At BlackHat Asia we released Evil Clippy, a tool which assists red teamers and security testers in creating malicious MS Office documents. Amongst others, Evil Clippy can hide VBA macros, stomp VBA code (via p-code) and confuse popular macro analysis tools.…

0 votes and 0 comments so far on Reddit

We wrote a cryptography library entirely in PHP to make your WordPress site secure against supply-chain attacks.

Two days ago, May 5 of the year 2019 we saw a peculiar BGP outage, affecting autonomous systems in the customer cone of one very specific AS with the number 721...

Random CSGO stuff. Contribute to kkthxbye-code/csgo_bugs development by creating an account on GitHub.

command="/usr/local/bin/honeykey kulinacs@honeypot",restrict ssh-rsa AAAAB3NzaCB6iakD kulinacs@honeypot

HostHunter a recon tool for discovering hostnames using OSINT techniques. - SpiderLabs/HostHunter

Ransomware is not a new form of attack, but GandCrab has upgraded it to be more dynamic and harder to resolve.

Phrack staff website.

Just Another Linux Enumeration Script: A Bash noscript for locally enumerating a compromised Linux box - itsKindred/jalesc

Today, my aunt Sue did a google search for “ebay” and got this… See the ad for ebay at the top of the results? Not particularly interesting, right?…

0 votes and 12 comments so far on Reddit

I am releasing a paper that describes a new variation of a man-in-the-middle (MITM) technique which, under certain circumstances, allows to permanently hijack browsers encrypted HTTP communication channel flow and compromise its confidentiality and integrity.

When I

Posted in r/pentest by u/cook_log • 0 points and 21 comments

0 votes and 2 comments so far on Reddit

Posted by Jeff Vander Stoep, Android Security & Privacy Team and Chong Zhang, Android Media Team [Cross-posted from the Android Develo...

INFILTRATE 2020 will be held April 23/24, Miami Beach, Florida, infiltratecon.com