Project-Black – Pentest/BugBounty Progress Control With Scanning Modules
Scope control, scope scanner and progress tracker for easier working on a bug bounty or pentest project.What is this tool...
OSINT
Hackers play on Coronavirus fears to spread Emotet
Cybercriminals are exploiting fears over the outbreak of Coronavirus in China, sending out emails with malicious Word attachments purportedly providing...
Ukrainian authorities proposed online media to track readers and transfer data to the cyber police
A real scandal began with the rights of journalists, the media and freedom of speech in Ukraine. The Ukrainian cyber...
A Drug Molecule “Invented” By Artificial Intelligence (AI) To Be
Created by British start-up Exscientia and Japanese pharmaceutical firm Sumitomo Dainippon Pharma a drug molecule “artificial" by artificial intelligence (AI)...
Apple Engineers to Standardize the Format of the SMS Messages Containing OTPs
A proposal comes from Apple engineers working at WebKit, the core component of the Safari web browser, to institutionalize the...
Facebook to give $550 Million as a Settlement in a Lawsuit
Social Media giant Facebook is to pay an amount of $550 million as a settlement in what appears to be...
Hacked! SCPI Protocol Vulnerabilty; Measurement Instruments Could be Hacked!
A leading cyber-security firm recently alerted all the netizens about a vulnerability discovered in the measurement tools that support the...
RiskAssessmentFramework – Static Application Security Testing
The OWASP Risk Assessment Framework consist of Static application security testing and Risk Assessment tools, Eventhough there are many SAST...
MassDNS – A High-Performance DNS Stub Resolver For Bulk Lookups And Reconnaissance (Subdomain Enumeration)
MassDNS is a simple high-performance DNS stub resolver targetting those who seek to resolve a massive amount of domain names...
Metasploit Team Announces Beta Sign-Up for AttackerKB
When a new vulnerability prompts discussion on Twitter or hits media outlets, the security community collectively participates in a familiar...
Securing the MSP: their own worst enemy
We’ve previously discussed threats to managed service providers (MSPs), covering their status as a valuable secondary target to both an...
Roskomnadzor blocked the email service Protonmail
The FSB of the Russian Federation reported that it was possible to install another email service that was used by...
Sophisticated Hackers Infiltrate Dozens of U.N. Servers
An internal confidential document from the United Nations, leaked to The New Humanitarian and seen by The Associated Press, says...
S3Enum – Fast Amazon S3 Bucket Enumeration Tool For Pentesters
s3enum is a tool to enumerate a target's Amazon S3 buckets. It is fast and leverages DNS instead of HTTP,...
See-SURF – Python Based Scanner To Find Potential SSRF Parameters
A Python based scanner to find potential SSRF parameters in a web application.MotivationSSRF being one of the critical vulnerabilities out...
How the Innocent Lives Foundation Uses OSINT to Uncover Online Predators
On our latest episode of Security Nation, we spoke with a true hero: Chris Hadnagy, founder of the Innocent Lives...
Spear phishing 101: what you need to know
Phishing, a cyberattack method as old as viruses and Nigerian Princes, continues to be one of the most popular means...
Alert! Your Mac maybe under threat – SHLAYER MALWARE attacks every 10th Mac OS
The macOS traditionally was always considered a safe bet compared to Windows but now even Apple is facing a dangerous...
Avast Antivirus Harvested Users’ Data and Sold it Google, Microsoft, IBM and Others
Avast, a popular maker of free anti-virus software being employed by almost 435 million mobiles, Windows and Mac harvested its...
Blinder – A Python Library To Automate Time-Based Blind SQL Injection
Blidner is a small python library to automate time-based blind SQL injection by using a pre defined queries as a...
Obfuscapk – A Black-Box Obfuscation Tool For Android Apps
Obfuscapk is a modular Python tool for obfuscating Android apps without needing their source code, since apktool is used to...
R7-2019-40: Bloomsky SKY2 Weather Camera Station Data Authenticity and Exposure Vulnerabilities
A number of information leak vulnerabilities are present in the Bloomsky SKY2 network, obtainable via JSON queries intended to work...
Explained: the strengths and weaknesses of the Zero Trust model
In a US court of law, the accused are deemed to be innocent until proven guilty. In a Zero Trust...
The website of the Echo of Moscow radio station reported a two-week hacker attack
For two weeks, the website of the Echo of Moscow radio station and the computers of its employees have been...
