Citizen Science and Medical Consumerism: Confronting the Tech Wisdom Gap in Modern Healthcare
In our latest episode of Security Nation, we spoke with Nina Alli, executive director of the Biohacking Village, to discuss...
tools
Rapid7 joins CFAA brief to the Supreme Court
Rapid7 joined a brief to the US Supreme Court on the chilling effect of the overbroad Computer Fraud and Abuse...
Debotnet – A Tiny Portable Tool For Controlling Windows 10’s Many Privacy-Related Settings And Keep Your Personal Data Private
A free and portable tool for controlling Windows 10's many privacy-related settings and keep your personal data private.Your preparation for...
Santa – A Binary Whitelisting/Blacklisting System For macOS
Santa is a binary whitelisting/blacklisting system for macOS. It consists of a kernel extension (or a system extension on macOS...
FinDOM-XSS – A Fast DOM Based XSS Vulnerability Scanner With Simplicity
FinDOM-XSS is a tool that allows you to finding for possible and/ potential DOM based XSS vulnerability in a fast...
ParamSpider – Mining Parameters From Dark Corners Of Web Archives
ParamSpider : Parameter miner for humans.Key Features : Finds parameters from web archives of the entered domain. Finds parameters from...
OWASP Threat Dragon – Cross-Platform Threat Modeling Application
Threat Dragon is a free, open-source, cross-platform threat modeling application including system diagramming and a rule engine to auto-generate threats/mitigations....
GIVINGSTORM – Infection Vector That Bypasses AV, IDS, And IPS
The beginnings of a C2 framework. Currently without all the C2 stuff so far. Generates a dual stage VBS infection...
Converting MBOX to Outlook Easily
Mail transfer is a common search query. Most commonly, users may migrate due to personal preferences, corporate policies, or support...
WordListGen – Super Simple Python Word List Generator For Fuzzing And Brute Forcing In Python
Super Simple Python Word List Generator for Password Cracking (Hashcat)!I know what your are thinking. Why create another word list...
dorkScanner – A Typical Search Engine Dork Scanner Scrapes Search Engines With Dorks That You Provide In Order To Find Vulnerable URLs
A typical search engine dork scanner that scrapes search engines with queries that you provide in order to find vulnerable...
Small Business in a Big World (Wide Web): What You Should Know to Stay Secure
While the COVID-19 pandemic has made online stores increasingly valuable, some small businesses may not have had the experience around...
Harbian-Audit – Hardened Debian GNU/Linux Distro Auditing
Hardened Debian GNU/Linux and CentOS 8 distro auditing.The main test environment is in debian GNU/Linux 9/10 and CentOS 8, and...
Shhgit – Find GitHub Secrets In Real Time
Shhgit finds secrets and sensitive files across GitHub code and Gists committed in near real time by listening to the...
Seeing Value From Day One: What You Need to Know About Cloud SIEM Deployment and Configuration
In our modern threat landscape, many organizations face challenges that remain difficult to decipher, let alone resolve. In a fast-paced...
Scant3R – Web Security Scanner
ScanT3r - Web Security Scanner _____ ___________ / ___/_________ _____/_ __/__ /_____ __ / ___/ __ `/ __ / /...
Airshare – Cross-platform Content Sharing In A Local Network
Airshare is a Python-based CLI tool and module that lets you transfer data between two machines in a local network,...
Application Security Takes Center Stage in this Year’s Verizon Data Breach Investigations Report
The latest Verizon Data Breach Investigations Report (DBIR) was released in May, and we’re still unpacking all the golden nuggets...
Git All The Payloads! A Collection Of Web Attack Payloads
Git All the Payloads! A collection of web attack payloads. Pull requests are welcome!Usagerun ./get.sh to download external payloads and...
Faxhell – A Bind Shell Using The Fax Service And A DLL Hijack
A Proof-of-Concept bind shell using the Fax service and a DLL hijack based on Ualapi.dll.See our writeup at: https://windows-internals.com/faxing-your-way-to-system/How to...
Rapid7 Named a 2020 Gartner Peer Insights Customers’ Choice for Security Information Event Management
The mission of InsightIDR, Rapid7’s natively cloud SIEM, is a simple one: eliminate the complexity that stands between talented security...
12 Most Exploited Vulnerabilities: How to Navigate Vulnerabilities in a Security Program
In a recent alert published by the U.S. Cybersecurity and Infrastructure Security Agency (CISA), the organization laid out the 12...
Gain a More Dynamic View: How to Connect Cloud Configuration Assessment in InsightVM to CloudTrail in AWS
Cloud Configuration Assessment is an InsightVM feature that provides a security-focused view into your cloud environment. Capabilities are centered around...
Exe_To_Dll – Converts A EXE Into DLL
Converts an EXE, so that it can be loaded like a DLL.Supports both 32 and 64 bit DLLsInspired by the...
