HTTP-revshell – Powershell Reverse Shell Using HTTP/S Protocol With AMSI Bypass And Proxy Aware
HTTP-revshell is a tool focused on redteam exercises and pentesters. This tool provides a reverse connection through the http/s protocol....
Month: September 2020
Security Affairs newsletter Round 281
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for...
Gaming hardware manufacturer Razer suffered a data leak
Gaming hardware manufacturer Razer suffered a data leak, an unsecured database managed by the company containing gamers’ info was exposed...
Bank of Seychelles hit by a ransomware attack
The Development Bank of Seychelles (DBS) was hit by a ransomware attack disclose the Central Bank of Seychelles (CBS). The Central...
INVDoS, a severe DoS issue in Bitcoin core remained undisclosed for two years
The INVDoS (Bitcoin Inventory Out-of-Memory Denial-of-Service)Attack would have allowed hackers to crash Bitcoin nodes and alternative chains. Two years ago,...
Malàsmoke gang could infect your PC while you watch porn sites
A cybercrime group named Malàsmoke has been targeting porn sites over the past months with malicious ads redirecting users to...
Threat actors target WordPress sites using vulnerable File Manager install
Experts reported threat actors are increasingly targeting a recently addressed vulnerability in the WordPress plugin File Manager. Researchers from WordPress...
Russian cloud storage will protect user data before elections
The creation of the Russian cloud services will allow protecting confidential data of not only ministries or departments, but also...
A New Security Vulnerability Discovered in Bluetooth technology
Two teams of security researchers have discovered a new vulnerability in Bluetooth technology that has been confirmed by The Bluetooth...
Hackers Attack Gaming Industry, Sell Player Accounts on Darkweb
Generating a tremendous revenue of $120.1 billion in 2019, the gaming industry is one of the largest and fastest-growing sectors....
Some-Tools – Install And Keep Up To Date Some Pentesting Tools
Some-ToolsWhyI was looking for a way to manage and keep up to date some tools that are not include in...
MZAP – Multiple Target ZAP Scanning
Multiple target ZAP Scanning / mzap is a tool for scanning N*N in ZAP.ConceptInstallationgo-get$ go get -u github.com/hahwul/mzapsnapcraft$ sudo snap...
The informed voter’s guide to election cyberthreats
Singapore held its most recent general election on July 10 2020, and although they used the electoral system called first-past-the-post...
The Antidrone system and a new platform for online voting were created in Russia
The Antidrone system will allow detecting drones that fly up to any object, said Eugene Kaspersky, CEO of the Kaspersky...
Microsoft Confirms Cyber-Attacks on Biden and Trump Campaigns
Microsoft reports breaching of email accounts belonging to individuals associated with the Biden and Trump election campaigns by Chinese, Iranian,...
Windows TCPIP Finger Command / C2 Channel and Bypassing Security Software
Posted by hyp3rlinx on Sep 11 Title: Windows TCPIP Finger Command - C2 Channel and Bypassing Security Software Credits: John...
Monsoon – Fast HTTP Enumerator
A fast HTTP enumerator that allows you to execute a large number of HTTP requests, filter the responses and display...
Avcleaner – C/C++ Source Obfuscator For Antivirus Bypass
C/C++ source obfuscator for antivirus bypass.Builddocker build . -t avcleanerdocker run -v ~/dev/scrt/avcleaner:/home/toto -it avcleaner bash #adapt ~/dev/scrt/avcleaner to the...
CVE-2020-8152 – Elevation of Privilege in Backblaze
Posted by Jason Geffner on Sep 11CVE-2020-8152 – Elevation of Privilege in Backblaze --------------------------------------------------- Summary ======= Name: Elevation of Privilege...
CVE-2020-8150 – Remote Code Execution as SYSTEM/root via Backblaze
Posted by Jason Geffner on Sep 11CVE-2020-8150 – Remote Code Execution as SYSTEM/root via Backblaze ------------------------------------------------------------------ Summary ======= Name: Remote...
Cross-Site Scripting Vulnerabilities in IlchCMS 2.1.37
Posted by Daniel Bishtawi via Fulldisclosure on Sep 11Hello, We are informing you about Cross-Site Scripting Vulnerabilities in IlchCMS 2.1.37....
Online Credit Card Skimming on a Continual Rise – Here’s How to Prevent it
Credit card skimming has already been on a rise prior to the pandemic and the trend is most likely to...
Report: Pandemic caused significant shift in buyer appetite in the dark web
Last year, credentials for PayPal, Facebook, and Airbnb were among the top goods on high demand in the dark web,...
An overview of targeted attacks and APTs on Linux
Perhaps unsurprisingly, a lot has been written about targeted attacks on Windows systems. Windows is, due to its popularity, the...
