Numerous fraudulent sites disguised as well-known brands have appeared on the Runet
In autumn, experts recorded mass registration of domain names with the names of well-known brands in the .RU zoneSpecialists at...
Security
Grype – A Vulnerability Scanner For Container Images And Filesystems
A vulnerability scanner for container images and filesystems. Easily install the binary to try it out. Features Scan the contents...
TASER – Python3 Resource Library For Creating Security Related Tooling
TASER (Testing And SEecurity Resource) is a Python resource library used to simplify the process of creating offensive security tooling,...
2021 Detection and Response Planning, Part 3: Why 2021 Is the Year for SOC Automation
In this third installment of our series around 2021 security planning, we’re focused on SOC automation. In part one, we...
[CVE-2020-25204] God Kings “com.innogames.core.frontend.notifications.receivers.LocalNotificationBroadcastReceiver” Improper Authorization Allowing In-Game Notification Spoofing
Posted by Julien Ahrens (RCE Security) on Oct 27RCE Security Advisoryhttps://www.rcesecurity.com 1. ADVISORY INFORMATION ======================= Product: God Kings Vendor URL:...
Lock and Code S1Ep18: Finding consumer value in Cybersecurity Awareness Month with Jamie Court
This week on Lock and Code, we discuss the top security headlines generated right here on Labs and around the...
Google patches actively exploited zero-day bug that affects Chrome users
Google has recently released Chrome version 86.0.4240.111 to patch several holes. One is for a zero-day flaw – that means...
JWT-Hack – Tool To En/Decoding JWT, Generate Payload For JWT Attack And Very Fast Cracking(Dict/Brutefoce)
jwt-hack is tool for hacking / security testing to JWT. Supported for En/decoding JWT, Generate payload for JWT attack and...
Decoder++ – An Extensible Application For Penetration Testers And Software Developers To Decode/Encode Data Into Various Formats
An extensible application for penetration testers and software developers to decode/encode data into various formats.SetupDecoder++ can be either installed by...
Scan Template Best Practices in InsightVM
When you start out with one of our vulnerability management solutions, Nexpose or InsightVM, one of the first things you...
Twitter and Facebook CEOs asked to testify on election and content moderation before the US Senate
The US Senate Judiciary Committee has asked the CEO of Twitter and Facebook to evaluate their role in “platforms’...
Deepfake Bots on Telegram, Italian Authorities Investigating
Cybercriminals are using a newly created Artificial Intelligence bot to generate and share deepfake nude images of women on the...
CobaltStrikeScan – Scan Files Or Process Memory For CobaltStrike Beacons And Parse Their Configuration
Scan files or process memory for Cobalt Strike beacons and parse their configuration. CobaltStrikeScan scans Windows process memory for evidence...
Manuka – A Modular OSINT Honeypot For Blue Teamers
Manuka is an Open-source intelligence (OSINT) honeypot that monitors reconnaissance attempts by threat actors and generates actionable intelligence for Blue...
Treasury sanctions Russian research institute for Triton attack
The Treasury Department’s Office of Foreign Assets Control sanctioned a Russian government research institution linked to Triton malware targeting industrial...
U.S Elections: Spammers Use Fake Voter Registration Forms To Steal User Data and Banking Credentials
As the U.S. presidential elections are approaching, the hacking and spamming attacks related to it are rising. In a similar...
Russian experts says the number of cyber threats increased during COVID-19
Cyber attack prevention experts recorded a sharp increase in the number of cyber threats and outlined the main trends in...
Pesidious – Malware Mutation Using Reinforcement Learning And Generative Adversarial Networks
Malware Mutation using Deep Reinforcement Learning and GANsThe purpose of the tool is to use artificial intelligence to mutate a...
AutoGadgetFS – USB Testing Made Easy
What’s AutoGadgetFS ?AutoGadgetFS is an open source framework that allows users to assess USB devices and their associated hosts/drivers/software without...
United States Charged Six Russian Intelligence Officers with Involvement in An Unrestricted Huge Hacking Campaign
With involvement in an 'unrestricted huge hacking campaign', which incorporates the famous Petya ransomware attacks which have focused mainly...
NoSQLi – NoSql Injection CLI Tool
NoSQL scanner and injector. About NosqliI wanted a better nosql injection tool that was simple to use, fully command line...
GitDorker – A Tool To Scrape Secrets From GitHub Through Usage Of A Large Repository Of Dorks
GitDorker is a tool that utilizes the GitHub Search API and an extensive list of GitHub dorks that I've compiled...
CVE-2020-24990 Q-SYS <= 8.2.1 TFTP Directory Traversal
Posted by Kevin R on Oct 23files through a TFTP GET request Use CVE-2020-24990. If you like the site, please...
Unicorn Emulator 1.0.2 is out!
Posted by Nguyen Anh Quynh on Oct 23Greetings! We are very happy to announce version 1.0.2 of Unicorn Emulator! It...
