SpyNote, also known as SpyMax and CypherRat, is a unique and effective Spyware which developed unique interest in banking users

This article talks about a vulnerability i have found in a library that almost every android application is based on, in a combination…

This blog post introduces iCDump, an new Objective-C class dump based on LLVM

RisePro is a new undocumented stealer. According to SEKOIA.IO analysts, it has similarities with PrivateLoader.

In this post I’ll exploit CVE-2022-20186, a vulnerability in the Arm Mali GPU kernel driver and use it to gain arbitrary kernel memory access from an untrusted app on a Pixel 6. This then allows me to gain root and disable SELinux. This vulnerability highlights…

SoftICE-like kernel debugger for Windows 11. Contribute to vitoplantamura/BugChecker development by creating an account on GitHub.

About The Project In December of 2022, a DLL Hijacking vulnerability with a CVSS score of 7.8 was reported in the Squirrel.Windows auto-install/update utility. This blog post will analyze the vulnerability, and the root cause of said issue with procmon.
Analyzing…

In late August 2022, we investigated an incident involving Ursnif malware, which resulted in Cobalt Strike being deployed. This was followed by the threat actors moving laterally throughout the environment using an admin account. The Ursnif malware family…

Learn how we discovered a critical vulnerability in Cacti with the help of SonarCloud.

Meddler-in-the-Middle (MitM) phishing attacks show how threat actors find ways to get around traditional defenses and advice.

See how attackers used compromised Jenkins plugins to attack the software supply chain and how to continuously detect vulnerable Jenkins plugins at scale.

Contribute to elttam/publications development by creating an account on GitHub.