Using the InterPlanetary File System For Offensive Operations
Introduction In this blog post, I intend to provide some insight into using the InterPlanetary File ...
Read More
Leveraging Disk Imaging Tools to Deliver RATs
This year we observed a notable uptick in disc imaging software (like .ISO) being used as a ...
Read MoreAnyone Can Check for Magecart with Just the Browser
In the past, there have been plenty of articles and blog posts recommending the use of Content ...
Read MoreTyposquatting in Python Repositories
Python's popularity is amazing and constantly growing. For the first time, Python has overtaken ...
Read MorePatch Tuesday, December 2019
December's Patch Tuesday is upon us, and, as in years gone by, it's a rather light month. All told ...
Read MoreSCshell: Fileless Lateral Movement Using Service Manager
During red team engagements, lateral movement in a network is crucial. In addition, as a critical ...
Read MoreCVE-2019-1429: (Another) Microsoft Internet Explorer 0-Day
November’s Patch Tuesday from Microsoft included a patch for yet another Internet Explorer 0-day, ...
Read MoreIntroducing Password Cracking Manager: CrackQ
Today we are releasing CrackQ, a queuing system to manage password cracking that I've been working ...
Read MoreTime Windows for Penetration Testing
Often when penetration tests are scheduled, it will be requested that testing occurs during ...
Read MoreCVE-2019-15652: SatLink VSAT Vulnerabilities
Back in May of this year, I discovered a few vulnerabilities in the SatLink 2000 VSAT modem, which ...
Read MoreFake Windows Update Spam Leads to Cyborg Ransomware and Its Builder
Recently, fake Microsoft Windows Update emails were spammed with the following subject lines: ...
Read MoreWindows Debugging & Exploiting Part 2 - WinDBG 101
Introduction Hello again! After our previous post about the environment setup, now it is time to ...
Read MoreFingerprinting FreeBSD OS Versions using OpenSSH
In the past, we’ve described how to fingerprint Ubuntu OS Version using OpenSSH. This time, I’ll ...
Read MoreA Call for Cooler Heads
One of the unfortunate parts of a business like ours is when disputes arise from penetration ...
Read MoreDouble Loaded Zip File Delivers Nanocore
Most malware sent via emails is packaged in archives such as ZIP, RAR, and 7z (7-Zip). ...
Read MoreWindows Debugging & Exploiting Part 1 - Environment Setup
Introduction In this blog series, I will try to set some base knowledge for Windows system ...
Read MoreMessing with Azorult Part 2: Command and Control
As we mentioned in our earlier blog, Azorult is very popular in the underground hacking forum. ...
Read MoreMessing with Azorult Part 1: Malware Breakdown
In this blog series, we dive into an information stealing Trojan called Azorult that we analyzed ...
Read MorePatch Tuesday, October 2019
Microsoft’s security update for the month of October is one of the lightest patch Tuesdays of the ...
Read MoreChaining Low/Info Level Vulnerabilities for Pwnage
Chained Critical Everyone gets critical. It’s part of our vernacular: critically injured, critical ...
Read MoreDocuments with IRM Password Protection Lead to Remcos RAT
Documents attached to emails are commonly used as the initial vector to deliver malware into a ...
Read MoreDigital Canaries in a Coal Mine: Detecting Enumeration with DNS and AD
Introduction A fundamental part of any network is the Domain Name Service (DNS). Adversaries will ...
Read MoreTracking the Chameleon Spam Campaign
In this blog, we draw attention to a persistent high-volume spam campaign that has been very ...
Read MoreMicrosoft Internet Explorer Remote Code Execution 0-Day (CVE-2019-1367)
Microsoft released an out-of-band patch for a 0-day vulnerability in Internet Explorer yesterday. ...
Read MoreGetting Started With Azure DevOps
Recently, I set out to find a simple solution to manage the building of all my offensive C# tools ...
Read MorePatch Tuesday, September 2019
For September 2019, Microsoft is releasing 78 CVEs. Of these CVEs, 17 are rated "Critical", 60 ...
Read MoreMultiple Vulnerabilities in Comba and D-Link Routers
Overview There are five new credential leaking vulnerabilities discovered and disclosed by Simon ...
Read More