.webp "Arena-Hard-Auto : Advancing LLM Evaluation With Style Control Integration")
.webp "How To Install/Run – Streamlining OSINT Workflows For Enhanced Capabilities")
GBounty : Streamlining Vulnerability Scanning For Web Applications
Multi-step website vulnerability scanner designed to help pentesters and bug hunters identify potential vulnerabilities in web applications. We have a dedicated repository that houses various type of web vulnerability profiles contributed by security researchers and engineers. Getting started Install GBounty To start using GBounty, you can either install it using Go, or download one of the pre-compiled binaries from GitHub Releases. Installation With Go GBounty...
Chemonics Data Breach Exposed 260,000+ Individuals Personal nformation
Chemonics International, a major international development company and contractor for USAID, has recently disclosed a significant data breach affecting over 260,000 individuals. The incident, which was discovered on December 15, 2023, involved unauthorized access to the company's computer network over an extended period. Timeline And Scope Of The Breach The unauthorized access to Chemonics' systems began on May 30, 2023, and...
SkyScalpel : The Art Of Cloud Policy Obfuscation And Detection
SkyScalpel is an open-source framework for JSON policy parsing, obfuscation, deobfuscation, and detection in cloud environments. It provides flexible and highly configurable mechanisms to handle JSON-level obfuscation, IAM policy transformations, and the detection of evasive obfuscation techniques in cloud security contexts. Built on a custom C# JSON tokenizer and syntax tree parser, SkyScalpel offers unique insights into how obfuscated cloud...
go-lsass : Remote LSASS Memory Dumping via SMB
Package go-lsass is a tool built to dump the memory of the LSASS process remotely by uploading a local LSASS dumper, executing it as a service and then retrieve the dump file using SMB. It is built on top of the library go-smb and is designed to primarily work with the LSASS dumper. NOTE that the LSASS dumper utility is...
RequestShield : A Free Open-Source Solution For Real-Time HTTP Security Threat Analysis
RequestShield is a 100% Free and OpenSource tool designed to analyze HTTP access.logs and identify suspicious HTTP requests and potential security threats. It uses factors like geolocation, abuse history, request volume, and suspicious request paths to assign a risk score to each IP, providing actionable insights for security monitoring. Purpose RequestShield helps security teams detect and mitigate threats by analyzing access...
Nitrux 3.8 Released With Linux Kernel 6.12 And MESA 3D Graphics Library
Nitrux 3.8, codenamed "db", has been released with significant performance improvements and new features. This update brings several key enhancements to the immutable, systemd-free Linux distribution. System Updates Kernel: Nitrux 3.8 now runs on Linux kernel 6.12.1-1 (Liquorix). Graphics: The MESA 3D Graphics Library has been updated to version 24.2.8. Browser: Firefox has been upgraded to version 133.0. System Tools: The Nitrux Update Tool...
atomicgen.io : Simplifying Atomic Red Team Test Creation
Welcome to atomicgen.io, a simple tool designed to create Atomic Red Team tests with ease. This platform provides a user-friendly interface and customizable options to streamline security testing. Key Highlights User-Friendly Interface: Easily navigate and quickly generate results with an intuitive design. Browser Access: Use directly from the browser without requiring separate installations. Automatic YAML Formatting: YAML files are automatically formatted to simplify...
RevC2 : Websocket Setup Secure Testing Guide
This Python script emulates the websocket server side of RevC2 by sending the type you select and rendering the response. Please make sure you are running RevC2 in a Sandbox VM. Usage Use the following steps to use the websocket server side of RevC2 Edit the hosts file located at C:WindowsSystem32driversetc by adding the below line so the malicious traffic will be...
Linux 6.13-rc1 Released : What’s New!
Linux kernel 6.13-rc1 has been released by Linus Torvalds, marking the end of the two-week merge window and the beginning of the stabilization phase for this kernel version. This release brings a multitude of new features and improvements across various subsystems Key Features And Improvements CPU And Hardware Support AMD Enhancements: Introduction of the AMD 3D V-Cache Optimizer driver for Ryzen X3D CPUs Support...
A Nice Day Phishing : Exploring Portable Python For Covert Execution
Scripting Interpreters are agreat method to achieve Command or Shellcode Execution, but one of many problems is that they: Are not Native to Windows Not always easy to use Limited to Command or Shellcode execution, some have both!! We requiere these to not be installed on the Users workstation Python Python is a strong language to demonstrate the capabilities of these interpreters the following screenshot...
