Jay Townsend

@[email protected]
7 Followers
36 Following
49 Posts
Jay TownsendJul 20, 2025
Have released a new version of DNSrecon, added caa record support, bug fixes and moved the project to use uv and made Python 3.12 the min supported version. Can get it from GitHub. #infosec #CybersecurityNews
Jay TownsendJul 8, 2025
New theHarvester has been released on GitHub have fun and report back #infosec #pentesting
Jay TownsendMar 29, 2024
Kali LinuxMar 29, 2024

As of the information we have currently, the following is true. Should more information come to light, we will continue to keep this situation updated.

The xz package, starting from versions 5.6.0 to 5.6.1, was found to contain a backdoor. This backdoor could potentially allow a malicious actor to compromise sshd authentication, granting unauthorized access to the entire system remotely. The impact of this vulnerability affected Kali between March 26th to March 29th. If you updated your Kali installation on or after March 26th, it is crucial to apply the latest updates today to address this issue. However, if you did not update your Kali installation before the 26th, you are not affected by this backdoor vulnerability.

More information can be found at https://www.helpnetsecurity.com/2024/03/29/cve-2024-3094-linux-backdoor/ and https://www.openwall.com/lists/oss-security/2024/03/29/4

Beware! Backdoor found in XZ utilities used by many Linux distros (CVE-2024-3094) - Help Net Security

A vulnerability (CVE-2024-3094) in XZ Utils may enable a malicious actor to gain unauthorized access to Linux systems remotely.

Help Net Security
Jay TownsendMar 29, 2024
@kalilinux can you confirm if kali is affected with the xz back door?
Jay TownsendJan 12, 2024
My changes for cowitness have been merged and a new release created with them in, go and get it while it’s hot ☺️ #infosec #cybersecurity #pentesting https://github.com/stolenusername/cowitness/releases/tag/1.3
Release 1.3 · stolenusername/cowitness

What's Changed Update Go version and dependencies, refine build steps and add flags … by @L1ghtn1ng in #12 Bump actions/setup-go from 4 to 5 by @dependabot in #11 Full Changelog: 1.2...1.3

GitHub
Jay TownsendDec 22, 2023
Show threadKevin BeaumontDec 22, 2023
Btw #NoName use hardcoded server 94.140.115.89 as a C2, and there's no auto update in their DDoS agent which volunteers install, if anybody wants to disrupt them to the point where they have to beg people to reinstall the agent.
Jay TownsendDec 18, 2023
Breaking: new theHarvester release hot of the press for this Xmas holidays #infosec #osint #theHarvester https://github.com/laramies/theHarvester/releases/tag/4.5.0
Release 4.5.0 · laramies/theHarvester

Package Maintainer Notes We have now migrated to pep517 Pipx We now support pipx installs thanks to @branchvincent in #1505 and pipx is a great way to easy fix the change with how python and pip w...

GitHub
Jay TownsendSep 26, 2023
@kalilinux you able to answer this please ? https://x.com/digininja/status/1706664781422432277?s=46&t=OIgGQZOi7uMpdQG4-CKlvQ
Robin on X

Can any @kalilinux experts tell me why the Squid package is available in snapshot but not in rolling? It's just taken me half an hour to work out that I've got to change the sources to get it installed.

X (formerly Twitter)
Jay TownsendJul 2, 2023
MastodonJul 2, 2023
⚠️ We are planning to release important security fixes for #Mastodon on July 6th, between 13:00 and 15:00 UTC. They will be available for the 4.1, 4.0 and 3.5 versions as well as a nightly release, to make the upgrade as small and painless for everyone as possible. Be ready to upgrade!
Jay TownsendMay 22, 2023
Enron HubbardMay 22, 2023
The real takeaway from the #Twitter bug restoring deleted tweets should be in recognizing that those tweets were never actually deleted