ShellGen – Reverse shell generator
This is a simple script that will generate a specific or all shellcodes for CTFs using the VPN IP address...
KITT-Lite – Python-Based Pentesting CLI Tool
The KITT Penetration Testing Framework was developed as an open source solution for pentesters and programmers alike to compile the...
A Deep Dive Into Samsung’s TrustZone (Part 3)
Part 1: Detailed overview of Samsung's TrustZone components Part 2: Tools development for reverse-engineering and vulnerability research Part 3: Vulnerability...
The Public Chamber of the Russian Federation reported a DDoS attack on its website
The website of the Public Chamber (OP) of Russia was attacked by hackers. The site of the project on the...
Do Chromebooks need antivirus protection?
The supervisor handed Jim a Chromebook and said: “Take this home with you and use it to send me updates....
How AI and Voice Technology is Similar to a Service Dog
Can a more complex comparison be made? AI and voice assistance are similar to a seeing-eye dog. Throwing the duties...
‘GoldenSpy’ tax software campaign tries to erase evidence of malware
The actors behind a campaign to spread GoldenSpy malware via tax accounting software used by customers of a Chinese bank...
Google Playstore Removes 25 Android Apps that Stole User Login Credentials
In a recent cybersecurity incident, Google cleared 25 applications from its google play store as they were alleged to steal...
IIS-Raid – A Native Backdoor Module For Microsoft IIS (Internet Information Services)
IS Raid is a native IIS module that abuses the extendibility of IIS to backdoor the web server and carry...
UsoDllLoader – Windows – Weaponizing Privileged File Writes With The Update Session Orchestrator Service
2020-06-06 Update: this trick no longer works on the latest builds of Windows 10 Insider Preview. This means that, although...
InsightAppSec Release Roundup: What’s New and Updated
Despite the summer season entering full swing, we know cyber-threats take no vacations. That’s why our team has been working...
How to Use Custom Policy Builder to Customize Password Policies in InsightVM
This post is part two of a two-part blog series on policy customization in InsightVM, Rapid7’s vulnerability risk management solution.In...
Cybercriminals likely poised to attack as Adobe ends support for Magento 1
After publishing a final security update for Magento 1 last week, Adobe is ending support for its popular 12-year-old ecommerce...
Geopolitical targets figuring in latest StrongPity attacks
StrongPity, aka Promethium, a potentially state-sponsored APT group active since 2012, isn’t letting exposed campaigns in recent years stop it...
New Mac ransomware spreading through piracy
A Twitter user going by the handle @beatsballert messaged me yesterday after learning of an apparently malicious Little Snitch installer...
Bluetooth beacons: one free privacy debate with your next order
Apps and their permissions have been in the news recently, particularly in relation to tracking/privacy issues and Bluetooth. Why Bluetooth,...
DDoSecrets Banned From Twitter ; But Has No Plans To Slow Down
For the past year and a half, a rather small group of activists known as Distributed Denial of Secrets, or...
Golang: A Cryptomining Malware that Maybe Targetting Your PC
Cybersecurity experts at Barracuda Networks have discovered a unique kind of crypto mining malware called "Golang." The malware can attack...
IM Platforms Increasingly Used by Threat Actors in Place of Dark Web Marketplaces
Researchers at IntSight have discovered that IM platforms such as WhatsApp, Telegram, Discord, IRC, and Jabber are being used by...
Basecrack – Best Decoder Tool For Base Encoding Schemes
BaseCrack is a tool written in Python that can decode all alphanumeric base encoding schemes. This tool can accept single...
MSFPC – MSFvenom Payload Creator
A quick way to generate various "basic" Meterpreter payloads via msfvenom (part of the Metasploit framework).AboutMSFvenom Payload Creator (MSFPC) is...
Unlocking the Power of Macro Authentication in Application Security: Part Two
This blog post is part two of a three-part series on macro authentication. Be sure to catch up on part...
Tax software used by Chinese bank clients installs GoldenSpy backdoor
A tax software program installed by business clients of an unidentified Chinese bank was trojanized with malware that installs a...
A week in security (June 22 – 28)
Last week on Malwarebytes Labs, we provided a zero-day guide for 2020 featuring recent attacks and advanced preventive techniques, and...
