Client-Side Exploits – WindowsTechs.com

Historical OSINT – International Institute For Counter-Terrorism Serving Malware – An Analysis

Posted on December 13, 2020 by Dancho Danchev

The International Institute For Counter-Terrorism is known to have served malicious software to its targeted user base back in 2013.In this post I’ll provide actionable intelligence behind the campaign and discuss in-depth the tactics technique and pro… Continue reading Historical OSINT – International Institute For Counter-Terrorism Serving Malware – An Analysis→

Exposing Modern Client-Side Exploits Serving Kits – An AV and Snort IDS MD5 List Compilation

Posted on December 12, 2020 by Dancho Danchev

Dear blog readers,It’s been a while since I’ve last posted a quality update and I’ve decided to share with everyone the results of a recent initiative where I aim to provide actionable threat intelligence on some of the key client-side exploits serving… Continue reading Exposing Modern Client-Side Exploits Serving Kits – An AV and Snort IDS MD5 List Compilation→

Pay-Per-Exploit Acquisition Vulnerability Programs – Pros and cons?

Posted on October 22, 2018 by Dancho Danchev

As
ZERODIUM starts paying premium rewards to security researchers to
acquire their previously unreported zero-day exploits affecting
multiple operating systems software and/or devices a logical
question emerges in the context of the program’s usefulnes… Continue reading Pay-Per-Exploit Acquisition Vulnerability Programs – Pros and cons?→

HIstorical OSINT – Malicious Economies of Scale – The Emergence of Efficient Platforms for Exploitation – 2007

Posted on October 22, 2018 by Dancho Danchev

Dear blog readers it’s been several years since I last posted a quality update following my 2010 disappearance. As it’s been quite a significant period of time since I last posted a quality update I feel it’s about time I post an quality update by deta… Continue reading HIstorical OSINT – Malicious Economies of Scale – The Emergence of Efficient Platforms for Exploitation – 2007→

Historical OSINT – Hundreds of Bogus Bebo Accounts Serving Malware

Posted on October 20, 2018 by Dancho Danchev

It’s 2010 and I’ve recently intercepted a wide-spread Bebo malicious malware-serving campaign successfully enticing users into interacting with the fraudulent and malicious content potentially compromising the confidentiality availability and integrity… Continue reading Historical OSINT – Hundreds of Bogus Bebo Accounts Serving Malware→

Historical OSINT – Chinese Government Sites Serving Malware

Posted on October 20, 2018 by Dancho Danchev

It’s 2008 and I’m stumbling upon yet another decent portfolio of compromised malware-serving Chinese government Web sites. In this post I’ll discuss in-depth the campaign and provide actionable intelligence on the infrastructure behind it.

Compromised… Continue reading Historical OSINT – Chinese Government Sites Serving Malware→