More than 1,000 malware packages found in NPM repository
https://github.blog/2022-02-01-top-100-npm-package-maintainers-require-2fa-additional-security
Zoom For You — SEO Poisoning to Distribute BATLOADER and Atera Agent
https://www.mandiant.com/resources/seo-poisoning-batloader-atera
https://github.blog/2022-02-01-top-100-npm-package-maintainers-require-2fa-additional-security
Zoom For You — SEO Poisoning to Distribute BATLOADER and Atera Agent
https://www.mandiant.com/resources/seo-poisoning-batloader-atera
Arid Viper APT targets Palestine with new wave of politically themed phishing attacks, malware
https://blog.talosintelligence.com/2022/02/arid-viper-targets-palestine.html?m=1
CoinStomp Malware Family Targets Asian Cloud Service Providers
https://www.cadosecurity.com/coinstomp-malware-family-targets-asian-cloud-service-providers
https://blog.talosintelligence.com/2022/02/arid-viper-targets-palestine.html?m=1
CoinStomp Malware Family Targets Asian Cloud Service Providers
https://www.cadosecurity.com/coinstomp-malware-family-targets-asian-cloud-service-providers
Crime and NFTs: Chainalysis Detects Significant Wash Trading and Some Money Laundering In this Emerging Asset Class
https://blog.chainalysis.com/reports/2022-crypto-crime-report-preview-nft-wash-trading-money-laundering
https://blog.chainalysis.com/reports/2022-crypto-crime-report-preview-nft-wash-trading-money-laundering
CVE-2021-44142: Details on A Samba Code Execution Bug Demonstrated AT Pwn2Own Austin
https://www.zerodayinitiative.com/blog/2022/2/1/cve-2021-44142-details-on-a-samba-code-execution-bug-demonstrated-at-pwn2own-austin
What is CVE-2021-44142 and How to Fix It
https://www.trendmicro.com/en_us/research/22/b/the-samba-vulnerability-what-is-cve-2021-44142-and-how-to-fix-it
https://www.zerodayinitiative.com/blog/2022/2/1/cve-2021-44142-details-on-a-samba-code-execution-bug-demonstrated-at-pwn2own-austin
What is CVE-2021-44142 and How to Fix It
https://www.trendmicro.com/en_us/research/22/b/the-samba-vulnerability-what-is-cve-2021-44142-and-how-to-fix-it
50 lines of Bash to bring a Wordle fan out of their shell
https://gist.github.com/huytd/6a1a6a7b34a0d0abcac00b47e3d01513
https://gist.github.com/huytd/6a1a6a7b34a0d0abcac00b47e3d01513
EvilSelenium is a tool that weaponizes Selenium to #attack_Chrome https://github.com/mrd0x/EvilSelenium
Identify privilege escalation paths within and across different clouds
https://github.com/carlospolop/PurplePanda
You Can Now Automatically Launch
Profiles as Administrator
Windows Terminal 1.13 Release ♻️
https://devblogs.microsoft.com/commandline/windows-terminal-preview-1-13-release
download
https://github.com/microsoft/terminal/releases
Profiles as Administrator
Windows Terminal 1.13 Release ♻️
https://devblogs.microsoft.com/commandline/windows-terminal-preview-1-13-release
download
https://github.com/microsoft/terminal/releases
OSINT tools catalog
https://github.com/HowToFind-bot/osint-tools
A collection of hacks and one-off scripts
https://github.com/tomnomnom/hacks
Tools, scripts and tips useful during Penetration Testing engagements
https://github.com/maldevel/PenTestKit
All in One Cracker Tools for Hacking
https://github.com/cracker911181/Cracker-Tool
A web hacking toolkit Docker image with GUI applications support
https://github.com/signedsecurity/web-hacking-toolkit
https://github.com/HowToFind-bot/osint-tools
A collection of hacks and one-off scripts
https://github.com/tomnomnom/hacks
Tools, scripts and tips useful during Penetration Testing engagements
https://github.com/maldevel/PenTestKit
All in One Cracker Tools for Hacking
https://github.com/cracker911181/Cracker-Tool
A web hacking toolkit Docker image with GUI applications support
https://github.com/signedsecurity/web-hacking-toolkit
Get fresh Syscalls from a fresh ntdll.dll copy
https://github.com/S3cur3Th1sSh1t/NimGetSyscallStub
Hellsgate + Halosgate/Tartarosgate Ensures that all systemcalls go through ntdll.dll
https://github.com/thefLink/RecycledGate
https://github.com/S3cur3Th1sSh1t/NimGetSyscallStub
Hellsgate + Halosgate/Tartarosgate Ensures that all systemcalls go through ntdll.dll
https://github.com/thefLink/RecycledGate
Stop Defender Service using C# via Token Impersonation
https://github.com/dosxuz/DefenderStop
A simple program to monitor your network/data usage. Made for the average windows user
https://github.com/Ashfaaq18/OpenNetMeter
https://github.com/dosxuz/DefenderStop
A simple program to monitor your network/data usage. Made for the average windows user
https://github.com/Ashfaaq18/OpenNetMeter
An architecture-agnostic ELF file flattener for shellcode
https://github.com/gamozolabs/elfloader
Process & Memory Hacking Library (Windows/Linux/BSD/Android) (C/C++/Python) (x86/x64, ARM/ARM64)
https://github.com/rdbo/libmem
https://github.com/gamozolabs/elfloader
Process & Memory Hacking Library (Windows/Linux/BSD/Android) (C/C++/Python) (x86/x64, ARM/ARM64)
https://github.com/rdbo/libmem
Encrypted PE Loader Generator
https://github.com/frkngksl/Huan
KaynLdr is a Reflective Loader written in C/ASM
https://github.com/Cracked5pider/KaynLdr
Evasive shellcode loader for bypassing event-based injection detection
https://github.com/xuanxuan0/DripLoader
https://github.com/frkngksl/Huan
KaynLdr is a Reflective Loader written in C/ASM
https://github.com/Cracked5pider/KaynLdr
Evasive shellcode loader for bypassing event-based injection detection
https://github.com/xuanxuan0/DripLoader
Red Team Tools keylogger free version, x86 & x64, bypass AV and CobaltStrike version 4.4
password: HelloWorld
https://github.com/angels520/redteamT00ls
password: HelloWorld
https://github.com/angels520/redteamT00ls
Bug Bounty Automation With Python.pdf
1.1 MB
Cheatsheet for Penetest and Red Team
https://github.com/Ignitetechnologies/bugbounty
A list of resources for those interested in getting started in bug bounties
https://github.com/nahamsec/Resources-for-Beginner-Bug-Bounty-Hunters
https://github.com/Ignitetechnologies/bugbounty
A list of resources for those interested in getting started in bug bounties
https://github.com/nahamsec/Resources-for-Beginner-Bug-Bounty-Hunters
php kill-free webshell
https://github.com/xzajyjs/Anti-Virus-PHP
Phpstudy RCE EXP
https://github.com/xzajyjs/phpstudy_Backdoor-EXP
https://github.com/xzajyjs/Anti-Virus-PHP
Phpstudy RCE EXP
https://github.com/xzajyjs/phpstudy_Backdoor-EXP
CLI program to analyze DNS queries
https://github.com/jvns/tiny-resolver
Website FingerPrint Recognition
https://github.com/hakuQAQ/Holmes
https://github.com/jvns/tiny-resolver
Website FingerPrint Recognition
https://github.com/hakuQAQ/Holmes
Active Directory & Red-Team Cheat-Sheet in constant expansion
https://github.com/RistBS/Awesome-RedTeam-Cheatsheet
A collection of awesome one-liner scripts for bug bounty hunting
https://github.com/litt1eb0yy/One-Liner-Scripts
https://github.com/RistBS/Awesome-RedTeam-Cheatsheet
A collection of awesome one-liner scripts for bug bounty hunting
https://github.com/litt1eb0yy/One-Liner-Scripts
C# implementation of the token privilege removal flaw discovered by: GabrielLandau / Elastic
https://github.com/MartinIngesen/TokenStomp
https://github.com/MartinIngesen/TokenStomp