Aduket – Straight-forward HTTP Client Testing, Assertions Included
Straight-forward HTTP client testing, assertions included! Simple httptest.Server wrapper with a little request recorder spice on it. No special DSL,...
threatintel
OpenRelayMagic – Tool To Find SMTP Servers Vulnerable To Open Relay
╔═╗┌─┐┌─┐┌┐┌╦═╗┌─┐┬ ┌─┐┬ ┬╔╦╗┌─┐┌─┐┬┌─┐║ ║├─┘├┤ │││╠╦╝├┤ │ ├─┤└┬┘║║║├─┤│ ┬││ ╚═╝┴ └─┘┘└┘╩╚═└─┘┴─┘┴ ┴ ┴ ╩ ╩┴ ┴└─┘┴└─┘Tool to test for vulnerable open...
Ask a Pen Tester Q&A, Part 2: Everything You Need to Know About the Art of Penetration Testing
Penetration testing has become increasingly important to organizations of all sizes, as cyber-crimes increase and attackers run rampant. Identifying vulnerabilities...
An In-Depth Technical Analysis of CurveBall (CVE-2020-0601)
by: John Simpson (Vulnerability Researcher) The first Microsoft patch Tuesday of 2020 contained fixes for CVE-2020-0601, a vulnerability discovered by...
Android Trojan xHelper uses persistent re-infection tactics: here’s how to remove
We first stumbled upon the nasty Android Trojan xHelper, a stealthy malware dropper, in May 2019. By mid-summer 2019, xHelper was...
12,000+ Jenkins servers can be used to launch DDoS attacks
According to Radware researchers, a vulnerability (CVE-2020-2100) in 12,000+ Jenkins servers can be exploited to launch and amplify DDoS attacks...
Hashcracker – Python Hash Cracker
Supported hashing algorithms: SHA512, SHA256, SHA384, SHA1, MD5 Features: auto detection of hashing algorithm based on length (not recommended), bruteforce,...
KawaiiDeauther – Jam All Wifi Clients/Routers
Kawaii Deauther is a pentest toolkit whose goal is to perform jam on WiFi clients/routers and spam many fake AP...
How to Handle Misconfigurations in the Cloud
This blog post is part three of our four-part series on security in the cloud. In part one, we discussed...
February Patch Tuesday: Fixes for Critical LNK, RDP, Trident Vulnerabilities
The first Patch Tuesday of 2020 in January brought an unusually long list of patches, but February brings an even...
Phishing emails lure victims with news of coronavirus’ impact on shipping
Looking to capitalize on the current coronavirus scare, malware distributors have launched a new phishing campaign that targets global companies...
Deputy of the State Duma of the Russian Federation: it is necessary at the legislative level to protect the data of Russians on Facebook
Andrey Alshevskikh, the State Duma Deputy, said that the threat to the personal data of Russian users of the social...
Glitch in Tax Service Exposed 1.2 Million Danes’ CPR Numbers
A bug in the TastSelv Borger tax service which falls under the management of the US company DXC Technology has...
Scammers Target Coindesk ;Impersonating Reporters and Editors in the Last Months
Scammers have a new target and this time its CoinDesk as they try to impersonate CoinDesk reporters and editors in...
Cisco’s Routers. Switches and IP Equipment Suffer Zero-Day Attacks! Major Vulnerabilities Discovered!
The extremely well-known Cisco’s products, including IP Phones, Routers, cameras, and switches, were determined to have several severe “zero-day” vulnerabilities...
Agente – Distributed Simple And Robust Release Management And Monitoring System
Distributed simple and robust release management and monitoring system.**This project on going work.Road mapCore systemFirst worker agentManagement dashboardJenkins vs CI...
XSS-Freak – An XSS Scanner Fully Written In Python3 From Scratch
XSS-Freak is an XSS scanner fully written in python3 from scratch. It is one of its kind since it crawls...
Patch Tuesday – February 2020
A relatively modest 99-vulnerability February Patch Tuesday has arrived with a fix for the Internet Explorer 0-day CVE-2020-0674 (originally ADV200001)...
Intro to the SOC Visibility Triad
Data aggregated from these three core security realms can give the SOC an overall view of the most critical activity...
Malwarebytes Labs releases 2020 State of Malware Report
Malwarebytes Labs today released the results of our annual study on the state of malware—the 2020 State of Malware Report—and...
Battling online coronavirus scams with facts
Panic and confusion about the recent coronavirus outbreak spurred threat actors to launch several malware campaigns across the world, relying...
A week in security (February 3 – 9)
Last week on Malwarebytes Labs, we looked at Washington state’s latest efforts in providing better data privacy rights for their...
Computers can be hacked through a “smart” light bulb
Smart light bulbs can not only make the lighting in an apartment and house more convenient and cheaper but also...
CEO of a detective agency and speaker on cyber attacks: users should understand that Facebook is leaking their data
Numerous Facebook leaks in 2013 and 2016 put users in a position where they are not responsible for their security....
