Powershell

YourCyanide, new and sophisticated ransomware variant that integrates documents into PasteBin, Discord and Microsoft Office

On: June 2, 2022

Specialists at Trend Micro analyzed a set of CMD-based ransomware samples that appear to have advanced capabilities for stealing sensitive information, bypassing remote desktop connections, and a feature to spreadRead More →

Zero-day vulnerability in Microsoft Office Pro Plus, Office 2013, Office 2016, and Office 2021 allows remote network hacking with just a single click

On: May 30, 2022

In: Vulnerabilities

A few days ago, the security researcher known as “nao_sec” reported the detection of a file specially crafted Word document to exploit a zero-day vulnerability in Microsoft Office that wouldRead More →

How to do local privilege escalation attacks on Windows to brute force the local administrator account?

On: April 25, 2022

In: Tutorials

Privilege escalation attacks pose a severe cyber security risk to all kinds of systems in public and private organizations. In these attacks, threat actors exploit vulnerabilities or design flaws inRead More →

APT group TA2541 has been targeting thousands of organizations across aviation, aerospace, transportation, manufacturing, and defense industries worldwide

On: February 15, 2022

In: Malware

A report by security firm Proofpoint details the finding of a hacking campaign employing phishing and social engineering tactics aimed at distributing a dangerous variant of remote access Trojan (RAT)Read More →

New malware can infect Windows and Linux devices; 70 different VirusTotal antvirus can’t detect it

On: September 20, 2021

In: Data Security

The Windows Subsystem for Linux (WSL) is a companion feature released by Microsoft in 2016 to run a Linux image in a near-native environment on Windows, allowing administrators to useRead More →

Epsilon Network: ransomware that encrypts Exchange servers using a known vulnerability. Update now

On: June 3, 2021

In: Malware

Specialists from cybersecurity firm Sophos have revealed the detection of a new variant of ransomware hidden in a set of PowerShell scripts that abuse flaws present in unpatched Microsoft ExchangeRead More →

The most popular hacking methods to compromise Microsoft AMSI

On: June 2, 2021

In: Technology Talk

A group of researchers has produced a report in reference to the most popular tactics employed by hacking groups to evade the Antimalware Scan Interface (AMSI) security tool. Developed byRead More →

TOP 5 Tools Used By Cyber Criminals Recently

On: May 3, 2019

In: Data Security, Important, Tutorials

Cyber crime is taking next level of steps for taking control on digital world. Research done by ethical hacking researcher of International Institute of Cyber Security (IICS) shows increase inRead More →

Advanced tool to launch powershell payload remotely

On: May 10, 2018

In: Data Security

Information security professionals explain that Harness is the remote access payload with the ability to provide a remote interactive PowerShell interface from a Windows system to almost any TCP socket. TheRead More →

How to find Vulnerabilities in Active Directory Settings?

On: April 26, 2018

In: Vulnerabilities

An information security expert explains that Grouper is an unstable PowerShell module designed for use by pentesters and redteamers that filters the XML output of the Get-GPOReport cmdlet and identifies all theRead More →

Powershell

YourCyanide, new and sophisticated ransomware variant that integrates documents into PasteBin, Discord and Microsoft Office

Zero-day vulnerability in Microsoft Office Pro Plus, Office 2013, Office 2016, and Office 2021 allows remote network hacking with just a single click

How to do local privilege escalation attacks on Windows to brute force the local administrator account?

New malware can infect Windows and Linux devices; 70 different VirusTotal antvirus can’t detect it

Epsilon Network: ransomware that encrypts Exchange servers using a known vulnerability. Update now

The most popular hacking methods to compromise Microsoft AMSI

TOP 5 Tools Used By Cyber Criminals Recently

Advanced tool to launch powershell payload remotely

How to find Vulnerabilities in Active Directory Settings?

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022

How Chinese APT hackers stole Lockheed Martin F-35 fighter plane to develop its own J-20 stealth fighter aircraft [VIDEO]

Nigeria spends more than any other African country in spying its citizens

How to Hack Bank’s Voice Recognition System – Voice Biometrics with DeepFake Voice Cloning

Step by step process of hacking ATMs using black box. ATM jackpotting

Hackers could take control of Lexmark printers or see what you print if you don’t apply this patch

2 Critical vulnerabilities in Argo CD allow complete take over of your Kubernetes

Realtek SDK Vulnerability exploited to hack into 190 models of IoT devices from 66 manufacturers

4 important vulnerabilities patched in VMware vRealize Log Insight

Critical AWS CloudTrail vulnerability allowed attackers to circumvent CloudTrail & GuardDuty logging

Top 8 Free Tools for security testing and audit of your Kubernetes cluster in 2022

3 Techniques that allow bypassing phishing emails through Cisco Secure Email Gateway and are being actively used by ransomware gangs

RedEye: A great opensource cyber security Log Visualization tool for Red and Blue teams

How to easily spoof mac address automatically and be more anonymous

How to Use Advanced Network Intelligence Toolkit for Pentesting: badKarma

Tutorial for pentesting Android apps using the free ZANTI toolkit

5 best free API security testing tools. Protecting your cloud CI/CD Pipeline

How to find zero-day vulnerabilities with Fuzz Faster U Fool (ffuf): Detailed free fuzzing tool tutorial

How to do professional vulnerability assessment on your website for free using Juice Shop?

How to do local privilege escalation attacks on Windows to brute force the local administrator account?

Prilex PoS malware modified to steal data from NFC cards

Realtek SDK Vulnerability exploited to hack into 190 models of IoT devices from 66 manufacturers

New kind of phishing attacks are exploiting Microsoft OneNote to bypass disabled macro

Ransomware gangs are exploiting Fortinet Devices vulnerabilities. Patch these high-severity command injection flaws

Azov Ransomware can modify its own code to delete every single file on a machine with a single click

Cyber Security Channel

Nigeria spends more than any other African country in spying its citizens

How to Hack Bank’s Voice Recognition System – Voice Biometrics with DeepFake Voice Cloning

Step by step process of hacking ATMs using black box. ATM jackpotting