Preparing for the Cybersecurity Maturity Model Certification (CMMC) Part 1: Practice and Process
All of us here at Rapid7 hope that you and your families are safe and well during this unprecedented national...
All of us here at Rapid7 hope that you and your families are safe and well during this unprecedented national...
In 2019, the number of new vulnerabilities published was more than double what we saw in 2016. 2020 is on...
Microsoft fixed 113 vulnerabilities in this month’s Patch Tuesday, just two shy of last month’s 115. This continues the streak...
By Tony Bao and Junzhi Lu We discovered a potential cyberespionage campaign, which we have named Project Spy, that infects...
While shelter in place has left many companies struggling to stay in business during the COVID-19 epidemic, one company in...
Group-IB specialists recorded several DDoS attacks on Moscow electronic services, including the mos.ru portal. This was announced by the CEO...
While the Coronavirus pandemic has practically driven people to stay locked up in their homes and spend a lot more...
This script is designed for use in situations where you do not have internet access on a Linux host and...
A domain name enumeration toolThe tools contained in domained requires Kali Linux (preferred) or Debian 7+ and Recon-ngdomained uses several...
Global working-from-home routines haven't slowed down Microsoft and its ability to help close up vulnerabilities in their products. This April...
A malicious actor is trying to discredit two of the more well-known personalities in cybersecurity circles by including their names...
This week on Lock and Code, we discuss the top security headlines generated right here on Labs and around the...
Moscow's residents are warned about scammers who offer to issue digital passes for moving around the city on social networksRecall...
VMware Inc. a publicly-traded software company recently fixed a critical security vulnerability that permitted the malicious attackers to access sensitive...
Google last year removed 85 apps from play store after security researchers found that these apps were adwares in disguise.These...
Data exfiltration utility used for testing detection capabilities of security products. Obviously for legal purposes only.Exfiltration How-To/etc/shadow -> HTTP GET...
An open source image forensic toolset Introduction"Forensic Image Analysis is the application of image science and domain expertise to interpret...
As companies respond to COVID-19, many require their employees to work from home. This migration of the workforce places the...
The database of more than 1 million customers was exposed online by 'SCUF Gaming', a subsidiary of Corsair that develops...
Around the world, the governments and health departments are fighting together against the Coronavirus pandemic, coming up with solutions to...
Inhale is a malware analysis and classification tool that is capable of automating and scaling many static analysis operations.This is...
Privacy Badger is a browser extension that automatically learns to block invisible trackers. Instead of keeping lists of what to...
Amidst the coronavirus pandemic, there is an influx of telecommuters who, have come to heavily depend on online conferencing tools...
Audix will allow for the SIMPLE configuration of Windows Event Audit Policies. Window's Audit Policies are restricted by default. This...