In this article, DomainTools researchers provide a look at the three most prolific ransomware families and their toolsets.

By Sergi Martinez This post analyses CVE-2020-9715, a use-after-free vulnerability affecting several versions of the Adobe Acrobat and Adobe Acrobat Reader products. The vulnerability was discovered by Mark Vincent Yason, who reported it to the Zero Day Initiative…

FRIDA-DEXDump support fuzzy search broken header dex, fix struct data of dex-header, compatible with all android version(frida supported).

Multiple vulnerabilities have been found in Apache Dubbo enabling attackers to compromise and run arbitrary system commands on both Dubbo consumers and providers.

So recently a challenge(Layers) from 3kCTF featured control flow flattening using OLLVM. Although I did know about control flow flattening I hadn’t encountered it personally. And as I’ve been experime

TL;DR Hi, this is Debugger ready to debug Mobile Application. In this blog I will share how I have intercepted the traffic of Flutter based iOS application for dynamic analysis, Also we will see the root detection and SSL verification bypass method I have…

Sqlvet performs static analysis on raw SQL queries in your Go codebase to surface potential runtime errors at build time.

Introduction: ImageMagick is a hugely popular open source software that is used in lot of systems around the world. It is available for the Windows,

Aon’s Cyber Solutions discovered a security vulnerability affecting over 20 Mitsubishi Electric Air Conditioner Control Systems leading to information disclosure and/or denial of service via unauthenticated XML External Entity Injection (XXE). For a complete…

The Less.js library supports plugins which can be included directly in the Less code from a remote source using the @plugin syntax ...

Don’t let cyber threats get the best of you. Read our post, Snake Keylogger's Many Skins: Analysing Code Reuse Among Infostealers, to learn more about cyber threats and cyber security.

A blog post on hacking the $6 M6 fitness tracker.

Disecting PktMon.exe utility and building our own sniffer based on it

This blog was written by Vallabh Chole & Oliver Devane Over the years, the cybersecurity industry has seen many threats get taken down, such as the