BlackDir-Framework – Web Application Vulnerability Scanner
Web Application Vulnerability Scanner.Spider DirectoriesFind Sub DomainAdvanced Dorks Search Scan list of Dorks Scan WebSites Reverse Ip Lookup Port ScanInstallation:git...
Sharingan – Offensive Security Recon Tool
Sharingan is a recon multitool for offensive security / bug bountyThis is very much a work in progress and I'm...
Rapid7’s InsightVM Receives Five Stars from SC Magazine
We’re proud to announce that Rapid7’s InsightVM solution was recently reviewed by SC Magazine and received a five-star report. As...
Universities Switch to Online Learning but Is it Enough?
With there being no apparent end in view of the pandemic, everyone has been forced to live within a confined...
Sophos found the group abusing NSIS installers and deploying remote access tools (RATs)
Security Researchers at Sophos have found the hacking group that hacked industrial companies using NSIS installers in order to deploy...
BADlnk – Reverse Shell In Shortcut File (.lnk)
Reverse Shell in Shortcut File (.lnk)How it works?Shortcut file (Microsoft Windows 9.x) LNK is a file extension for a shortcut...
ParamKit – A Small Library Helping To Parse Commandline Parameters
A small library helping to parse commandline parameters (for Windows).Objectives"like Python's argparse but for C/C++"compact and minimalisticeasy to useextendableDemoPrint help...
Hidden-Cry – Windows Crypter/Decrypter Generator With AES 256 Bits Key
Windows Crypter/Decrypter Generator with AES 256 bits keyFeatures:Works on WAN: Port Forwarding by Serveo.netFully Undetectable (FUD) -> Don't Upload to...
Cybercriminals Spreading Node.js Trojan Promising Relief from the Outbreak of COVID-19
A java downloader going by the extension “Company PLP_Tax relief due to Covid-19 outbreak CI+PL.jar” has been recently detected. Drawing...
Evilreg – Reverse Shell Using Windows Registry Files (.Reg)
Reverse shell using Windows Registry file (.reg).Features:Reverse TCP Port Forwarding using Ngrok.ioRequirements:Ngrok Authtoken (for TCP Tunneling): Sign up at: https://ngrok.com/signupYour...
URLBrute – Tool To Brute Website Sub-Domains And Dirs
What is thisURLBrute is a tool to help you brute forcing website sub-domains and dirs.Can be used with python3 and...
Ramsay spy framework built to subvert air-gapped defenses
Air-gapped networks aren’t easily compromised, but they don’t offer perfectly air-tight security either. Leveraging insider threats, infecting flash drives and...
The database of Russian car owners is sold for bitcoins
According to the description of the database, it contains 129 million leads obtained from the traffic police register. This is...
Samsung and SK Telecom Unveil World’s First Quantum Security Tech 5G Smartphone
The two companies have recently revealed the world's first QRNG (Quantum Random Number Generator) 5G smartphone. The smartphone is named...
Rise of a Mobile Banking Malware Which Steals Personal Financial Information
The federal cybersecurity agency cautions about the rise of a new mobile banking malware called "EventBot", which purportedly steal personal...
Getdroid – FUD Android Payload And Listener
FUD Android Payload And ListenerRead the license before using any part from this codeMalicious Android apk generator (Reverse Shell)Legal disclaimer:Usage...
DiscordRAT – Discord Remote Administration Tool Fully Written In Python
Discord Remote Administration Tool fully written in Python3.This is a RAT controlled over Discord with over 20 post exploitation modules.Disclaimer:This...
QNodeService: Node.js Trojan Spread via Covid-19 Lure
Insights and Analysis by Matthew Stewart We recently noticed a Twitter post by MalwareHunterTeam that showed a Java downloader with...
May Patch Tuesday: More Fixes for SharePoint, TLS, Runtime, and Graphic Components Released
This month’s Patch Tuesday includes 111 fixes for Microsoft. Of the 111 vulnerabilities, 16 have been rated Critical while the...
Tropic Trooper’s Back: USBferry Attack Targets Air-gapped Environments
By Joey Chen (Threats Analyst) Tropic Trooper, a threat actor group that targets government, military, healthcare, transportation, and high-tech industries...
New MacOS Dacls RAT Backdoor Show Lazarus’ Multi-Platform Attack Capability
By Gabrielle Joyce Mabutas With additional insights/analysis from Kazuki Fujisawa A one-time password (OTP) system involves the use of a...
Sodinokibi drops greatest hits collection, and crime is the secret ingredient
When a group of celebrities ask to speak with their lawyer, they usually don’t have to call in a bunch...
FinCEN Chief Blanco warns of Wide Scale Virtual Currency Scams
Financial Crimes Enforcement Network (FinCEN) is keeping a close watch on financial scams involving virtual currency payments as the COVID-19...
The Russian State Duma adopted a law on remote voting
The State Duma adopted in the second and third readings amendments of deputies of United Russia that simplify the organization...
