Microsoft in an attempt to provide more flexibility to domain users enabled owner of resources to configure which accounts are trusted and allowed to delegate to them. This is achieved by modificat…

During a recent malware incident response case, we encountered an interesting piece of ransomware that goes by the name of BlackByte.

part 1 of this post, we showed how to train a Neural Network to generate the exact sequence of a relatively simple pseudo-random number generator (PRNG), namely xorshift128. In that PRNG, each number is totally dependent on the last four generated numbers…

Available Labs Coming Soon Labs Get All-Inclusive Access Get lifetime access and benefit from the new updates and features. GET ACCESS TODAY!

Ready to use prioritized Security Information and Event Management requirements, to: Develop experience managing security information and event management

Intro Towards the end of July, we observed an intrusion that began with IcedID malware and ended in XingLocker ransomware, a Mountlocker variant. XingLocker made its first appearance in early May o…

Microservices architectures are the dominant force in today’s software engineering realm, but how do they stack up at providing permissions strategies?

GoSecure ethical hackers found a bug in MySQL that left AWS WAF users vulnerable to SQL injection. Our team further confirmed modsecurity to be affected.

An analysis of current and potential kernel security mitigations Posted by Jann Horn, Project Zero Introduction This blog post de...

Coercing elevated accounts such as machine accounts to authenticate to a host under the control of an attacker can provide an opportunity for privilege escalation and domain escalation. There are v…

Security research team discloses vulnerability in open-src web server software. Learn which ver are vulnerable & how to check if the CVE is exploitable in your software

In this article we discuss a vulnerability in the trial version of WinRAR which has significant consequences for the management of third-party software. This vulnerability allows an attacker to intercept and modify requests sent to the user of the application.…

Introduction In today’s blog, we will specifically talk about evading antivirus signatures that target registry keys which are associated with UAC (User Acco...

This project hosts security advisories and their accompanying proof-of-concepts related to research conducted at Google which impact non-Google owned code. - security-research/pocs/bios/tpm-carte-b...

Find out what is OWASP and what are the OWASP top 10 vulnerabilities.

We explain what Managed Detection and Response (MDR) is, and how this service helps enterprises identify and respond to cybersecurity incidents.

This article is about the recently published security advisory for a pretty popular software, fail2ban (CVE-2021-32749). It is about a bug that may lead to Remote Code Execution.

The third quarter of 2021 brought a massive upheaval in the scale and intensity of DDoS attacks worldwide.It all led to September when together with Yandex, we uncovered one of the most devastating...

Using the flexibility of Semgrep patterns with taint mode to find injection vulnerabilities