The official blog of WizSec, a group of bitcoin security specialists, and their investigation into MtGox.

Problem: The client has blocked Powershell.exe using AppLocker and I don’t have the dough for Cobalt Strike. I want to get an Empire payload on a workstation via a phishing campaign and I nee…

BHUSA2017 - Content from presentation at BHUSA 2017

Here are our FIVE suggested ways that you can deploy to speak at a Cybersecurity Conference. Speaking at a Conference is awesome for your career. Learn how!

Modern websites are browsed through a lens of transparent systems built to enhance performance, extract analytics and supply numerous addi...

3 points and 2 comments so far on reddit

We are thrilled to announce Suricata 4.0. This is a major new release, improving detection capabilities, adding new output options and more protocols. Improved Detection Based on valuable feedback …

Skype-Type - Don't Skype & Type! Keyboard acoustic eavesdropping tool.

Owasp London July event is now live

The Speakers of DEF CON 25.

6 points and 0 comments so far on reddit

sandsifter - The x86 processor fuzzer

We're excited to announce two new open-source tools designed to help administrators prevent, manage, and respond to phishing attacks against their organization - IsThisLegit and Phinn.

2 points and 0 comments so far on reddit

Two weeks ago, we finished our audit of the Serpent compiler and sent it privately to the Augur team.

This is 🍊 speaking

Perform filesystem searches for phrases encoded in base64 by identifying key strings. Use these key strings for detection signatures or one-time scans.

spacebin - Spacebin is a proof-of-concept malware that exfiltrates data (from air-gapped-like environments) via triggering AV on the endpoint and then communicating back from the AV's cloud com...

vbully - 3.8.x - 4.2.3 ForumRunner (vBulletin) exploit made easy.