v6.4.1 – Essential Security Patch For dnSpyEx To Thwart Arbitrary Code Execution Threat
In a decisive move to fortify software security, ElektroKill announced the release of dnSpyEx v6.4.1 on September 8, 2023.
This critical update addresses a...
Todesstern – The Advanced Mutator Engine For Injection Vulnerability Discovery
Todesstern (in english: Death Star) is a simple mutator engine which focuses on finding unknown classes of injection vulnerabilities.
The script generates tons of...
msdocviewer – Streamlining Win32 API And Driver Documentation Viewing – A Comprehensive Guide
msdocviewer is a simple tool for viewing Microsoft's win32 API and driver technical documentation. msdocviewer consists of two parts.
The first is a parser (run_me_first.py) that...
GTPDOOR Scan – The Multithreaded Tool For Detecting GTPDOOR Malware Infections
A multithreaded network scanner to scan for hosts infected with the GTPDOOR malware. Technical writeup here.
Three detection methods supported:
ACK scan (detects GTPDOOR v2)
TCP connect scan (detects...
v3.2.0 – Transforming Security Protocols With Fuzzing, LDAP Enhancements, And Robust Fixes
In the latest iteration of our cutting-edge software, v3.2.0 emerges as a significant leap forward, embodying the relentless pursuit of excellence in cybersecurity.
This...
Awesome Web Security – The Ultimate Guide To Mastering Techniques, Tools, And Resources
Needless to say, most websites suffer from various types of bugs which may eventually lead to vulnerabilities.
Why would this happen so often? There...
CVE-2024-2432 Palo Alto GlobalProtect EoP : Unveiling The Path To Privilege Escalation
On Windows system, it was found that GlobalProtect (App version 6.1.1-5 and 6.2.0-89) was vulnerable to arbitrary file delete with elevated privileges by symbolic...
Awesome-OpSec : Empowering Digital Safety Through Feminist Cybersecurity And Operational Security
A Feminist Guide to Digital Defense serves as a comprehensive resource for enhancing online safety and privacy through a feminist lens.
This guide compiles...
CVE-2024-25153 : A Detailed Guide To Remote Code Execution In Fortra File Catalyst Workflow
This is a proof of concept for CVE-2024-25153, a Remote Code Execution vulnerability in Fortra FileCatalyst Workflow 5.x, before 5.1.6 Build 114.
Full technical details...
Kimsuky PowerShell Backdoor – A Comprehensive Analysis Of Its Commands And Operations
In the shadowy realms of cyber espionage, the Kimsuky PowerShell Backdoor stands as a sophisticated tool designed for stealthy infiltrations and data exfiltration.
This...