Kali Linux Tutorials News Updates

The latest version of UEFITool / UEFIExtract / UEFIFind, labeled as NE A70, marks a significant milestone in the evolution of these tools. Released on March 13, 2025, this version transitions from hand-crafted parsers to those generated using the KaitaiStruct declarative DSL for all NVRAM parsers. This shift enhances the… Read more »

Creating a professional portfolio as a software developer is crucial for showcasing skills and projects to potential employers or clients. Utilizing React and Vite can help build a modern, efficient, and visually appealing portfolio. Here’s how these tools function together to create an impressive online presence: Key Tools Improvements Building… Read more »

In the era of AI-generated content, maintaining authenticity in search results has become increasingly challenging. To address this issue, the uBlock Origin & uBlacklist Huge AI Blocklist has emerged as a powerful tool. This blocklist is designed to filter out AI-generated content from image search engines like Google, DuckDuckGo, and… Read more »

Web-Check is a powerful, open-source tool designed to provide comprehensive insights into a website’s underlying structure, security, and performance. Developed by Alicia Sykes, it is available for free use and modification under the MIT license. This tool is particularly useful for developers, system administrators, security researchers, and anyone interested in… Read more »

Fcuk, or Fuzzy CUDA Kernel, is an innovative library designed to leverage the power of CUDA for fuzzy string matching. It combines advanced techniques such as dynamic programming, wavefront parallelization, and parallel reduction to achieve high-performance string matching and scoring. Key Features To use Fcuk, users can clone the repository… Read more »

简介 CVE-2025-24813 是一个影响 Apache Tomcat 的远程代码执行（RCE）漏洞，允许攻击者通过发送一个 PUT 请求上传恶意的序列化会话文件，并通过 GET 请求触发反序列化，从而在服务器上执行任意代码。该漏洞已在野外被利用，且其利用条件相对简单，只需 Tomcat 使用文件存储会话且支持部分 PUT 请求即可。 脚本功能 CVE-2025-24813-PoC 脚本主要用于检测 Apache Tomcat 是否存在此漏洞。它支持批量检测和单个检测两种模式。 脚本原理 注意事项 相关资源 更多关于 CVE-2025-24813 的 PoC 脚本和漏洞复现步骤，请参考相关网络安全论坛和博客文章。 Read more »

Binwalk is a powerful tool designed for analyzing and extracting embedded files from firmware images. It is widely used by security researchers and penetration testers for identifying vulnerabilities in IoT devices and other hardware. Binwalk’s capabilities have been enhanced with the release of Binwalk v3, which is rewritten in Rust… Read more »

Xenon is a Windows agent designed for the Mythic framework, inspired by tools like Cobalt Strike. It is currently in an early stage of development and is not considered operationally secure (OPSEC safe), meaning it may contain memory leaks and other issues that could lead to crashes. Despite these limitations,… Read more »

The OSCP (Offensive Security Certified Professional) certification is a highly respected credential in the cybersecurity industry, focusing on hands-on penetration testing skills. To achieve this certification, candidates must demonstrate proficiency in using various tools and techniques to identify vulnerabilities and exploit them. Here’s an overview of some key tools and… Read more »

Famatech offers two powerful network management tools: Advanced IP Scanner and Advanced Port Scanner. Both tools are designed to enhance network security and management capabilities, but they serve different purposes. Advanced IP Scanner Advanced IP Scanner is a free, fast, and user-friendly tool for scanning IP addresses and ports within… Read more »