File upload vulnerability scanner and exploitation tool. - almandin/fuxploider

New Android malware banking family was recently found targeting users from Brazil. Trojans are distributed not only through Google Play store but also on Facebook through promoted ads.

Malware sample library. Contribute to mstfknn/malware-sample-library development by creating an account on GitHub.

3 votes and 0 comments so far on Reddit

Cybercriminals make use of old file types in brand-new ways in spam attachments, proving that they are regularly experimenting to evade spam filters.

1 vote and 0 comments so far on Reddit

Windows Defender Antivirus has hit a new milestone: the built-in antivirus capabilities on Windows can now run within a sandbox.

A Mac application named CoinTicker has been found installing two different backdoors, capable of keylogging, data theft, execution of arbitrary commands, and more.

I run social media for a small company that represents unions in the local area. Before, creating posts and Facebook ads have been easy. With [...]

Phrack staff website.

Cloud Shell GCP Google Cloud Security

By Ahmed Sherif & Francesco Soncina

List of example projects of how to use oat++ framework - oatpp/oatpp-examples

TL;DR: An undocumented API in Google home devices is easily exploitable. This command will reboot any on your local network: nmap –open -p 8008 192.168.1.0/24 | awk ‘/is up/ {print up};…

@font-face { font-family: "Harry"; src: url(/fonts/hp.ttf) format("truetype"); } I’ve been meaning to work on this little project for quite some time, but life got in the way and I was always t

After a recent roadmapping session, it seemed like a good idea to research network isolation in cloud environments. We chose to test AWS…

A simple python program that ping sweeps your network at a certain interval and logs new devices. - Th3J0kr/A-Simple-Rogue-Device-Scanner

The Emotet malware family just raised the stakes by adding email exfiltration to its arsenal, thereby escalating its capabilities to cyber espionage. While i...

A researcher has published a local privilege escalation exploit that fits in a single tweet for xorg-x11-server. Vendors are rolling out fixes and mitigation advice.

The networking implementation in iOS and macOS contained a heap buffer overflow, which could be triggered by sending a malicious packet to the device. No user interaction was required. This post explains how it was found using QL.