Congrats to the winners of the 2020 Metasploit community CTF
After four days of competition and a whole lot of “trying harder,” we have the winners of this year's Metasploit...
threatintel
What You Need to Know to Get Started in the Penetration Testing Field
As cyber-attacks become more and more frequent against entities of all sizes, penetration testing is becoming more important to identify...
PCFG Cracker – Probabilistic Context Free Grammar (PCFG) Password Guess Generator
PCFG = Probabilistic Context Free GrammarPCFG = Pretty Cool Fuzzy GuesserIn short: A collection of tools to perform research into...
DVNA – Damn Vulnerable NodeJS Application
Damn Vulnerable NodeJS Application (DVNA) is a simple NodeJS application to demonstrate OWASP Top 10 Vulnerabilities and guide on fixing...
Ransomware Hits Media Monitoring Company ‘TV Eyes’
The latest ransomware has attacked 'TV Eyes,' a company that offers campaign monitoring services to TV and radio news broadcasts....
Can you find a bug in Xbox Live? Microsoft will pay you, if you do!
Think you're an expert at Xbox? Think you can find a bug in Xbox Live? Well, Microsoft might pay you...
GDA Android Reversing Tool – A New Decompiler Written Entirely In C++, So It Does Not Rely On The Java Platform, Which Is Succinct, Portable And Fast, And Supports APK, DEX, ODEX, Oat
Here, a new Dalvik bytecode decompiler, GDA(this project started in 2013 and released its first version 1.0 in 2015 at...
Project-Black – Pentest/BugBounty Progress Control With Scanning Modules
Scope control, scope scanner and progress tracker for easier working on a bug bounty or pentest project.What is this tool...
Hackers play on Coronavirus fears to spread Emotet
Cybercriminals are exploiting fears over the outbreak of Coronavirus in China, sending out emails with malicious Word attachments purportedly providing...
Ukrainian authorities proposed online media to track readers and transfer data to the cyber police
A real scandal began with the rights of journalists, the media and freedom of speech in Ukraine. The Ukrainian cyber...
A Drug Molecule “Invented” By Artificial Intelligence (AI) To Be
Created by British start-up Exscientia and Japanese pharmaceutical firm Sumitomo Dainippon Pharma a drug molecule “artificial" by artificial intelligence (AI)...
Apple Engineers to Standardize the Format of the SMS Messages Containing OTPs
A proposal comes from Apple engineers working at WebKit, the core component of the Safari web browser, to institutionalize the...
Facebook to give $550 Million as a Settlement in a Lawsuit
Social Media giant Facebook is to pay an amount of $550 million as a settlement in what appears to be...
Hacked! SCPI Protocol Vulnerabilty; Measurement Instruments Could be Hacked!
A leading cyber-security firm recently alerted all the netizens about a vulnerability discovered in the measurement tools that support the...
RiskAssessmentFramework – Static Application Security Testing
The OWASP Risk Assessment Framework consist of Static application security testing and Risk Assessment tools, Eventhough there are many SAST...
MassDNS – A High-Performance DNS Stub Resolver For Bulk Lookups And Reconnaissance (Subdomain Enumeration)
MassDNS is a simple high-performance DNS stub resolver targetting those who seek to resolve a massive amount of domain names...
Metasploit Team Announces Beta Sign-Up for AttackerKB
When a new vulnerability prompts discussion on Twitter or hits media outlets, the security community collectively participates in a familiar...
Securing the MSP: their own worst enemy
We’ve previously discussed threats to managed service providers (MSPs), covering their status as a valuable secondary target to both an...
Roskomnadzor blocked the email service Protonmail
The FSB of the Russian Federation reported that it was possible to install another email service that was used by...
Sophisticated Hackers Infiltrate Dozens of U.N. Servers
An internal confidential document from the United Nations, leaked to The New Humanitarian and seen by The Associated Press, says...
S3Enum – Fast Amazon S3 Bucket Enumeration Tool For Pentesters
s3enum is a tool to enumerate a target's Amazon S3 buckets. It is fast and leverages DNS instead of HTTP,...
See-SURF – Python Based Scanner To Find Potential SSRF Parameters
A Python based scanner to find potential SSRF parameters in a web application.MotivationSSRF being one of the critical vulnerabilities out...
How the Innocent Lives Foundation Uses OSINT to Uncover Online Predators
On our latest episode of Security Nation, we spoke with a true hero: Chris Hadnagy, founder of the Innocent Lives...
Spear phishing 101: what you need to know
Phishing, a cyberattack method as old as viruses and Nigerian Princes, continues to be one of the most popular means...
