Follow me on twitter Follow @RedPacketSec and join the Telegram channel Recently, India’s largest data agency NIC ( National Informatics Center) was hacked by a malware unidentified as of yet. The attack was sent from an email, infiltrating the network and around a hundred computers were affected. After the […]
News
2006 posts
Follow me on twitter Follow @RedPacketSec and join the Telegram channel A new vulnerability named Zerologon has been identified by cybersecurity organization, Secura who tracked the high rated vulnerability as CVE-2020-1472; it allows attackers to gain admin control of a Windows domain, inducing the ability to steal credentials from individual […]
Follow me on twitter Follow @RedPacketSec and join the Telegram channel Wireshark plugin to work with Event Tracing for Windows Microsoft Message Analyzer is being retired and its download packages were removed from microsoft.com sites on November 25 2019. Wireshark have built a huge library of network protocol dissectors. The […]
Follow me on twitter Follow @RedPacketSec and join the Telegram channel Scan only once by IP address and reduce scan times with Nmap for large amounts of data. Unimap is an abbreviation of “Unique Nmap Scan“. The tool can run in Linux, OSX, Windows or Android (Termux) without problems. Why? […]
Follow me on twitter Follow @RedPacketSec and join the Telegram channel Even though some organizations and companies may not realize it, their domain name is an important asset. Their web presence can even make or break companies. Therefor, “domain name abuse” is something that can ruin your reputation. Losing control […]
Follow me on twitter Follow @RedPacketSec and join the Telegram channel The Presidential Council for the Development of Civil Society and Human Rights is planning to create a working group. Its specialists will protect the digital rights of Russians In Russia, a group will be created whose task will be […]
Follow me on twitter Follow @RedPacketSec and join the Telegram channel The concept of business and marketing has seen a tremendous change for a few years. Business continuity meant protecting your company in times of crisis. However, it is about recovering from large scale cyberattacks as quickly as possible […]
Follow me on twitter Follow @RedPacketSec and join the Telegram channel A malicious program that steals passwords was sent out in mid-September by scammers in letters claiming to be from the rector of Moscow State University. The recipients were financial, industrial, and government organizations in Russia. The mailing, as noted […]
Follow me on twitter Follow @RedPacketSec and join the Telegram channel A Blind XSS Injector tool Features Inject Blind XSS payloads into custom headers Inject Blind XSS payloads into parameters Uses Different Request Methods (PUT,POST,GET,OPTIONS) all at once Tool Chaining Really fast Easy to setup Install $ go get -u […]
Follow me on twitter Follow @RedPacketSec and join the Telegram channel CRLFMap is a tool to find HTTP Splitting vulnerabilities Why? I wanted to write a tool in Golang for concurrency I wanted to be able to fuzz both parameters and paths Installation go get github.com/ryandamour/crlfmap Help Available Commands: help […]
Follow me on twitter Follow @RedPacketSec and join the Telegram channel Data makes the world go round, more often than not via advertising and its tracking mechanisms. Whether you think making money from large volumes of PII to keep the web ticking over is a good thing, or a sleazy […]
Follow me on twitter Follow @RedPacketSec and join the Telegram channel As the Coronavirus pandemic prompted an expansion in cyberattacks, this called for the need for certain facilities that would explicitly focus on prevention, discovery, and response solutions. For a similar reason, Siemens USA came up with the launch […]
Follow me on twitter Follow @RedPacketSec and join the Telegram channel This Time Flies Apple Event was unlike a regular Apple Event, and the difference was noted right from the beginning as CEO Tim Cook started the event not from the stage at the Steve Jobs theater but from downhill […]
Follow me on twitter Follow @RedPacketSec and join the Telegram channel A Payload Injector for bugbounties written in go Features Inject multiple payloads into all parameters Inject single payloads into all parameters Saves responses into output folder Displays Status Code & Response Length Can grep for patterns in the response […]
Follow me on twitter Follow @RedPacketSec and join the Telegram channel Pipe different tools with google dork Scanner Install [email protected] ~/dorkX> git clone https://github.com/ethicalhackingplayground/dorkX [email protected] ~/dorkX> cd dorkX [email protected] ~/dorkX> go build dorkx.go [email protected] ~/dorkX> go build corsx.go [email protected] ~/dorkX> go build csrfx.go [email protected] ~/dorkX> go build zin.go Usage: Blind […]
Follow me on twitter Follow @RedPacketSec and join the Telegram channel On Tuesday September 15th, the US House unanimously passed the IoT Cybersecurity Improvement Act [H.R. 1668]. The bill, sponsored by Reps. Kelly and Hurd, would require federal procurement and use of IoT devices to conform to basic security requirements. […]
Follow me on twitter Follow @RedPacketSec and join the Telegram channel Let’s talk about the reality of the remediation process today. We know it is often a cumbersome and time-consuming process, and it can be challenging for a Security team to work with IT Operations and Development teams, servicing many […]
Follow me on twitter Follow @RedPacketSec and join the Telegram channel The founder of Telegram Pavel Durov gave the messenger with the data of all users to the Kremlin because the messenger became an unbearable financial burden, the costs of which exceeded $2-3 million a month, said an American IT […]
Follow me on twitter Follow @RedPacketSec and join the Telegram channel Utility to find AES keys in running process memory. Works for 128, 192 and 256-bit keys. Usage Open aes-finder.sln solution in Visual Studio 2013 to compile source. Alternatively use gcc/clang: g++ -O3 -march=native -fomit-frame-pointer aes-finder.cpp -o aes-finder To search […]
Follow me on twitter Follow @RedPacketSec and join the Telegram channel croc is a tool that allows any two computers to simply and securely transfer files and folders. AFAIK, croc is the only CLI file-transfer tool does all of the following: allows any two computers to transfer data (using a […]
Follow me on twitter Follow @RedPacketSec and join the Telegram channel Each year, Rapid7 penetration testers complete hundreds of internally and externally based penetration testing service engagements. This post is part of an ongoing series featuring testimonials of what goes on beneath the hoodie. For more insights, check out our […]