EAST – Extensible Azure Security Tool – Documentation
Extensible Azure Security Tool (Later referred as E.A.S.T) is tool for assessing Azure and to some extent Azure AD security...
Month: February 2023
Winevt_Logs_Analysis – Searching .Evtx Logs For Remote Connections
Simple script for the purpose of finding remote connections to Windows machine and ideally some public IPs. It checks for...
Monomorph – MD5-Monomorphic Shellcode Packer – All Payloads Have The Same MD5 Hash
════════════════════════════════════╦═══ ╔═╦═╗ ╔═╗ ╔═╗ ╔═╗ ╔═╦═╗ ╔═╗ ╔══╔═╗ ╠═╗ ═╩ ╩ ╩═╚═╝═╩ ╩═╚═╝═╩ ╩ ╩═╚═╝═╩ ╠═╝═╩ ╩═ ════════════════════════════════╩═══════ By Retr0id...
Suborner – The Invisible Account Forger
What's this? A simple program to create a Windows account you will only know about :) Create invisible local accounts...
Aws-Security-Assessment-Solution – An AWS Tool To Help You Create A Point In Time Assessment Of Your AWS Account Using Prowler And Scout As Well As Optional AWS Developed Ransomware Checks
Self-Service Security Assessment too l Cybersecurity remains a very important topic and point of concern for many CIOs, CISOs, and...
Malware Analysis – amadey – 8750e1544d10060bc87b5c5e3109a738
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:fabookie, family:laplas, family:smokeloader, family:vidar, botnet:19, backdoor, clipper, discovery, persistence, ransomware, spyware, stealer, trojan, vmprotectMD5:...
Malware Analysis – ransomware – 32c597431850f492c8d2b66d17bebd79
Score: 5 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 32c597431850f492c8d2b66d17bebd79SHA1: bb6d7632e307c15145fcf2805d114dd0a6d5af81ANALYSIS DATE: 2023-02-06T04:19:51ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – djvu – 9e700530bdc14bc3bdd866492cda6f70
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 9e700530bdc14bc3bdd866492cda6f70SHA1: 11874dd448c0e658a36f12331845bc669de1d179ANALYSIS DATE: 2023-02-06T05:31:51ZTTPS: T1082, T1005, T1081, T1222,...
Malware Analysis – ransomware – ac9cc84a29f6f32f3f2e0a56b5ef3f13
Score: 7 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: ac9cc84a29f6f32f3f2e0a56b5ef3f13SHA1: 70537527f7c0930459e1ad71848393dcc8f40309ANALYSIS DATE: 2023-02-06T03:38:27ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Truth Finder – 8,159,573 breached accounts
HIBP In 2019, the public records search service TruthFinder suffered a data breach that later came to light in early...
Malware Analysis – evasion – 9a9b6378002daad4ccfce9cba9a34933
Score: 7 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 9a9b6378002daad4ccfce9cba9a34933SHA1: 77575fb1e8445eb8e7dff01e99906cf256bd7e0bANALYSIS DATE: 2023-02-05T20:53:15ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – ransomware – 1d7d853773131ef4a31c875ae9914cda
Score: 10 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 1d7d853773131ef4a31c875ae9914cdaSHA1: 8f6e355d8cc8d048c823c6d0a4f219d08d4c5124ANALYSIS DATE: 2023-02-05T20:23:55ZTTPS: T1012, T1082, T1120 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or...
Malware Analysis – evasion – a0181ff906bc0cb553899eb446ca1b08
Score: 8 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: a0181ff906bc0cb553899eb446ca1b08SHA1: c8990ef58f21d12a46f4af2f4084ea3ab530d742ANALYSIS DATE: 2023-02-05T20:56:06ZTTPS: T1012, T1082, T1491, T1112, T1120 ScoreMeaningExample10Known badA malware family was...
Malware Analysis – djvu – 7b4b45f6f9ee88b3bac8b538932520e1
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 7b4b45f6f9ee88b3bac8b538932520e1SHA1: 761bcda57915a9c32e73209a7c52704b5de3f6faANALYSIS DATE: 2023-02-05T21:27:38ZTTPS: T1012, T1053, T1005, T1081,...
Malware Analysis – ransomware – 526cb037d9e9508e3be1c4cb9031d7be
Score: 6 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 526cb037d9e9508e3be1c4cb9031d7beSHA1: 2d6c18a4871cbc6a491d2d25172d6bb2eb09e322ANALYSIS DATE: 2023-02-05T21:26:35ZTTPS: T1102 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – amadey – ddd68e4ae82bcc1ecab5398ea2d3748e
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:laplas, family:smokeloader, family:vidar, botnet:19, backdoor, clipper, discovery, persistence, ransomware, spyware, stealer, trojan, vmprotectMD5: ddd68e4ae82bcc1ecab5398ea2d3748eSHA1:...
Malware Analysis – discovery – 939a14c3eaab6a87c836843a36a0ad44
Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, persistence, ransomwareMD5: 939a14c3eaab6a87c836843a36a0ad44SHA1: fa37605be662673d15104e693dd3bc8a450313afANALYSIS DATE: 2023-02-05T21:31:29ZTTPS: T1130, T1112, T1012, T1082, T1060 ScoreMeaningExample10Known badA malware family...
Malware Analysis – ransomware – c15bd704405c47f1cf081cba3ec67d17
Score: 10 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: c15bd704405c47f1cf081cba3ec67d17SHA1: 5c74894ad0228821cef1794cfeb6a989e7ec551aANALYSIS DATE: 2023-02-05T23:00:55ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – wannacry – efe76bf09daba2c594d2bc173d9b5cf0
Score: 10 MALWARE FAMILY: wannacryTAGS:family:wannacry, discovery, persistence, ransomware, spyware, stealer, wormMD5: efe76bf09daba2c594d2bc173d9b5cf0SHA1: ba5de52939cb809eae10fdbb7fac47095a9599a7ANALYSIS DATE: 2023-02-05T23:54:03ZTTPS: T1082, T1491, T1112, T1107, T1490,...
Malware Analysis – djvu – 1edb26e25c326398bf841cb61b8bfa91
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 1edb26e25c326398bf841cb61b8bfa91SHA1: 5a65720208dba0c93d493af61dd58cf4a202ded6ANALYSIS DATE: 2023-02-05T21:50:41ZTTPS: T1082, T1012, T1060, T1112,...
Malware Analysis – amadey – f375509ec7c94ea952a46ef291ebf016
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:laplas, family:smokeloader, family:vidar, botnet:19, backdoor, clipper, discovery, persistence, ransomware, spyware, stealer, trojan, vmprotectMD5: f375509ec7c94ea952a46ef291ebf016SHA1:...
HackerOne Bug Bounty Disclosure: open-redirectionbydoosec101
Programme HackerOne JetBlue JetBlue Submitted by doosec101 doosec101 Report Open Redirection Full Report A considerable amount of time and effort...
HackerOne Bug Bounty Disclosure: access-to-tomcat-manager-with-default-credsbydoosec101
Programme HackerOne JetBlue JetBlue Submitted by doosec101 doosec101 Report Access to tomcat-manager with default creds Full Report A considerable amount...
Malware Analysis – amadey – 94da092e8e494a9399a9a12b127d277a
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:fabookie, family:laplas, family:smokeloader, family:vidar, botnet:19, backdoor, clipper, discovery, evasion, persistence, ransomware, spyware, stealer, trojan,...
