Darknet – Page 39 – WindowsTechs.com

Serious ImageMagick Zero-Day Vulnerabilities – ImageTragick?

Posted on May 4, 2016 by Darknet

So another vulnerability with a name and a logo – ImageTragick? At least this time it’s pretty dangerous, a bunch of ImageMagick Zero-Day vulnerabilities have been announced including one that can leave you susceptible to remote code execution. It’s pretty widely used software too and very public, if you use an app online that lets […]

The…

Read the full post at darknet.org.uk

Continue reading Serious ImageMagick Zero-Day Vulnerabilities – ImageTragick?→

MISP – Malware Information Sharing Platform

Posted on May 3, 2016 by Darknet

MISP, Malware Information Sharing Platform and Threat Sharing, is an open source software solution for collecting, storing, distributing and sharing cyber security indicators and threat about cyber security incidents analysis and malware analysis. MISP… Continue reading MISP – Malware Information Sharing Platform→

Empire – PowerShell Post-Exploitation Agent

Posted on April 29, 2016 by Darknet

Empire is a pure PowerShell post-exploitation agent built on cryptographically secure communications and a flexible architecture. Empire implements the ability to run PowerShell agents without needing powershell.exe, rapidly deployable post-exploitatio… Continue reading Empire – PowerShell Post-Exploitation Agent→

BeautifulPeople.com Leak Exposes 1.1M Extremely Private Records

Posted on April 28, 2016 by Darknet

So another data breach, and no surprise here, but another dating site. This time the BeautifulPeople.com Leak has exposed 1.1 million customer records, including 15 million private messages sent between users. Not so private now is it. And no surprise … Continue reading BeautifulPeople.com Leak Exposes 1.1M Extremely Private Records→

Google Rapid Response (GRR ) – Remote Live Forensics For Incident Response

Posted on April 25, 2016 by Darknet

GRR Rapid Response is an incident response framework focused on remote live forensics. It based on client server architecture, so there’s an agent which is installed on target systems and a Python server infrastructure that can manage and communicate with the agents. There are agents for Windows, Linux and Mac OS X environments. Overview To…

Read the full post at darknet.org.uk

Continue reading Google Rapid Response (GRR ) – Remote Live Forensics For Incident Response→

SamParser – Parse SAM Registry Hives With Python

Posted on April 22, 2016 by Darknet

SamParser is a Python script used to parse SAM registry hives for both users and groups, it’s only dependency is python-registry. This would be a great little script to write into another toolset or larger attack pattern, especially if you’re already using a Python kit or framework. Dependencies [crayon-571e6ad8ed756919757720/] Usage…

Read the full post at darknet.org.uk

Continue reading SamParser – Parse SAM Registry Hives With Python→

Apple Will Not Patch Windows QuickTime Vulnerabilities

Posted on April 20, 2016 by Darknet

Much like Adobe Flash, QuickTime from Apple is a bit of a relic some pretty serious, remote code execution type Windows QuickTime Vulnerabilities were recently discovered by Trend Micro. Apple has officially stated that they won’t be fixing them and the official line on this, is to uninstall QuickTime. I guess a lot of people […]

The post…

Read the full post at darknet.org.uk

Continue reading Apple Will Not Patch Windows QuickTime Vulnerabilities→

Recon-ng – Web Reconnaissance Framework

Posted on April 18, 2016 by Darknet

Recon-ng is a full-featured Web Reconnaissance Framework written in Python. Complete with independent modules, database interaction, interactive help, and command completion – Recon-ng provides a powerful environment in which open source web-based reconnaissance can be conducted quickly and thoroughly. Recon-ng has a look and feel and even command…

Read the full post at darknet.org.uk

Continue reading Recon-ng – Web Reconnaissance Framework→

IPGeoLocation – Retrieve IP Geolocation Information

Posted on April 15, 2016 by Darknet

IPGeoLocation is a Python based tool designed to retrieve IP geolocation information from the ip-api service, useful for building into your security tools. Do be aware that as this tool is leveraging a 3rd party API, you will be limited to 150 requests a minute. Whilst that is quite a lot, just be wary of […]

The post IPGeoLocation –…

Read the full post at darknet.org.uk

Continue reading IPGeoLocation – Retrieve IP Geolocation Information→

BADLOCK – Are ‘Branded’ Exploits Going Too Far?

Posted on April 14, 2016 by Darknet

So there’s been hype about this big exploit coming, for over a month, before anything was released. It had a name, a website and a logo – and it was called Badlock. And now it’s out, and it’s more like Sadlock – really a local network DoS against DCE/RPC services on Windows and Linux with […]

The post BADLOCK – Are…

Read the full post at darknet.org.uk

Continue reading BADLOCK – Are ‘Branded’ Exploits Going Too Far?→