Join the Telegram channel FastNetMon – A high performance DoS/DDoS load analyzer built on top of multiple packet capture engines (NetFlow, IPFIX, sFlow, AF_PACKET, SnabbSwitch, netmap, PF_RING (obsoleted), PCAP). What do we do?We detect hosts in the deployed network sending or receiving large volumes of traffic, packets/bytes/flows, per second and […]
threatintel
1392 posts
Join the Telegram channel GoGhost is a High Performance, lightweight, portable Open Source tool for mass SMBGhost Scan. InstallationYou can download Windows Binary or Linux Binary. Alternatively, GoGhost uses native Golang libraries so the line above would be fine to compile it: go build GoGhost.go Usage Options GoGhost Scanned 25,000 […]
Join the Telegram channel Hackers hacked the Twitter account of the situation and crisis center of the Russian Foreign Ministry and put up a database of Russian tourists there for sale. The Foreign Ministry confirmed the hacking but called the message about the sale of data false. The Department said […]
Join the Telegram channel Social Security numbers, names, and other personal details of around 56,000 individuals were exposed as CNY Works faced a data breach. The data breach potentially affected people who sought employment via the company’s services. CNY Works is a New York-based non-profit corporation working to help businesses […]
Join the Telegram channel Spam is a common nuisance for users of the Internet. However, it is not just annoying – these messages may cause substantial harm. While businesses use spam as a cheap way of promotion, criminals send it to snatch sensitive data. Fortunately, there is a quick way […]
Join the Telegram channel Server-side template injection is when an attacker is able to use native template syntax to inject a malicious payload into a template, which is then executed server-side.Template engines are designed to generate web pages by combining fixed templates with volatile data. Server-side template injection attacks can […]
Join the Telegram channel A (Still in Development) monitoring browser extension for pages acting as bad boys.NB: This is the code repository of the project, if you’re looking for the packed extensions:Firefox: https://addons.mozilla.org/en-US/firefox/addon/behave/Chrome: https://chrome.google.com/webstore/detail/mppjbkhgconmemoeagfbgilblohhcica/ Introduction.Behave! monitors and warn if a web page performs any of following actions: Browser based Port […]
Join the Telegram channel A new blog post and research report from the Lookout Threat Intelligence Team has exposed the lengths to which a reputed Chinese government-sponsored APT operation has allegedly gone to track the country’s Uyghur minority population, including the trojanization of mobile apps with surveillanceware. Lookout details four […]
Join the Telegram channel Since the beginning of the year, infrastructural digital objects of Russia have undergone cyber-attacks more than a billion times, said the Director of international information security of the Russian Foreign Ministry Andrey Krutskikh in an interview published on June 29 in the journal International Life. “Since […]
Join the Telegram channel IBM recently released the results of a global survey, which recommended that while investment and planning are on the uptake, adequacy isn’t on a similar ‘incline’, with reaction endeavors hindered by complexity brought about by divided toolsets. Conducted by the Ponemon Institute, the research highlighted reactions […]
Join the Telegram channel It seems like people have found a way to circumvent government’s ban on 59 Chinese Apps including favorites like TikTok, Share it, Shien, Clash of Kings, and many more and have moved on to use VPN (Virtual Private Network) to access these apps. Right after the […]
Join the Telegram channel This is a simple script that will generate a specific or all shellcodes for CTFs using the VPN IP address on tun0 (the IPv4). INFORMATIONUpdate has been made from sys library to argparse library (done in version 0.8) UsageFor help: shellgen -h shellgen --help If you […]
Join the Telegram channel The KITT Penetration Testing Framework was developed as an open source solution for pentesters and programmers alike to compile the tools they use with what they know into an open source project. With KITT, users are able to easily access a list of commonly used tools […]
Join the Telegram channel Part 1: Detailed overview of Samsung’s TrustZone components Part 2: Tools development for reverse-engineering and vulnerability research Part 3: Vulnerability exploitation to reach code execution in EL3 on a Samsung device Introduction This article details different vulnerabilities affecting Secure World components in Samsung’s TrustZone and how […]
Join the Telegram channel The website of the Public Chamber (OP) of Russia was attacked by hackers. The site of the project on the fight against fakes at all levels feikam[.]net was also subjected to a DDoS attack. Currently, there is no access to sites, an error appears when trying […]
Join the Telegram channel The supervisor handed Jim a Chromebook and said: “Take this home with you and use it to send me updates. We want to minimize the number of visits to the office—anything you can do from home helps keep this place safer. When the pandemic is over, […]
Join the Telegram channel Can a more complex comparison be made? AI and voice assistance are similar to a seeing-eye dog. Throwing the duties of a service dog into the same court as technology is outlandish as things get, even in the middle of an ever-shifting pandemic. But with retail […]
Join the Telegram channel The actors behind a campaign to spread GoldenSpy malware via tax accounting software used by customers of a Chinese bank have recently attempted to distribute an uninstaller that deletes the backdoor in an apparent attempt to cover up their illicit activities. In a previous company blog post and […]
Join the Telegram channel In a recent cybersecurity incident, Google cleared 25 applications from its google play store as they were alleged to steal the users’ FB credentials. According to Google, these applications were downloaded for around 2..35 million before the play store decided to shut them down. All these […]
Join the Telegram channel IS Raid is a native IIS module that abuses the extendibility of IIS to backdoor the web server and carry out custom actions defined by an attacker. DocumentationWhen installed, IIS-Raid will process every request and method, check if the X-Password header exists and compare it against […]
Join the Telegram channel 2020-06-06 Update: this trick no longer works on the latest builds of Windows 10 Insider Preview. This means that, although it still works on the mainstream version of Windows 10, you should expect it to be patched in the coming months. DescriptionThis PoC shows a technique […]