The threat intelligence team of Cleafy analyzed undercovering drIBAN fraud operations. Read here the first episode of the series of technical analysis.

GitHub Gist: instantly share code, notes, and snippets.

Advance web spider/crawler for cyber security professionals - GitHub - 3nock/SpiderSuite: Advance web spider/crawler for cyber security professionals

Public exploits and detections for CVE-2023-27350 focus on code execution using the PaperCut print noscripting interface. In this blog, VulnCheck shares a new code execution vector and demonstrates how existing detections aren't robust enough to flag the new…

bitdrain - remote p2p bandwidth/cpu overage attack against bitcoin, dogecoin, etc. - GitHub - visualbasic6/drain: bitdrain - remote p2p bandwidth/cpu overage attack against bitcoin, dogecoin, etc.

Redash is a popular data analysis and visualization tool. We recently reported a critical SAML authentication bypass vulnerability affecting it latest version (10.1.0). The vulnerability could be exploited by anyone to gain highest possible privileges on…

whois command implemented by golang with awesome whois servers list - famasoon/gowhois

Research on how browsers encode & send cookies, how they are parsed by various web frameworks, and some bugs

Resources for Application Security including Web, API, Android, iOS and Thick Client - Anof-cyber/Application-Security

In pentesting assessments and CTFs we always need reverse shells to execute commands on target machine once we have exploited a system and have a command injection at some point in our engagement.
For that we have an awesome project: revshells.com or reverse…

ETWHash is a small C# tool used during Red Team engagements, that can consume ETW SMB events and extract NetNTLMv2 hashes for cracking offline, unlike currently documented methods.

In this blog post an overview of the different components of a red team infrastructure is given. This includes explanations how these work, as well as the comparison of different solutions and their characteristics.

Thanks @rbran for the contributions!
backhand

Kind has been extended to take an CompressionAction to have a custom compression and decompression
algorithm. This defaults to the DefaultCompressor i...

A few weeks ago I ran into a conversation on Twitter about the weaknesses of applied cryptography textbooks, and how they tend to spend way too much time lecturing people about Feistel networks and…

A small utility to translate NTDS.dit files to SQLite format. - almandin/ntdsdotsqlite

As some of you may have seen, I posted a challenge to use Ghidra to identify a vulnerability in a WarGames themed game. There has been a…

In today's increasingly digital world, the need for robust cybersecurity measures has never been gre

Recently, we discussed various methods of persistence on corporate devices and a colleague of mine mentioned a tool he had written. We we...