Let me share my experience on how I do research on a topic. I would be happy to know your methodology as well :)

In this intrusion, we will take a look at a Trickbot infection, where soon after gaining access, the threat actor started to enumerate the target network and dump credential information. A setup file, which attempted to masquerade as a legitimate software…

Censors pose a threat to the entire Internet.

At least 65 vendors affected by severe vulnerabilities that enable unauthenticated attackers to fully compromise the target device.

The security account manager (SAM) file contains the password hashes of the users on a Windows system. Since it is considered a sensitive file SYSTEM level privileges are required to view its conte…

An in-depth look at Prototype Pollution vulnerabilities and how to mitigate them.

The Bishop Fox team discovered three vulnerabilities that could have a severe business and reputational risk for Wodify.

Everyone knows what’s inside a computer isn’t really real. It pretends to be, sure, hiding just under the pixels — but I promise you it…

Title CVE-2021-22929 Brave Browser 1.27 and below permanently logs the server connection time for all v2 tor domains to ~/.config/BraveSoftware/Brave-Browser/tor/data/tor.log

Posted in r/netsec by u/feabell • 19 points and 0 comments

We look at exploitation without the CVE-2021-31955 information disclosure, enabling better exploit primitives through PreviousMode, reliability, stability and exploit clean-up and well as thoughts …

CompTIA Training Free and Paid Practice Exam Tests and Performance-based Questions for CompTIA A+ Network+ Security+ and more. Become a CompTIA Certified.

Due to recent political events there’s an increased interest in Afghanistan’s websites. This is a tutorial on how to run sn0int on .gov.af to enumerate as many sites as possible for archival purpose.

Web Application Secure Coding Handbook resource. Contribute to joswha/Secure-Coding-Handbook development by creating an account on GitHub.

Authenticity of TLS certificate issued by a Public CA is no longer sufficient

Printers are part of every corporate infrastructure therefore Windows environments they have a number of embedded drivers installed. The Print Spooler (spoolsv.exe) service is responsible for print…

Generate a bunch of malicious pdf files with phone-home functionality. Can be used with Burp Collaborator - GitHub - jonaslejon/malicious-pdf: Generate a bunch of malicious pdf files with phone-hom...

Penetration Testing is one of the most sought-after careers for new cyber security college graduates. I don’t know how many times I have had an intern or mentee who has said that their goal was to...

This is a NSE noscript that uses IoTVAS API and enables NMAP port scanner to perform connected device discovery and security risk assessment - GitHub - firmalyzer/iotvas-nmap: This is a NSE noscript th...