Rconn – Rconn Is A Multiplatform Program For Creating Generic Reverse Connections
rconn (r conn) is a multiplatform program for creating reverse connections. It lets you consume services that are behind NAT...
hacking
Ppmap – A Scanner/Exploitation Tool Written In GO, Which Leverages Prototype Pollution To XSS By Exploiting Known Gadgets
A simple scanner/exploitation tool written in GO which automatically exploits known and existing gadgets (checks for specific variables in the...
Crooks target Kubernetes installs via Argo Workflows to deploy miners
Threat actors target Kubernetes installs via Argo Workflows to cryptocurrency miners, security researchers from Intezer warn. Researchers from Intezer uncovered...
XCSSET MacOS malware targets Telegram, Google Chrome data and more
XCSSET macOS malware continues to evolve, now it is able to steal login information from multiple apps, including Telegram and...
Security Affairs newsletter Round 324
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for...
Japanese computers hit by a wiper malware ahead of 2021 Tokyo Olympics
Japanese researchers spotted an Olympics-themed wiper targeting Japanese users ahead of the 2021 Tokyo Olympics. Tokyo Olympics could be a...
Terraguard – Create And Destroy Your Own VPN Service Using WireGuard
This project's goal is to be simple to create and destroy your own VPN service using WireGuard.PrerequisitesTerraform >= 1.0.0 Ansible...
Pathprober – Probe And Discover HTTP Pathname Using Brute-Force Methodology And Filtered By Specific Word Or 2 Words At Once
Probe and discover HTTP pathname using brute-force methodology and filtered by specific word or 2 words at once. PurposeBrute-forcing website...
Obtaining password hashes of Windows systems with PetitPotam attack
A researcher found a flaw in Windows OS, tracked as PetitPotam, that can be exploited to force remote Windows machines...
Estonian hacker Pavel Tsurkan pleads guilty for operating a proxy botnet.
Estonian hacker Pavel Tsurkan has pleaded guilty in a United States court to the counts of computer fraud and of...
Over 80 US Municipalities’ Sensitive Information, Including Resident’s Personal Data, Left Vulnerable in Massive Data Breach
WizCase’s team of ethical hackers, led by Ata Hakçıl, has found a major breach exposing a number of US cities, all...
What Is An Identity and Access Management So-lution and How Can Businesses Benefit From It?
How businesses can benefit from the adoption of an identity and access management solution. Businesses that use outdated manual processes...
Kaseya obtained a universal decryptor for REvil ransomware attack
The software provider Kaseya announced to have obtained a universal decryptor for the REvil ransomware. Earlier this month, a massive...
Threat Report Portugal: Q2 2021
The Threat Report Portugal: Q1 2021 compiles data collected on the malicious campaigns that occurred from April to June, Q2,...
In0ri – Defacement Detection With Deep Learning
In0ri is a defacement detection system utilizing a image-classification convolutional neural network. IntroductionWhen monitoring a website, In0ri will periodically take...
TeamsUserEnum – User Enumeration With Microsoft Teams API
Sometimes user enumeration could be sometimes useful during the reconnaissance of an assessment. This tool will determine if an email...
Pstf2 – Passive Security Tools Fingerprinting Framework
Have you ever wanted a simple, easy and stealth bypass for multiple classes of security products? pstf^2 (pronounced pstf-square) is...
Beanshooter – JMX Enumeration And Attacking Tool
Beanshooter is a command line tool written in Java, which helps to identify common vulnerabilities on JMX endpoints.IntroductionJMX stands for...
Group-IB helps Dutch police identify members of phishing developer gang Fraud Family
Researchers from threat intelligence firm Group-IB helps Dutch police identify members of phishing developer gang known as Fraud Family. Group-IB,...
CISA analyzed stealthy malware found on compromised Pulse Secure devices
U.S. CISA released an alert today about several stealth malware samples that were found on compromised Pulse Secure devices. The...
TicketClub Italy Database Offered in Dark Web
A database belonging to TicketClub Italy, a company providing coupons platform for offline purchases, is available for sale on darkweb...
Thousands of Humana customers have their medical data leaked online by threat actors
Experts found a DB containing sensitive health insurance data belonging to customers of US insurance giant Humana. An SQL database...
France ANSSI agency warns of APT31 campaign against French organizations
French cyber-security agency ANSSI warned of an ongoing cyberespionage campaign aimed at French organizations carried out by China-linked APT31 group....
Hash-Buster v3.0 – Crack Hashes In Seconds
Why crack hashes when you can bust them?FeaturesAutomatic hash type identification Supports MD5, SHA1, SHA256, SHA384, SHA512 Can extract &...
