Manuka – A Modular OSINT Honeypot For Blue Teamers
Manuka is an Open-source intelligence (OSINT) honeypot that monitors reconnaissance attempts by threat actors and generates actionable intelligence for Blue...
OSINT
Treasury sanctions Russian research institute for Triton attack
The Treasury Department’s Office of Foreign Assets Control sanctioned a Russian government research institution linked to Triton malware targeting industrial...
U.S Elections: Spammers Use Fake Voter Registration Forms To Steal User Data and Banking Credentials
As the U.S. presidential elections are approaching, the hacking and spamming attacks related to it are rising. In a similar...
Russian experts says the number of cyber threats increased during COVID-19
Cyber attack prevention experts recorded a sharp increase in the number of cyber threats and outlined the main trends in...
Pesidious – Malware Mutation Using Reinforcement Learning And Generative Adversarial Networks
Malware Mutation using Deep Reinforcement Learning and GANsThe purpose of the tool is to use artificial intelligence to mutate a...
AutoGadgetFS – USB Testing Made Easy
What’s AutoGadgetFS ?AutoGadgetFS is an open source framework that allows users to assess USB devices and their associated hosts/drivers/software without...
United States Charged Six Russian Intelligence Officers with Involvement in An Unrestricted Huge Hacking Campaign
With involvement in an 'unrestricted huge hacking campaign', which incorporates the famous Petya ransomware attacks which have focused mainly...
NoSQLi – NoSql Injection CLI Tool
NoSQL scanner and injector. About NosqliI wanted a better nosql injection tool that was simple to use, fully command line...
GitDorker – A Tool To Scrape Secrets From GitHub Through Usage Of A Large Repository Of Dorks
GitDorker is a tool that utilizes the GitHub Search API and an extensive list of GitHub dorks that I've compiled...
CVE-2020-24990 Q-SYS <= 8.2.1 TFTP Directory Traversal
Posted by Kevin R on Oct 23files through a TFTP GET request Use CVE-2020-24990. If you like the site, please...
Unicorn Emulator 1.0.2 is out!
Posted by Nguyen Anh Quynh on Oct 23Greetings! We are very happy to announce version 1.0.2 of Unicorn Emulator! It...
SEC Consult SA-20201023-0 :: Multiple Vulnerabilities in PubliXone
Posted by SEC Consult Vulnerability Lab on Oct 23SEC Consult Vulnerability Lab Security Advisory < 20201023-0 > ======================================================================= title: PubliXone...
The value of cybersecurity integration for MSPs
For modern Managed Service Providers (MSPs), gone are the days of disparate workflows, and that’s really for the best. Imagine...
Expert opinion: how the digital currency of the Bank of Russia will change the future of the country
Announcing the possible appearance of the digital ruble, the Russian Central Bank joined dozens of world Central banks that have...
Iranian Hacker Group Using New Tools to Target Government Agencies of Broader Middle East Region
In the part of their attacks on companies and government agencies in the broader Middle East region, an Iranian cyberattack...
On the trail of the XMRig miner
As protection methods improve, the developers of miners have had to enhance their own creations, often turning to non-trivial solutions....
Oregami – IDA Plugins And Scripts For Analyzing Register Usage Frame
""" What is this register used for? Hmm.. I'll just rename it to veryuniquename, do a textual search, and find...
NTLMRawUnHide – A Python3 Script Designed To Parse Network Packet Capture Files And Extract NTLMv2 Hashes In A Crackable Format
NTLMRawUnhide.py is a Python3 script designed to parse network packet capture files and extract NTLMv2 hashes in a crackable format....
What’s New in InsightAppSec and tCell: Q3 2020 in Review
Here at Rapid7, we’ve been quite busy continuously improving, expanding functionality, and testing new features for feedback with our customers...
VL 2020-10-22 – German Bundeswehr starts own Responsible Disclosure Program (VDPBw)
Posted by Vulnerability Lab on Oct 22Title: German Bundeswehr starts own Responsible Disclosure Program (VDPBw) Link:https://www.vulnerability-db.com/?q=articles/2020/10/22/german-bundeswehr-starts-own-responsible-disclosure-program-vdpbw If you like the...
XSS to TSS: tech support scam campaign abuses cross-site scripting vulnerability
Tech support browser lockers continue to be one of the most common web threats. Not only are they a problem...
United States rejected Putin’s offer to cooperate on cybersecurity
The US authorities for the first time publicly responded to the proposal of Russian President Vladimir Putin to resume cooperation...
Mobile Versions of Several Browsers Found Vulnerable to Address Bar Spoofing Flaws
Several mobile browsers including Firefox, Chrome, and Safari were found vulnerable to an ‘address bar spoofing’ flaw which when exploited...
Life of Maze ransomware
In the past year, Maze ransomware has become one of the most notorious malware families threatening businesses and large organizations....
