3 votes and 0 comments so far on Reddit

There are many ways to analyze malware. In this blog post, we illustrate a typical analysis method: comparing an unknown sample with a known sample, to determine if the unknown sample is malicious …

Being Who You Are Can be a Bad Thing if You're a System Service by Mitja Kolsek, the 0patch Team Earlier this week security researc...

Being Who You Are Can be a Bad Thing if You're a System Service by Mitja Kolsek, the 0patch Team Earlier this week security researc...

VerSprite's cybersecurity research team analyzes JSON Deserialization Memory Corruption Vulnerabilities on Android. Stay tuned for the rest of the series.

One of the coolest new features released in the recent beta version of Burp Suite is the introduction of a REST API. I blogged about the UI and some other feature enhancements earlier this week. Today I want to talk a little bit about a command-line Ruby…

This Cheatsheet covers large number of detection & exploitation scenarios around Out of Band Exploitation Techniques. Primarily targetting DNS and ICMP.

In a new solution guide, Microsoft has explained how to create an Azure-based solution to detect mobile bank fraud within two seconds, helping mitigate fraudulent transactions and SIM swap attacks.

How I found a vulnerability in the application, and how you can too!

1 vote and 0 comments so far on Reddit

1 points and 1 comments so far on reddit

Acid Server is a web based vulnerable virtual machine which was designed like a CTF (Catch The Flag) for pentesters. If you are interested in web based exploits, then you are in a right place. The denoscription of ACID Server in Vulnhub is as follows : Welcome…

This is a collection of #botnet source codes, unorganized. For EDUCATIONAL PURPOSES ONLY - maestron/botnets

Join security researcher theMiddle and learn how to use an uninitialized Bash variable to bypass WAF regex based filters and pattern matching.

The industry-wide program for documenting hardware and software vulnerabilities suffers from fluctuating funding and insufficient oversight, according to the House Energy and Commerce Committee.

As part of the “Data Rights” series, today we decided to consider products that are more interesting in terms of privacy and user…

Mike Felch// With so many Microsoft technologies, services, integrations, applications, and configurations it can create a great deal of difficulty just to manage everything. Now imagine trying to secure an environment that goes well beyond the perimeter.…

Last week I realized it’s been a year since my last post here.

Fluid Attacks is always looking for young talents with a passion for programming and Information Technology. This page is meant to inform everyone interested in being part of the Fluid Attacks team about the selection process and the various stages that it…