Ransomware Tool Matrix: This repository lists tools used by ransomware gangs. Defenders can detect and block these commonly reused tools to stop intrusions.
https://github.com/BushidoUK/Ransomware-Tool-Matrix
7.5.2025 15:11Ransomware Tool Matrix: This repository lists tools used by ransomware gangs. Defenders can detect and block these commonly reused tools to...State-of-the-art phishing: MFA bypass by Jaeson Schultz @TalosSecurity
https://blog.talosintelligence.com/state-of-the-art-phishing-mfa-bypass/
5.5.2025 13:08State-of-the-art phishing: MFA bypass by Jaeson Schultz...ArgFuscator is an open-source web app that generates obfuscated command lines for common system tools. Great for testing your defenses against real-world attack techniques.
#infosec #pentesting #redteam #blueteam
31.3.2025 17:29ArgFuscator is an open-source web app that generates obfuscated command lines for common system tools. Great for testing your defenses...How well do you protect your privacy?
The Privacy Checkup helps you assess your online surveillance defenses and take steps to protect your data.
https://privacy-checkup.info (English, Deutsch, Español)
30.3.2025 14:01How well do you protect your privacy?The Privacy Checkup helps you assess your online surveillance defenses and take steps to protect your...A great read on the exploitation of VMware vulnerabilities - from both attacker and defender perspectives - plus practical recommendations to strengthen your security posture.
"Breaking the Virtual Barrier: From Web-Shell to Ransomware"
29.3.2025 20:20A great read on the exploitation of VMware vulnerabilities - from both attacker and defender perspectives - plus practical recommendations...Eine kriminelle Organisation hinter mehr als 75.000 Fake-Shops, über 1 Mio. Bestellungen & mehr als $50M Schaden. Einblick in ihr ausgeklügeltes System & wie sie Käufer täuschen.
#38C3: "Fake-Shops von der Stange: BogusBazaar" mit @kaibiermann und @kantorkel.
https://media.ccc.de/v/38c3-fake-shops-von-der-stange-bogusbazaar
"Mastering Sysmon: Deploying, Configuring, and Fine-Tuning"
A free mini eBook for #DFIR professionals with practical steps to deploy, fine-tune, and start logging with Sysmon.
https://dfirinsights.com/2024/11/27/mastering-sysmon-e-book-release/
16.12.2024 11:16"Mastering Sysmon: Deploying, Configuring, and Fine-Tuning"A free mini eBook for #DFIR professionals with practical steps to...Carseat is a Python implementation of GhostPack's Seatbelt, a situational awareness tool for analyzing Windows security configurations.
https://github.com/0xthirteen/Carseat
9.12.2024 19:20Carseat is a Python implementation of GhostPack's Seatbelt, a situational awareness tool for analyzing Windows security...The fascinating security model of dark web marketplaces by @eb
https://boehs.org/node/dark-web-security
2.12.2024 20:39The fascinating security model of dark web marketplaces by @eb https://boehs.org/node/dark-web-security#infosecThat's a Cybersecurity Advisory worth reading, with many important points to note.
Enhancing Cyber Resilience: Insights from CISA Red Team Assessment of a US Critical Infrastructure Sector Organization
https://www.cisa.gov/news-events/cybersecurity-advisories/aa24-326a
LOLESXi features a comprehensive list of binaries/scripts natively available in VMware ESXi that adversaries have utilised in their operations.
https://lolesxi-project.github.io/LOLESXi/#
#infosec #pentesting #redteam #blueteam
8.11.2024 12:37LOLESXi features a comprehensive list of binaries/scripts natively available in VMware ESXi that adversaries have utilised in their...Phishing remains one of the most widespread cyberattacks - here are some tips on how to avoid falling victim!
5 Phishing Email Scams and How NOT To Fall For Them
https://www.huntress.com/blog/5-phishing-email-scams-and-how-not-to-fall-for-them
🚨 Exciting news for all hackers and tech enthusiasts! The #DEFCON32 talks are now available on YouTube! 🎉
https://youtube.com/playlist?list=PL9fPq3eQfaaB2scbXRczwvjVH0ckX4bwt
#infosec #pentesting #redteam #blueteam
18.10.2024 18:37🚨 Exciting news for all hackers and tech enthusiasts! The #DEFCON32 talks are now available on YouTube!...A tool that uses the Windows Filtering Platform (WFP) to block Endpoint Detection and Response (EDR) agents from reporting security events to the server.
https://github.com/netero1010/EDRSilencer
17.10.2024 17:32A tool that uses the Windows Filtering Platform (WFP) to block Endpoint Detection and Response (EDR) agents from reporting security events...Spannend & unterhaltsam: Die #BigBrotherAwards prämieren jedes Jahr die größten Datensünder in Wirtschaft & Politik!
BigBrotherAwards 2024: Preisträger, Bilder und Livestream unter https://bigbrotherawards.de/2024
Also available in English: https://bigbrotherawards.de/en/2024
17.10.2024 11:15Spannend & unterhaltsam: Die #BigBrotherAwards prämieren jedes Jahr die größten Datensünder in Wirtschaft &...Guidance on Detecting and Mitigating Active Directory Compromises
16.10.2024 18:18Guidance on Detecting and Mitigating Active Directory...Event Log Talks a Lot: Identifying Human-operated Ransomware through Windows Event Logs
https://blogs.jpcert.or.jp/en/2024/09/windows.html
15.10.2024 12:58Event Log Talks a Lot: Identifying Human-operated Ransomware through Windows Event...Active Directory Hardening Series - Part 5 - Enforcing LDAP Channel Binding
14.10.2024 12:16Active Directory Hardening Series - Part 5 - Enforcing LDAP Channel...SharpExclusionFinder: This C# tool finds Windows Defender folder exclusions using Windows Defender through its command-line tool (MpCmdRun.exe)
https://github.com/Friends-Security/SharpExclusionFinder
A blog explaining the technique utilised can be viewed here: https://blog.fndsec.net/2024/10/04/uncovering-exclusion-paths-in-microsoft-defender-a-security-research-insight
13.10.2024 19:04SharpExclusionFinder: This C# tool finds Windows Defender folder exclusions using Windows Defender through its command-line tool...ConPass: How to do password spraying while minimizing the risk of locking accounts.
Spray passwords, avoid lockouts
https://en.hackndo.com/password-spraying-lockout/
⬆️
⬇️