David Bors

Pentest-Tools.com, Security Research Engineer

I have a deep-rooted passion for unravelling the complexities of cybersecurity. I seek ways to make systems do what they were not programmed to do. I like to 'move fast and break things' and learn new concepts while using my technical expertise to improve security systems.

How and why we built the Kubernetes Vulnerability Scanner

We began developing the Kubernetes Scanner with a focus on black and gray box remote scanning scenarios, as these are the most common among bug bounty hunters, pentesters, and red-teamers. We believe our Kubernetes Vulnerability Scanner is a state of the art improvement for its category of tools, but we don’t plan to stop here. We have a range of improvements in mind, from new detections and exploits to better integrations with other tools that will make this scanner an even more important asset for our customers.

Security research

CVE-2024-3094 - The XZ Utils Backdoor, a critical SSH vulnerability in Linux

The SSH backdoor would allow remote unauthenticated attackers to achieve remote code execution on the infected systems bypassing the authentication in place. From the information available at the time of writing, the backdoor seems to work only on GNU Linux x86/64 when the SSH server is run as a service by Systemd. Moreover, the library should have been installed by a packet manager. For the exploit to work, one should also expose the SSH server to the Internet so the attacker can interact remotely with it.

Author(s)

David Bors

Published at: 02 Apr 2024

David Bors

Posts by this author

How and why we built the Kubernetes Vulnerability Scanner

What is CVE-2024-6387? Understand RegreSSHion, the OpenSSH vulnerability

CVE-2024-3094 - The XZ Utils Backdoor, a critical SSH vulnerability in Linux

From bypass to breach: how to get RCE in Confluence's latest CVEs

Discover our ethical hacking toolkit and all the free tools you can use!