailycve.com/ibm-cognos-controller-vulnerability-malicious-file-upload-cve-2024-25019-critical/

@DailyCVE

🔴 Visteon Infotainment System Local Privilege Escalation Vulnerability (#CVE-2024-8356) - Critical

https://dailycve.com/visteon-infotainment-system-local-privilege-escalation-vulnerability-cve-2024-8356-critical/

@Daily_CVE

🔴 Visteon Infotainment App SoC Vulnerability (#CVE-2024-8357) - Critical

https://dailycve.com/visteon-infotainment-app-soc-vulnerability-cve-2024-8357-critical/

@Daily_CVE

🔴 Visteon Infotainment System Vulnerability (#CVE-2024-8359): High Risk of Remote Code Execution

https://dailycve.com/visteon-infotainment-system-vulnerability-cve-2024-8359-high-risk-of-remote-code-execution/

@Daily_CVE

🔵 #IBM Cognos Controller Vulnerability: Exposure of Sensitive Information (#CVE-2024-25035)

https://dailycve.com/ibm-cognos-controller-vulnerability-exposure-of-sensitive-information-cve-2024-25035/

@Daily_CVE

🔴 #IBM Cognos Controller, Unrestricted File Upload Vulnerability, #CVE-2024-2502 (Critical)

https://dailycve.com/ibm-cognos-controller-unrestricted-file-upload-vulnerability-cve-2024-2502-critical/

@Daily_CVE

🔴 #IBM Cognos Controller Vulnerability: #CVE-2024-45676 (Critical)

https://dailycve.com/ibm-cognos-controller-vulnerability-cve-2024-45676-critical/

@Daily_CVE

🔴 #IBM Cognos Controller Vulnerability: Weak Cryptographic Algorithms (#CVE-2024-41775 - Critical)

https://dailycve.com/ibm-cognos-controller-vulnerability-weak-cryptographic-algorithms-cve-2024-41775-critical/

@Daily_CVE

⚡️ #Galaxy Watch 4 Gets a Major Upgrade: One UI 6 Watch

https://undercodenews.com/galaxy-watch-4-gets-a-major-upgrade-one-ui-6-watch/

@Undercode_News

📱 #Apple Watch to Monitor Blood Pressure: A Game-Changer for Health Tracking

https://undercodenews.com/apple-watch-to-monitor-blood-pressure-a-game-changer-for-health-tracking/

@Undercode_News

⚡️ Cloudflare Tunnels: A New Tool in the Hacker's Arsenal

https://undercodenews.com/cloudflare-tunnels-a-new-tool-in-the-hackers-arsenal/

@Undercode_News

Call Recording Returns to #Galaxy S24 Series with One UI 70

https://undercodenews.com/call-recording-returns-to-galaxy-s24-series-with-one-ui-70/

@Undercode_News

🔐 A Sophisticated Cyberattack Targets UAE Residents

https://undercodenews.com/a-sophisticated-cyberattack-targets-uae-residents/

@Undercode_News

🚨 China's #Digital #Espionage: A Global Threat

https://undercodenews.com/chinas-digital-espionage-a-global-threat/

@Undercode_News

🔒 Lock Screen Widgets Carousel: A Missing Feature in One UI 70

https://undercodenews.com/lock-screen-widgets-carousel-a-missing-feature-in-one-ui-70/

@Undercode_News

▁ ▂ ▄ U𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁
🦑What is eBPF? 🤷♂️

With Cisco Hypershield being talked about EVERYWHERE, wouldn't it be great to know a little more about the technology that the solution is predominantly built around?

eBPF (extended Berkeley Packet Filter) is a technology that lets you run secure programs within the operating system kernel. This unlocks incredible power to monitor and control systems at a granular level, without the overhead of traditional methods.

Why eBPF Matters:

• 𝗨𝗻𝗹𝗲𝗮𝘀𝗵𝗲𝘀 𝗜𝗻𝗻𝗼𝘃𝗮𝘁𝗶𝗼𝗻: eBPF allows developers to extend kernel functionality without modifying kernel code, enabling rapid innovation in networking, security, and observability.

• 𝗕𝗼𝗼𝘀𝘁𝘀 𝗣𝗲𝗿𝗳𝗼𝗿𝗺𝗮𝗻𝗰𝗲: eBPF programs run with incredible efficiency, minimising performance impact and maximising resource utilisation.

• 𝗘𝗻𝗵𝗮𝗻𝗰𝗲𝘀 𝗦𝗲𝗰𝘂𝗿𝗶𝘁𝘆: Gain deep visibility into system behavior, detect threats in real-time, and enforce granular security policies at the kernel level.

• 𝗦𝗶𝗺𝗽𝗹𝗶𝗳𝗶𝗲𝘀 𝗢𝗯𝘀𝗲𝗿𝘃𝗮𝗯𝗶𝗹𝗶𝘁𝘆: Collect rich, detailed data on system performance and application behavior for faster troubleshooting and optimisation.

Ref: Antony Owen
▁ ▂ ▄ U𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

▁ ▂ ▄ U𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁
🦑Automated Wifi Hacking:

Wifite is a Python script designed for wireless network auditing, simplifying the use of wireless-auditing tools by automating their execution. It consolidates multiple attack methods to retrieve wireless passwords efficiently.

---

Features
- Attack Methods:
- WPS:
- Offline Pixie-Dust attack
- Online Brute-Force PIN attack
- WPA:
- Handshake Capture + offline cracking
- PMKID Hash Capture + offline cracking
- WEP:
- Fragmentation, chop-chop, aireplay, and other known attacks
- Automation:
- Select targets, and Wifite will handle the attack process automatically.
- 5GHz Support:
- Limited to compatible wireless cards (-5 switch).
- Cracked Password Storage:
- Saves results in the current directory with metadata.
- De-authentication Control:
- Disable deauths using --no-deauths.

---

Supported Operating Systems
- Designed for Kali Linux (latest version).
- Also supports ParrotSec.
- Other distributions may require manual updates of tools and wireless drivers.

---

Requirements
1. Wireless Card:
- Must support Monitor Mode and packet injection.
2. Essential Tools:
- Python (compatible with Python 2 & 3)
- Networking utilities:
- iwconfig, ifconfig
- Aircrack-ng Suite:
- airmon-ng, aircrack-ng, aireplay-ng, airodump-ng, packetforge-ng
3. Recommended Tools:
- tshark, reaver, bully, coWPAtty, pyrit, hashcat, hcxdumptool, hcxpcaptool

---

Installation
1. Clone the repository:

git clone https://github.com/derv82/wifite2.git
cd wifite2

2. Run Wifite directly:

sudo ./Wifite.py

3. Install Wifite system-wide:

sudo python setup.py install

- Installed to /usr/sbin/wifite.

4. Uninstallation:
Record and delete installed files:

sudo python setup.py install --record files.txt \
&& cat files.txt | xargs sudo rm \
&& rm -f files.txt

---

Usage
Run Wifite with default settings:
sudo ./Wifite.py
Optional arguments for specific attacks:
- PMKID capture:

--pmkid

- WPS Pixie-Dust attack:

--wps-only --pixie

- WPA handshake cracking:

--no-wps

- Disable deauth:

--no-deauths

---

Advanced Features
- Hidden SSID decloaking.
- Validation of handshakes with tools like pyrit, cowpatty, and aircrack-ng.
- WEP attack customization (e.g., replay, chopchop).
- Cracked passwords stored in the current directory with access point details.

Wifite simplifies wireless security assessments, making it an essential tool for pen testers using supported Linux distributions.

▁ ▂ ▄ U𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

▁ ▂ ▄ U𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁
🦑Why Hardware Tools Are Essential in 2024 For WIFI hacking ?

1⃣increased Security Standards:
Newer Wi-Fi standards like WPA3 implement enhanced encryption (e.g., SAE or Simultaneous Authentication of Equals) that resist traditional brute-force or offline cracking attacks.
WEP and WPA1 are now nearly obsolete, reducing opportunities for basic software-based attacks

2⃣Limitations of Built-In Laptop Wireless Cards:
Many laptop wireless cards lack support for Monitor Mode or packet injection, which are critical for capturing and injecting data during attacks.
Integrated cards are typically low-power, making them less effective for long-range or interference-prone environments.

3⃣Specialized Tools for Specific Tasks:
Capturing PMKIDs, deauthing access points, and brute-forcing PINs now require higher performance and specialized chipsets found in dedicated hardware tools.

▁ ▂ ▄ U𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁