Autovpn – Create On Demand Disposable OpenVPN Endpoints On AWS
Script that allows the easy creation of OpenVPN endpoints in any AWS region. To create a VPN endpoint is done...
Month: September 2020
VPS-Docker-For-Pentest – Create A VPS On Google Cloud Platform Or Digital Ocean Easily With The Docker For Pentest
Create a VPS on Google Cloud Platform or Digital Ocean easily with the docker for pentest included to launch the...
Hardcodes – Find Hardcoded Strings From Source Code
hardcodes is a utility for searching strings hardcoded by developers in programs. It uses a modular tokenizer that can handle...
Wordlist_Generator – Unique Wordlist Generator Of Unique Wordlists
wordlist_generator generates wordlists with unique words with techniques mentioned in tomnomnom's report "Who, What, Where, When". It takes URLs from...
Faraday v3.12 – Collaborative Penetration Test and Vulnerability Management Platform
There are better ways than managing vulnerabilities with spreadsheets, especially when you are working with several tools. We know it’s...
SMB cybersecurity posture weakened by COVID-19, Labs report finds
In August, Malwarebytes Labs analyzed the damage caused by COVID-19 to business cybersecurity. Because of immediate, mandated transitions to working...
WhatsApp Reveals Six Bugs On Its Security Advisory Website
The Social Messaging app WhatsApp has been open about its bugs and vulnerabilities recently. To be vocal about the issue,...
Digital Education: The cyberrisks of the online classroom
This past spring, as the COVID-19 pandemic took hold, online learning became the new norm as universities and classrooms around...
H4Rpy – Automated WPA/WPA2 PSK Attack Tool
h4rpy is an automated WPA/WPA2 PSK attack tool, wrapper of aircrack-ng framework.h4rpy provides clean interface for automated cracking of WPA/WPA2...
SNIcat – Server Name Indication Concatenator
SNIcat is a proof of concept tool that performs data exfiltration, utilizing a covert channel method via. Server Name Indication,...
Open Source Tool | vPrioritization | Risk Prioritization Framework
Posted by Pramod Rana on Sep 04It is no secret that today we have more vulnerabilities than we can assess...
Pulse Secure Windows Client <9.1.6 (CVE-2020-13162) – exploit
Posted by Red Timmy Security on Sep 04Hi, we have just released an exploit for CVE-2020-13162. This vulnerability affects the...
Noise-Java ChaChaPolyCipherState.encryptWithAd() insufficient boundary checks
Posted by Pietro Oliva via Fulldisclosure on Sep 04Vulnerability title: Noise-Java ChaChaPolyCipherState.encryptWithAd() insufficient boundary checks Author: Pietro Oliva CVE: CVE-2020-25021...
Noise-Java AESGCMOnCtrCipherState.encryptWithAd() insufficient boundary checks
Posted by Pietro Oliva via Fulldisclosure on Sep 04Vulnerability title: Noise-Java AESGCMOnCtrCipherState.encryptWithAd() insufficient boundary checks Author: Pietro Oliva CVE: CVE-2020-25023...
Noise-Java AESGCMFallbackCipherState.encryptWithAd() insufficient boundary checks
Posted by Pietro Oliva via Fulldisclosure on Sep 04Vulnerability title: Noise-Java AESGCMFallbackCipherState.encryptWithAd() insufficient boundary checks Author: Pietro Oliva CVE: CVE-2020-25022...
PCI DSS compliance: why it’s important and how to adhere
PCI DSS is short for Payment Card Industry Data Security Standard. Every party involved in accepting credit card payments is...
Russian experts warn about security risks of Bluetooth on a smartphone
Associate Professor of computer science at the Russian University of Economics, Alexander Timofeev said that hackers can use Bluetooth to...
Norwegian Parliament Hit by a Cyber-Attack on Its Internal Email System
Stortinget, the Norwegian Parliament succumbed to a cyber-attack that targeted its internal email system. The news came in on Tuesday...
Emotet Botnet Operators Switching to a New Template Named ‘Red Dawn’
Emotet malware has been continually evolving to the levels of technically sophisticated malware that has a major role in the...
IT threat evolution Q2 2020. Mobile statistics
IT threat evolution Q2 2020. ReviewIT threat evolution Q2 2020. PC statistics These statistics are based on detection verdicts of...
IT threat evolution Q2 2020. PC statistics
IT threat evolution Q2 2020. ReviewIT threat evolution Q2 2020. Mobile statistics These statistics are based on detection verdicts of...
IT threat evolution Q2 2020
IT threat evolution Q2 2020. PC statisticsIT threat evolution Q2 2020. Mobile statistics Targeted attacks PhantomLance: hiding in plain sight...
Geo-Recon – An OSINT CLI Tool Desgined To Fast Track IP Reputation And Geo-locaton Look Up For Security Analysts
An OSINT CLI tool desgined to fast track IP Reputation and Geo-locaton look up for Security Analysts.SetupThis tool is compactible...
Bbrecon – Python Library And CLI For The Bug Bounty Recon API
Bug Bounty Recon (bbrecon) is a free Recon-as-a-Service for bug bounty hunters and security researchers. The API aims to provide...
