Clipboardme – Grab And Inject Clipboard Content By Link
Grab/Inject Clipboard ContentBrowsers are implementing a new JavaScript API for asynchronous clipboard access to integrate copy and paste into web...
Security
Threadtear – Multifunctional Java Deobfuscation Tool Suite
Threadtear is a multifunctional deobfuscation tool for java. Suitable for easier code analysis without worrying too much about obfuscation. Even...
Patch Tuesday – May 2020
Microsoft's fifth Patch Tuesday of the year brings us fixes for 111 different security issues, just a touch under what...
Three Switching Costs to Consider When Evaluating a New Vulnerability Management Solution
Ah, vulnerability management. There are some great solutions out there—as well as some not-so-great solutions. If you’re using the latter,...
How a Security Anomaly was Accidentally Found in an EAL6+ JavaCard
Context Quarkslab is one of the 10 ITSEF (Information Technology Security Evaluation Facility, CESTI in French) licensed by the ANSSI's...
Lock and Code S1Ep6: Recognizing facial recognition’s flaws with Chris Boyd
This week on Lock and Code, we discuss the top security headlines generated right here on Labs and around the...
Researchers Monitor Rise Of An Infostealer Dubbed As ‘Poulight’ That Most Likely Has A Russian Origin
In times where info-stealer is progressively becoming one of the most common threats, the Infostealer market has thus risen as...
‘ShinyHunters’, a Hacker Group Selling Databases of 10 Organization on the Dark Web for $18,000
A group of hackers has put the user databases of 10 companies for sale on the dark web, a part...
Maze Ransomware and its Various Campaigns Continue to Threaten the Cyber World
Ever since this year began, the Maze ransomware has been hitting headlines. Recently researchers discovered more samples of Maze in...
Wifipumpkin3 – Powerful Framework For Rogue Access Point Attack
wifipumpkin3 is powerful framework for rogue access point attack, written in Python, that allow and offer to security researchers, red...
Catchyou – FUD Win32 Msfvenom Payload Generator
Fully Undetectable Win32 MSFVenom Payload Generator (meterpreter/shell reverse tcp)Author: github.com/thelinuxchoice/catchyouTwitter: twitter.com/linux_choicePlease, don't upload to VirusTotal! Use https://antiscan.meFeatures:Fully Undetectable Win32 MSFVenom...
Preparing for the Cybersecurity Maturity Model Certification (CMMC), Part 2: The Larger Picture
Welcome back! In Part 1 of the CMMC series, we introduced the Cybersecurity Maturity Model Certification (CMMC) and the concept...
Optimizing Security in the Work-From-Home Era
To make matters worse, attackers are also capitalizing on fears and concerns associated with the global pandemic.In early April, Google...
PayloadsAllTheThings – A List Of Useful Payloads And Bypass For Web Application Security And Pentest/CTF
A list of useful payloads and bypasses for Web Application Security. Feel free to improve with your payloads and techniques...
Exegol – Exegol Is A Kali Light Base With A Few Useful Additional Tools And Some Basic Configuration
Exegol is a fully configured kali light base with a few useful additional tools (~50), a few useful resources (scripts...
Russians began to click on scam sites 10 times more often
According to the study of Kaspersky Lab, at the beginning of 2020, the number of attacks on Russians through scam...
Blue Mockingbird , a cryptocurrancy mining campaign exploits web applications
Analysts at Red Canary, a cybersecurity firm have discovered a Monero cryptocurrency-mining campaign that exploits a deserialization vulnerability, CVE-2019-18935 in...
GDBFrontend – An Easy, Flexible And Extensionable GUI Debugger
GDBFrontend is an easy, flexible and extensionable gui debugger.InstallingDeb Package (Debian / Ubuntu / KDE Neon)You can install GDBFrontend via...
Shellerator – Simple CLI Tool For The Generation Of Bind And Reverse Shells In Multiple Languages
Shellerator is a simple command-line tool aimed to help pentesters quickly generate one-liner reverse/bind shells in multiple languages (Bash, Powershell,...
Attention! Fake Extensions on the Chrome Web Store Again!
Reportedly, Google was in the news about having removed 49 Chrome extensions from its browser’s store for robbing crypto-wallet credentials....
Hackers use the Fake Image Hosting Website as a Decoy to Launch E-Skimming Attacks
In what is said to be one of the most creative hacking technique to date, a group of hackers made...
Naikon’s Aria
Our colleagues at Checkpoint put together a fine research writeup on some Naikon resources and activity related to “aria-body” that...
Powerob – An On-The-Fly Powershell Script Obfuscator Meant For Red Team Engagements
An on-the-fly Powershell script obfuscator meant for red team engagements. Built out of necessity.Installationgit clone https://github.com/cwolff411/powerobUsagepython3 powerob.py obfuscate originalfile.ps1 obfuscatedfile.ps1Takes...
How to Set Up a VPN on Kodi in 2 Minutes or Less
VPNs are useful for masking your identity when online. Without a VPN, you run the risk of having your data...
