The researchers at Kaspersky Lab ICS CERT decided to check the popular smart camera to see how well protected it is against cyber abuses. This model has a rich feature list, compares favorably to regular webcams and can be used as a baby monitor, a component…

Inspired byexcellent CobaltStrike training,I set out to work out an easy way to inject into processes in Linux. There’sbeen quite a lot of experimentation with this already, usually using ptrace(2) orLD_PRELOAD,but I wanted something a little simpler and…

While analyzing some memory dumps suspicious of being infected with a keylogger, we identified a library containing strings to interact with a virtual file system. This turned out to be a malicious loader internally named “Slingshot”.

The Wi-Fi Alliance made a press release where it announced WPA3. Unfortunately, this did not include many technical details. Nevertheless...

Hacking fears are now pushing an increasing number of states toward a return to the basics, finding ways to implement paper ballots.

The app "ate 200% CPU until I found it and killed it. I didn’t expect a miner infection from an App Store vendor. Wow."

How to “classify” your personal data and share it on a need-to-know basis.

1 points and 0 comments so far on reddit

Building security is something most people consider at some point in their lives, whether they're looking at the property from a business perspective or just as the home they want to keep safe and secure. It's an important aspect of everyday life, and yet…

Probable-Wordlists - Version 2 is live! Wordlists sorted by probability originally created for password generation and testing - make sure your passwords aren't popular!

In the last post, Judas got SOCKS proxy and SSL support to make the proxy sneakier, but all the proxy can do is dump the requests and…

While some major distributed-denial-of-service attacks have been thwarted this month, the threat remains as critical as ever.

Just spoke to them on the phone and got the response "I haven't heard anything about that." Anyone here deal with Spectrum or another internet...

dprobe - Docker host and container auditor

HackVault - A container repository for my public web hacks!

The popular dating app Coffee Meets Bagel is leaking sensitive information about its 2 million users

The Memory Process File System for PCILeech is an easy and convenient way to quickly look into memory dumps. The processes in a memory dum...

  API(Application Program Interface) is a framework that makes it easy to build HTTP services that reach a broad range of clients, including browsers and mobile devices. Most of the websites p…

Probable-Wordlists - Version 2 is live! Wordlists sorted by probability originally created for password generation and testing - make sure your passwords aren't popular!

This post will outline a common flaw in implementations of Merkle Trees, with demonstrations of potential attacks against the most popular python libraries. But first, a brief overview of what both…