Nitrux 3.8 Released With Linux Kernel 6.12 And MESA 3D Graphics Library
Nitrux 3.8, codenamed "db", has been released with significant performance improvements and new features. This update brings several key enhancements to the immutable, systemd-free Linux distribution. System Updates Kernel: Nitrux 3.8 now runs on Linux kernel 6.12.1-1 (Liquorix). Graphics: The MESA 3D Graphics Library has been updated to version 24.2.8. Browser: Firefox has been upgraded to version 133.0. System Tools: The Nitrux Update Tool...
atomicgen.io : Simplifying Atomic Red Team Test Creation
Welcome to atomicgen.io, a simple tool designed to create Atomic Red Team tests with ease. This platform provides a user-friendly interface and customizable options to streamline security testing. Key Highlights User-Friendly Interface: Easily navigate and quickly generate results with an intuitive design. Browser Access: Use directly from the browser without requiring separate installations. Automatic YAML Formatting: YAML files are automatically formatted to simplify...
RevC2 : Websocket Setup Secure Testing Guide
This Python script emulates the websocket server side of RevC2 by sending the type you select and rendering the response. Please make sure you are running RevC2 in a Sandbox VM. Usage Use the following steps to use the websocket server side of RevC2 Edit the hosts file located at C:WindowsSystem32driversetc by adding the below line so the malicious traffic will be...
Linux 6.13-rc1 Released : What’s New!
Linux kernel 6.13-rc1 has been released by Linus Torvalds, marking the end of the two-week merge window and the beginning of the stabilization phase for this kernel version. This release brings a multitude of new features and improvements across various subsystems Key Features And Improvements CPU And Hardware Support AMD Enhancements: Introduction of the AMD 3D V-Cache Optimizer driver for Ryzen X3D CPUs Support...
A Nice Day Phishing : Exploring Portable Python For Covert Execution
Scripting Interpreters are agreat method to achieve Command or Shellcode Execution, but one of many problems is that they: Are not Native to Windows Not always easy to use Limited to Command or Shellcode execution, some have both!! We requiere these to not be installed on the Users workstation Python Python is a strong language to demonstrate the capabilities of these interpreters the following screenshot...
ScriptSentry : Uncovering And Mitigating Risks In Logon Scripts
ScriptSentry finds misconfigured and dangerous logon scripts. ScriptSentry is a powerful tool designed to detect misconfigured and hazardous logon scripts that can pose significant security risks. It identifies unsafe permissions, plaintext credentials, and other vulnerabilities in UNC paths, GPOs, and NETLOGON/SYSVOL shares. By highlighting these issues, ScriptSentry empowers organizations to secure their logon processes effectively. Usage # Run ScriptSentry and display...
SilentLoad : Stealth Driver Loading For Secure Engagements
SilentLoad is a powerful exploitation tool designed to load drivers stealthily by directly setting up service registry keys via NtLoadDriver. This method minimizes detection risks, making it ideal for BYOVD (Bring Your Own Vulnerable Driver) scenarios where traditional service creation triggers alerts. SilentLoad does not drop the driver itself, allowing users to maintain control over deployment. Its lightweight design...
Elementary OS 8 With New Secure Session Privacy Consent
Elementary OS 8 has been released with a significant focus on privacy, security, and user consent. The new Secure Session feature is a cornerstone of this update, designed to ensure that applications respect user privacy and require explicit consent for various actions Secure Session The Secure Session in elementary OS 8 is powered by Wayland, a modern and secure method for...
Ulfberht : Advanced Techniques For Shellcode Loading And Evasion
Ulfberht is a sophisticated shellcode loader designed to enhance operational security and evasion capabilities in cyber operations. Equipped with features like indirect syscalls, module stomping, and encrypted payloads, it minimizes the digital footprint on targeted systems. This article delves into Ulfberht's functionality, offering a step-by-step guide on its deployment and highlighting strategies to avoid detection. Ideal for security professionals...
TrailShark : Revolutionizing AWS CloudTrail Analysis With Wireshark Integration
.webp "TrailShark : Revolutionizing AWS CloudTrail Analysis With Wireshark Integration")
The TrailShark Capture Utility seamlessly integrates with Wireshark, facilitating the capture of AWS CloudTrail logs directly into Wireshark for near-real-time analysis. This tool can be used for debugging AWS API calls and played a pivotal role in our "Bucket Monopoly Research" project. By leveraging this utility, we were able to understand the internal API calls made by AWS, leading...
