Over the last three months, our honeypots have detected DNS hijacking attacks targeting various types of consumer routers. All exploit attempts have originated from hosts on the network of Google Cloud Platform (AS15169). In this campaign, we've identified…

There is a considerable amount of confusion in the security testing industry regarding the differences between penetration testing and vulnerability scanning.

TL;DR We found a zero-day within a JavaScript template library called handlebars and used it to get Remote Code Execution in the Sh...

Wraps github api for openly available information about an organization, user, or repo - needmorecowbell/giggity

A detailed investigation into an IEncrypt ransomware attack, analysis of the decryption process and the decryptor. Also providing a safe to use version of Guardicore’s IEncrypt decryptor

internet monitoring osint tool for windows. Contribute to visualbasic6/chatter development by creating an account on GitHub.

Our discovery of two privilege escalation vulnerabilities in a driver highlights the strength of Microsoft Defender ATP’s sensors. These sensors expose anomalous behavior and give SecOps personnel the intelligence and tools to investigate threats, as we did.

Our discovery of two privilege escalation vulnerabilities in a driver highlights the strength of Microsoft Defender ATP’s sensors. These sensors expose anomalous behavior and give SecOps personnel the intelligence and tools to investigate threats, as we did.

PHP function tracker. Contribute to cyrus-and/fracker development by creating an account on GitHub.

Quick Summary Hey guys today Vault retired and here is my write-up about it. Vault was a fun box and it’s absolutely one of my favorites. Starting with an insecure file upload functionality to escaping from a host to another and getting a reverse shell with…

System Admins, here is a way to optimise your port scanning.

TL;DR: SharpExec is an offensive security C# tool designed to aid with lateral movement. While the techniques used are not groundbreaking ...

Discovering New And Open-Source Software.

Fast Multi-threaded FTP Scanner. GitHub Gist: instantly share code, notes, and snippets.

Anubis Anubis is my first case of complicated android malware and taught me so much about android malware. I want to share these learnings in this post. Anubis is almost one year old but its impact is

Writing and testing of an egg-hunter shellcode for Linux/x64

PowerShell based Active Directory Honey User Account Management with Universal Dashboards - leeberg/BlueHive

Reverse shell container for k8s deployments. Contribute to jmg87/redteam-gkpown development by creating an account on GitHub.

Funnel is a lightweight yara-based feed scraper. Contribute to needmorecowbell/Funnel development by creating an account on GitHub.

A curated list of important computer science multi-languages resources found on the Web. - the-akira/Computer_Science_Web_Resources