Collaborate Disseminate
mimikittenz is a post-exploitation powershell tool that utilizes the Windows function ReadProcessMemory() in order to extract plain-text passwords from various target processes. The aim of mimikittenz is to provide user-level (non-admin privileged) sen… Continue reading mimikittenz – Extract Plain-Text Passwords From Memory
So if you are a Yahoo user (which most of us probably have been at some point) you will be aware of the Yahoo Hack – with 200 Million e-mail addresses being up for sale on the black market it seems up to 500 million have been compromised in one of the biggest hacks yet. […]
The post Massive Yahoo Hack – 500 Million Accounts…
Read the full post at darknet.org.uk
Continue reading Massive Yahoo Hack – 500 Million Accounts Compromised
The big buzz on my Twitter this week was about the Tesla Hack carried out by a Chinese crew called Keen Security Lab. It’s no big surprise even though Tesla is known for being fairly security concious and proactive about it. With it being a connected car, that’s pretty important that any remote control capabilities […]
The post Tesla Hack…
Read the full post at darknet.org.uk
Continue reading Tesla Hack – Remote Access Whilst Parked or Driving
PunkSPIDER is a global-reaching web vulnerability search engine aimed at web applications. The goal is to allow the user to determine vulnerabilities in websites across the Internet quickly, easily, and intuitively. Please use PunkSPIDER responsibly. I… Continue reading PunkSPIDER – A Web Vulnerability Search Engine
So was Dropbox Hacked? There was some rumours going around last week after it sent out a password reset e-mail warning to all users. It seems like it’s limited to users who were active in 2012 and the only ones who would be in trouble are as usual, those who haven’t changed their password since […]
The post Dropbox Hacked – 68 Million…
Read the full post at darknet.org.uk
Continue reading Dropbox Hacked – 68 Million User Accounts Compromised
PowerShell Runspace Portable Post Exploitation Tool aimed at making Penetration Testing with PowerShell “easier”. PowerOPS is an application written in C# that does not rely on powershell.exe but runs PowerShell commands and functions within a powershell runspace environment (.NET). It intends to include multiple offensive PowerShell modules to…
Read the full post at darknet.org.uk
Continue reading PowerOPS – PowerShell Runspace Portable Post Exploitation Tool
Right now there’s a ton of people talking about the NSA Hack, the severity, the repercussions and the value of what has been leaked. It seems the 0-day exploits in the cache of stolen aren’t super recent ones, as it appears they are from 2013. But even so, some of them haven’t been patched as […]
The post Shadow Brokers NSA Hack Leaks 0-day…
Read the full post at darknet.org.uk
Continue reading Shadow Brokers NSA Hack Leaks 0-day Vulnerabilities
Pompem is an open source exploit & vulnerability finder tool, designed to automate the search for Exploits and Vulnerability in the most important databases. Developed in Python, has a system of advanced search, that help the work of pen-testers and ethical hackers. In the current version, it performs searches in PacketStorm security,…
Read the full post at darknet.org.uk
It seems this year bug bounties are getting really serious, especially on the secondary market involving exploit trading firms, not direct to the software producer or owner. $500,000 isn’t chump change and would be a good year for a small security team, especially living somewhere with a weaker currency. Even for a solo security researcher…
Read the full post at darknet.org.uk
Continue reading Bug Bounties Reaching $500,000 For iOS Exploits
So there’s been a lot of news lately about the Telegram hack and how 15 million accounts were compromised, which is not technically true. There’s 2 vectors of attack at play here, both of which regard Iranian users, but are not connected (other than the attackers probably being the same group). So the two attacks […]
The post Telegram Hack…
Read the full post at darknet.org.uk
Continue reading Telegram Hack – Possible Nation State Attack By Iran