We're excited to announce two new open-source tools designed to help administrators prevent, manage, and respond to phishing attacks against their organization - IsThisLegit and Phinn.

2 points and 0 comments so far on reddit

Two weeks ago, we finished our audit of the Serpent compiler and sent it privately to the Augur team.

This is 🍊 speaking

Perform filesystem searches for phrases encoded in base64 by identifying key strings. Use these key strings for detection signatures or one-time scans.

spacebin - Spacebin is a proof-of-concept malware that exfiltrates data (from air-gapped-like environments) via triggering AV on the endpoint and then communicating back from the AV's cloud com...

vbully - 3.8.x - 4.2.3 ForumRunner (vBulletin) exploit made easy.

Started in 1992 by the Dark Tangent, DEF CON is the world's longest running and largest underground hacking conference. Hackers, corporate IT professionals, and three letter government agencies all converge on Las Vegas every summer to absorb cutting edge…

mitm-router - ☠ Man-in-the-middle wireless access point inside a docker container 🐳

DEFCON 25, Las Vegas, NV

shareAttack - Automatically attack all file shares within AD network environment. Exploiting weak permissions.

Photoshop has an optional feature named Remote Connections. It’s disabled by default, but when you turn this on and set the password…

koadic - Koadic C3 COM Command & Control - JScript RAT

Last Tuesday, an unknown hacker sent a series of malicious transactions to three separate Ethereum ICO contracts and managed to steal $32 million worth of Ether. The transactions exploited a bug in the Parity Multisig Wallet contract. But what exactly was…

Sorry for taking down the previous post. In this morning I thought that there was something important I missed. To responsibly disclosure…

The infamous Windows Registry

Let's rig some elections.

Leaders in Information Security

1 points and 0 comments so far on reddit

"daredevi1" There it is, folks. My everything-password from my school days.