Emotet tests new attack chain in low volume campaigns
Emotet operators are testing new attack techniques in response to Microsoft’s move to disable Visual Basic for Applications (VBA) macros...
hacking
Pro-Russian group Killnet launched DDoS attacks on Romanian govt sites
A series of DDoS attacks launched by Russian hacktivists are targeting several Romanian government websites. The Romanian national cyber security...
Requests-Ip-Rotator – A Python Library To Utilize AWS API Gateway’s Large IP Pool As A Proxy To Generate Pseudo-Infinite IPs For Web Scraping And Brute Forcing
A Python library to utilize AWS API Gateway's large IP pool as a proxy to generate pseudo-infinite IPs for web...
Osinteye – Username Enumeration And Reconnaisance Suite
Username Enumeration And Reconnaisance Suite Supported sites PyPI Github TestPypi About.me Instagram DockerHub Installation Clone project: $ git clone...
Lupo – Malware IOC Extractor. Debugging Module For Malware Analysis Automation
Debugging module for Malware Analysis Automation For a step by step post on how to use Lupo, with images and...
Anonymous hacked Russian PSCB Commercial Bank and companies in the energy sector
OpRussia continues, less than a week after my last update Anonymous has hacked other Russian companies and leaked their data...
Hurry up, disable AFP on your QNAP NAS until the vendor fixes 8 bugs
QNAP urges customers to disable the AFP file service protocol on their NAS devices until it fixes critical Netatalk flaws....
It’s Called BadUSB for a Reason
Cybercrime gang FIN7’s badUSB attacks serve as a reminder of two key vulnerabilities present among all organizations. The criminal group...
Ongoing DDoS attacks from compromised sites hit Ukraine
Ukraine CERT-UA warns of ongoing DDoS attacks targeting pro-Ukraine sites and the government web portal. Ukraine ‘s computer emergency response...
IOSSecuritySuite – iOS Platform Security And Anti-Tampering Swift Library
iOS Security Suite is an advanced and easy-to-use platform security & anti-tampering library written in pure Swift! If you...
Bumblebee, a new malware loader used by multiple crimeware threat actors
Threat actors have replaced the BazaLoader and IcedID malware with a new loader called Bumblebee in their campaigns. Cybercriminal groups...
CISA published 2021 Top 15 most exploited software vulnerabilities
Cybersecurity and Infrastructure Security Agency (CISA) published a list of 2021’s top 15 most exploited software vulnerabilities Cybersecurity and Infrastructure...
Rip Raw – Small Tool To Analyse The Memory Of Compromised Linux Systems
Rip Raw is a small tool to analyse the memory of compromised Linux systems. It is similar in purpose to...
CloudFlare blocked a record HTTPs DDoS attack peaking at 15 rps
Cloudflare has mitigated a distributed denial-of-service (DDoS) attack that peaked at 15.3 million request-per-second (RPS). Cloudflare announced to have mitigated...
Russia-linked threat actors launched hundreds of cyberattacks on Ukraine
Microsoft revealed that Russia launched hundreds of cyberattacks against Ukraine since the beginning of the invasion. Microsoft states that at...
BITB – Browser In The Browser (BITB) Templates
Detecting Color Preference To get the most out of this you should determine the OS from the user agent and...
US Department of State offers $10M reward for info to locate six Russian Sandworm members
The U.S. government offers up to $10 million for info that allows to identify or locate six Russian GRU hackers...
O365-Doppelganger – A Quick Handy Script To Harvest Credentials Off Of A User During A Red Team And Get Execution Of A File From The User
O365-Doppelganger is NOT a replacement for hardcore Download O365-Doppelganger If you like the site, please consider joining the telegram channel...
Linux Nimbuspwn flaws could allow attackers to deploy sophisticated threats
Microsoft disclosed two Linux privilege escalation flaws, collectively named Nimbuspwn, that could allow conducting various malicious activities. The Microsoft 365...
Wind Turbine giant Deutsche Windtechnik hit by a professional Cyberattack
The German wind turbine giant Deutsche Windtechnik was hit by a targeted cyberattack earlier this month. German wind turbine giant...
Conti ransomware operations surge despite the recent leak
Conti ransomware gang continues to target organizations worldwide despite the massive data leak has shed light on its operations. Researchers...
VulFi – Plugin To IDA Pro Which Can Be Used To Assist During Bug Hunting In Binaries
The VulFi (Vulnerability Finder) tool is a plugin to IDA Pro which can be used to assist during bug hunting...
Iran-linked APT Rocket Kitten exploited VMware bug in recent attacks
The Iran-linked APT group Rocket Kitten has been observed exploiting a recently patched CVE-2022-22954 VMware flaw. Iran-linked Rocket Kitten APT...
Bore – Simple CLI Tool For Making Tunnels To Localhost
A modern, simple TCP tunnel in Rust that exposes local ports to a remote server, bypassing standard NAT connection firewalls....
