Police are using subtle psychological operations against ransomware gangs to sow distrust in their ranks—and trick them into emerging from the shadows.

A slightly more fun way to disable windows defender. (through the WSC api) - es3n1n/no-defender

Blends academic insights & accessible explanations on P vs NP, drawing from Lance Fortnow's works.

Gather round, gather round - it’s time for another blogpost tearing open an SSLVPN appliance and laying bare a recent in-the-wild exploited bug. This time, it is Check Point who is the focus of our penetrative gaze.

Check Point, for those unaware, is the…

Snaffler reimplementation in Python - https://github.com/SnaffCon/Snaffler - GitHub - asmtlab/snafflepy: Snaffler reimplementation in Python - https://github.com/SnaffCon/Snaffler

"Assembly Unleashed: A Hacker's Handbook" is a definitive resource tailored specifically for hackers and security researchers seeking to master the art of assembly programming language. Authored by seasoned practitioners in the field, this book offer...

Technical talk at Hack in the Box + Positive Hack Days 2024 joint security conference on 25th May 2024 in Bangkok, Thailand
Speaker: Alisa Esage

Zero Day Engineering Research & Courses
https://zerodayengineering.com

Follow us:
https://www.youtube.com/…

Scripts I use to deploy Havoc on Linode and setup categorization and SSL - smokeme/ansible-havoc

Fuzzing IoT Devices Using the Router TL-WR902AC as Example - otsmr/blackbox-fuzzing

AD Miner is an Active Directory audit tool that leverages cypher queries to crunch data from the #Bloodhound graph database to uncover security weaknesses - Mazars-Tech/AD_Miner

smbclient-ng, a fast and user friendly way to interact with SMB shares. - GitHub - p0dalirius/smbclient-ng: smbclient-ng, a fast and user friendly way to interact with SMB shares.

Docker has revolutionized the way software is developed, deployed, and managed by providing a lightweight, portable, and scalable platform for containerization.

Practical resources for offensive CI/CD security research. - TupleType/awesome-cicd-attacks

Key Takeaways In October 2023, we observed an intrusion that began with a spam campaign, distributing a forked IcedID loader. The threat actor used Impacket’s wmiexec and RDP to install Scree…