CVE-2019-6340 | Drupal RCE Vulnerability
The remote execution flaw exists because some field types do not properly sanitize data from non-form sources and this can...
CVE-2019-8912 | Use After Free Arbitrary Code Execution Vulnerability for many Linux Kernels
Linux Kernel is prone to an arbitrary code-execution vulnerability.An attacker can exploit this issue to execute arbitrary code in the...
Cybersecurity A Key Challenge for the Automotive Industry
The fundamental challenge of cybersecurity is not new. They have existed as long as computers have been used in sensitive applications in...
Monero Miner-Malware Uses RADMIN, MIMIKATZ to Infect, Propagate via SMB Vulnerability
Between the last week of January to February, we noticed an increase in hack tool installation attempts that dropped seemingly...
GitHub Increases Bug Bounty Program Rewards
GitHub revealed on Tuesday that last year it paid out $165,000 to researchers who took part in its public bug...
Kali Linux 2019.1 – Updates…updates….updates
Everyone likes a new Kali update!The big marquee update of this release is the update of Metasploit to version 5.0,...
You have around 20 minutes to contain a Russian APT attack
Governments and private organisations have around 20 minutes to detect and contain a hack from Russian nation-state actors. New statistics...
Cobalt Strike
Cobalt Strike is software for Adversary Simulations and Red Team Operations. What this means is, if you wanted to test your...
Canary Tokens
TLDR: Canary tokens are not new but can help give you some Intel into your attackers, be it insider or...
Kali Linux 2018.3 Increase TxPower
Increasing the TXpower above what is allowed in your country can be illegal. If you decide to make these changes...
How to setup your Libre Elec / Kodi / Google Home Bluetooth / Yatse Android Remote
I have a number of Kodi Media Centre running in different rooms around the house. Some are hooked up to...
Another, Here is my OSCP story
So the OSCP journey is hard work, needs commitment, understanding from your wife and a try harder attitude (you will...
PrivateVPN Thoughts
PrivateVPN Does PrivateVPN keep any logs? The FAQ is emphatic: "No, we NEVER produce logs of any data traffic. The only things...
Ubiquiti Guest Wifi VLANS and PfSense
Ok, so you have upgraded your Wi-Fi to a new shiney circular Ubiquiti device....and you are using PfSense too? Welcome...
Stapler v1 – VulnHub walkthrough
See attached PDF, i will migrate to a proper post when i can find time..... Stapler VM - Summary
Locky ransomware back with a new bag of tricks
Locky ransomware is back, again... It's delivered with the help of new tricks to fool users and anti-malware defences. Delivered...
AI is key to speeding up threat detection and response
Time is the most important factor in detecting network breaches and, consequently, in containing cyber incidents and mitigating the cost of...
Hackers Mock Cybersecurity Firm FireEye with Second Data Dump
The dump is relatively small, containing around 3MB of files. https://pastebin.com/L48e49AK At the end of July, anonymous hackers published documents stolen from...
Fines of £17m for unprotected UK firms
The UK Government’s Department of Digital, Culture, Media and Sport (DCMS) has announced that firms could face fines of up...
Spaghetti – Web Application Security Scanner
Description Spaghetti is a web application security scanner tool. It is designed to find various default and insecure files, configurations...
Custom Access Denied Page – PfSense Squid Proxy
If like me you want to customise your Squid Proxy error page then , you have come to the correct...
HatCloud : Tool to uncover real IP address of servers using CloudFlare
HatCloud is built in Ruby. It allows you to discover the real IP address of a host that is being...
PasswordStats – A cool new password reporting tool
Have you ever done a domain password audit? Well yes the cracking of the passwords can be fun depending on...
Malboxes: a Tool to Build Malware Analysis Virtual Machines
Malware analysis is like defusing bombs. The objective is to disassemble and understand a program that was built to do...
