Forwarded from 1N73LL1G3NC3
KslKatz
Combining KslDump and GhostKatz to dump LSASS using no-vulnerability KslD.sys memory read to bypass PPL. Extracts MSV1_0 NT hashes and WDigest cleartext passwords (if enabled) from LSASS using a Microsoft-signed driver.
Combining KslDump and GhostKatz to dump LSASS using no-vulnerability KslD.sys memory read to bypass PPL. Extracts MSV1_0 NT hashes and WDigest cleartext passwords (if enabled) from LSASS using a Microsoft-signed driver.
π1
Forwarded from Cyber Detective
The OSINT Tools Library is new project from Osint Newsletter and Jake Creps
And this isnβt just a simple collection of tools. Each instrumentβs page contains the following sections: what does it do, how to use, cost, data processing, use in reporting.
https://tools.osintnewsletter.com/osint-tools/google-lens
And this isnβt just a simple collection of tools. Each instrumentβs page contains the following sections: what does it do, how to use, cost, data processing, use in reporting.
https://tools.osintnewsletter.com/osint-tools/google-lens
Forwarded from Cyber Detective
WindVector
Detailed info on winds and air currents. It features an online map, a 3D model of atmospheric layers, and the ability to view historical data for past dates. It is useful for investigating natural disasters and aviation accidents.
https://windvector.app/
#geoint
Detailed info on winds and air currents. It features an online map, a 3D model of atmospheric layers, and the ability to view historical data for past dates. It is useful for investigating natural disasters and aviation accidents.
https://windvector.app/
#geoint
Forwarded from Turan Security
Kiberxavfsizlik bo'yicha seminar-trening!
O'zbekiston Respublikasi Prezidentining yoshlar bilan uchrashuvida belgilangan vazifalar doirasida Muhammad al-Xorazmiy nomidagi Toshkent axborot texnologiyalari universiteti talabalarining kiberxavfsizlik sohasidagi amaliy bilim va koβnikmalarini oshirish maqsadida sohadagi yetakchi kompaniya mutaxassislari bilan seminar-trening tashkil etildi.
Tadbirda kompaniyamiz vakillari ham oβzlarining amaliy tajribalari va bilimlari bilan oβrtoqlashdilar.
Akmaljon Sodiqov - Turan Security asoschisi:
π CNA nima? Kiberxavfsizlikda o'qib pul ishlash mumkinmi?
Yoldoshali Esonaliyev - Team Lead:
π Web ilovalar xavfsizligi.
Abdumutal Abdumutalov - Team Lead:
π Android ilovalari xavfsizligida statik tahlil usullari.
Seminar yakunida universitet professor-oβqituvchilari va xodimlari bilan hamkorlikni yanada kengaytirish boβyicha kelishuvga erishildi.
@turansecurity | www.turansec.uz | info@turansec.uz
O'zbekiston Respublikasi Prezidentining yoshlar bilan uchrashuvida belgilangan vazifalar doirasida Muhammad al-Xorazmiy nomidagi Toshkent axborot texnologiyalari universiteti talabalarining kiberxavfsizlik sohasidagi amaliy bilim va koβnikmalarini oshirish maqsadida sohadagi yetakchi kompaniya mutaxassislari bilan seminar-trening tashkil etildi.
Tadbirda kompaniyamiz vakillari ham oβzlarining amaliy tajribalari va bilimlari bilan oβrtoqlashdilar.
Akmaljon Sodiqov - Turan Security asoschisi:
π CNA nima? Kiberxavfsizlikda o'qib pul ishlash mumkinmi?
Yoldoshali Esonaliyev - Team Lead:
π Web ilovalar xavfsizligi.
Abdumutal Abdumutalov - Team Lead:
π Android ilovalari xavfsizligida statik tahlil usullari.
Seminar yakunida universitet professor-oβqituvchilari va xodimlari bilan hamkorlikni yanada kengaytirish boβyicha kelishuvga erishildi.
@turansecurity | www.turansec.uz | info@turansec.uz
π3π€2
https://github.com/shuvonsec/claude-bug-bounty
How It Works
How It Works
YOU
|
βββββββΌββββββ
β Claude β βββ Burp MCP (sees your traffic)
β Code β βββ HackerOne MCP (program intel)
βββββββ¬ββββββ
|
βββββββββββββββββΌββββββββββββββββ
| | |
βββββββΌββββββ ββββββββΌβββββββ ββββββΌβββββ
β Recon β β Hunt β β Report β
β Agent β β Engine β β Writer β
βββββββ¬ββββββ ββββββββ¬βββββββ ββββββ¬βββββ
| | |
subfinder scope check H1/Bugcrowd
httpx vuln test Intigriti
katana validate Immunefi
nuclei chain AβBβC CVSS 3.1
| | |
βββββββΌββββββββββββββββΌββββββββββββββββΌββββββ
β Hunt Memory β
β journal Β· patterns Β· audit Β· rate limit β
GitHub
GitHub - shuvonsec/claude-bug-bounty: AI-powered bug bounty hunting from your terminal - recon, 20 vuln classes, autonomous huntingβ¦
AI-powered bug bounty hunting from your terminal - recon, 20 vuln classes, autonomous hunting, and report generation. All inside Claude Code. - shuvonsec/claude-bug-bounty
New Dark Web Marketplace βThreat Marketβ Observed
A newly surfaced onion marketplace dubbed Threat Market is gaining attention in underground forums.
Key offerings advertised:
β’ Access & databases
β’ Logs and stolen data
β’ RaaS (Ransomware-as-a-Service)
β’ Stealers, RATs, exploits
β’ Crypto tools, proxies, and bypass services
The platform appears structured with region-based targeting and a wide range of cybercrime services.
β οΈ As always, extreme caution β links and claims are unverified and may pose risks.
Source: DailyDarkWeb
A newly surfaced onion marketplace dubbed Threat Market is gaining attention in underground forums.
Key offerings advertised:
β’ Access & databases
β’ Logs and stolen data
β’ RaaS (Ransomware-as-a-Service)
β’ Stealers, RATs, exploits
β’ Crypto tools, proxies, and bypass services
The platform appears structured with region-based targeting and a wide range of cybercrime services.
β οΈ As always, extreme caution β links and claims are unverified and may pose risks.
Source: DailyDarkWeb