Certipy – Python Implementation For Active Directory Certificate Abuse
Certipy is a Python tool to enumerate and abuse misconfigurations in Active Directory Certificate Services (AD CS). Based on the...
OSINT
Empire 4.2
Empire 4.2 was just finalized over the weekend and we are excited to share some of the new features. This...
A drone was modified to disrupt U.S. Power Grid, says intelligence bulletin
US officials believe that a drone was employed in an attempted attack on a power substation in Pennsylvania last year. US...
US defense contractor Electronic Warfare Associates discloses data breach
US defense contractor Electronic Warfare Associates (EWA) was hit by a cyber attack, threat actors stole personal information from its...
Tor-Rootkit – A Python 3 Standalone Windows 10 / Linux Rootkit Using Tor
A Python 3 standalone Windows 10 / Linux Rootkit. The networking communication get's established over the tor network.DisclaimerUse for educational...
Ukraine intelligence doxed 5 FSB Officers that are members of Gamaredon APT Group
Ukraine’s premier law enforcement and counterintelligence revealed the real identities of five FSB members behind the Gamaredon cyberespionage group. Ukraine’s...
Wanted! US offers $10m bounty for ransomware kingpins
The US State Department is offering a massive $10 million reward if you can help bring DarkSide to justice. The...
Threat actor exploits MS ProxyShell flaws to deploy Babuk ransomware
A new threat actor is exploiting ProxyShell flaws in attacks aimed at Microsoft Exchange servers to deploy the Babuk Ransomware...
PyRDP – RDP Monster-In-The-Middle (Mitm) And Library For Python With The Ability To Watch Connections Live Or After The Fact
PyRDP is a Python Supported SystemsPyRDP should work on Python 3.6 and up on the x86-64, ARM and ARM64 platforms....
npm libraries coa and rc. have been hijacked to deliver password-stealing malware
Two popular npm libraries, coa and rc., have been hijacked, threat actors replaced them with versions laced with password-stealing malware. The security...
US Gov offers a reward of up to $10M for info on DarkSide leading members
The US government offers up to a $10,000,000 reward for information leading to the identification or arrest of DarkSide gang...
CISA recommends vendors to fix BrakTooth issues after the release of PoC tool
CISA urges vendors to address BrakTooth flaws after researchers have released public exploit code and a proof of concept tool...
CISA sets two week window for patching serious vulnerabilities
The Cybersecurity and Infrastructure Security Agency (CISA) has issued binding directive 22-01 titled Reducing the Significant Risk of Known Exploited...
Cisco warns of hard-coded credentials and default SSH key issues in some products
Cisco fixed critical flaws that could have allowed unauthenticated attackers to access its devices with hard-coded credentials or default SSH...
Androidqf – (Android Quick Forensics) Helps Quickly Gathering Forensic Evidence From Android Devices, In Order To Identify Potential Traces Of Compromise
androidqf (Android Quick Forensics) is a portable tool to simplify the acquisition of relevant forensic data from Android devices. It...
Expert found a critical remote code execution bug in Linux Kernel
A critical heap-overflow vulnerability, tracked as CVE-2021-43267, in Linux Kernel can allow remote attackers to takeover vulnerable installs. A SentinelOne...
Hacker allegedly involved in 2020 Twitter hack charged with theft of $784K in crypto
The US DoJ charged the suspected Twitter hacker ‘PlugWalkJoe’ with the theft of $784,000 worth of cryptocurrency using SIM swap attacks....
CISA shares a catalog of 306 actively exploited vulnerabilities
The US CISA shared a list of vulnerabilities known to be exploited in the wild and orders US federal agencies...
LDAPmonitor – Monitor Creation, Deletion And Changes To LDAP Objects Live During Your Pentest Or System Administration!
Monitor creation, deletion and changes to LDAP objects live during your pentest or system administration! With this tool you can...
CERT-FR warns of Lockean ransomware attacks against French companies
CERT-France warns of a new ransomware group named Lockean that is behind a series of attacks against French organizations over...
The U.K. Labour Party discloses a data breach
The U.K. Labour Party discloses a data breach after a ransomware attack hit a service provider that is managing its...
TIWAP – Totally Insecure Web Application Project
TIWAP is a web security testing lab made using Flask for budding security enthusiasts to learn about various web vulnerabilities....
Cyber Defense Magazine – November 2021 has arrived. Enjoy it!
Cyber Defense Magazine September 2021 Edition has arrived. We hope you enjoy this month’s edition…packed with 155 pages of excellent...
NSO Group, Positive Technologies and other firms sanctioned by the US government
The U.S. sanctioned four companies for the development of surveillance malware or the sale of hacking tools used by nation-state...
