For Educational Purposes Only! Intended for Hackers Penetration testers. Issue The algorithm HS256 uses the secret key to sign and verify each message. The...

Nowadays, logs collection for security monitoring is about indexing, searching and datalakes; this is why at NVISO we use Elasticsearch for our threat hunting activities. Collecting, aggregating an…

At BlackHat Asia we released Evil Clippy, a tool which assists red teamers and security testers in creating malicious MS Office documents. Amongst others, Evil Clippy can hide VBA macros, stomp VBA code (via p-code) and confuse popular macro analysis tools.…

0 votes and 0 comments so far on Reddit

We wrote a cryptography library entirely in PHP to make your WordPress site secure against supply-chain attacks.

Two days ago, May 5 of the year 2019 we saw a peculiar BGP outage, affecting autonomous systems in the customer cone of one very specific AS with the number 721...

Random CSGO stuff. Contribute to kkthxbye-code/csgo_bugs development by creating an account on GitHub.

command="/usr/local/bin/honeykey kulinacs@honeypot",restrict ssh-rsa AAAAB3NzaCB6iakD kulinacs@honeypot

HostHunter a recon tool for discovering hostnames using OSINT techniques. - SpiderLabs/HostHunter

Ransomware is not a new form of attack, but GandCrab has upgraded it to be more dynamic and harder to resolve.

Phrack staff website.

Just Another Linux Enumeration Script: A Bash noscript for locally enumerating a compromised Linux box - itsKindred/jalesc

Today, my aunt Sue did a google search for “ebay” and got this… See the ad for ebay at the top of the results? Not particularly interesting, right?…

0 votes and 12 comments so far on Reddit

I am releasing a paper that describes a new variation of a man-in-the-middle (MITM) technique which, under certain circumstances, allows to permanently hijack browsers encrypted HTTP communication channel flow and compromise its confidentiality and integrity.

When I

Posted in r/pentest by u/cook_log • 0 points and 21 comments