Red Team

Kerberos Username Enumeration: Detection and Mitigation Strategies for Enterprise Security Teams

Blue-Team

Kerberos Username Enumeration: Detection and Mitigation Strategies for Enterprise Security Teams

Kerberos pre-authentication brute-force attacks pose a significant risk to Active Directory environments, enabling attackers to identify valid...

Active Directory Security: Mitigating Risks from Pre-Windows 2000 Compatibility Weaknesses

Blue-Team

Active Directory Security: Mitigating Risks from Pre-Windows 2000 Compatibility Weaknesses

Legacy configurations in Active Directory (AD) often introduce security vulnerabilities, and one of the most persistent risks...

Shadow Credentials Attack: Exploiting Active Directory for Stealthy Privilege Escalation

Blue-Team

Shadow Credentials Attack: Exploiting Active Directory for Stealthy Privilege Escalation

A Shadow Credentials attack is an advanced exploitation technique targeting Active Directory Certificate Services (AD CS), enabling...

0ktapus Phishing Campaign: How MFA Spoofing Compromised 130+ Organizations

APT-News

0ktapus Phishing Campaign: How MFA Spoofing Compromised 130+ Organizations

A sophisticated phishing campaign dubbed “0ktapus” successfully bypassed multi-factor authentication (MFA) protections to compromise over 130 organizations,...

GhostPack: Red Team Tactics for Active Directory Exploitation and Defense

Red-Team

GhostPack: Red Team Tactics for Active Directory Exploitation and Defense

Active Directory (AD) remains a prime target for attackers due to its central role in enterprise authentication...

TCP Stream Analysis with Tcpick: A Security Professional’s Guide to PCAP Forensics

Blue-Team

TCP Stream Analysis with Tcpick: A Security Professional’s Guide to PCAP Forensics

Tcpick provides security teams with specialized capabilities for reconstructing and analyzing TCP streams from packet captures. This...

ASTROLOCKER Ransomware: Technical Analysis of a Mount Locker Affiliate Strain

Malware Analysis

ASTROLOCKER Ransomware: Technical Analysis of a Mount Locker Affiliate Strain

Ransom.Win32.ASTROLOCKER.A represents a lesser-known but technically sophisticated ransomware strain with potential ties to the Mount Locker operation....

RedLine Stealer Malware: Analyzing the MSIL.YXBDM Variant’s Data Theft Capabilities

Malware Analysis

RedLine Stealer Malware: Analyzing the MSIL.YXBDM Variant’s Data Theft Capabilities

TrojanSpy.MSIL.REDLINESTEALER.YXBDM represents a sophisticated information-stealing malware targeting Windows systems, first identified by Trend Micro researchers in April...

RedLine Stealer Malware: Analyzing the Persistent Data-Theft Threat Targeting Credentials

Malware Analysis

RedLine Stealer Malware: Analyzing the Persistent Data-Theft Threat Targeting Credentials

TrojanSpy.MSIL.REDLINESTEALER.YXBDN represents a sophisticated Windows-based information stealer with demonstrated capabilities in credential harvesting across multiple applications. First...

Trojan.W97M.EMOTET.SMI: Analyzing the Persistent Emotet Threat Targeting Windows Systems

Malware Analysis

Trojan.W97M.EMOTET.SMI: Analyzing the Persistent Emotet Threat Targeting Windows Systems

Trojan.W97M.EMOTET.SMI is a variant of the notorious Emotet malware, primarily spread through malicious Microsoft Office documents. Despite...

MITRE ATT&CK 2024 Results: Ransomware & macOS Threats Dominate Enterprise Security

Threat Intelligence

MITRE ATT&CK 2024 Results: Ransomware & macOS Threats Dominate Enterprise Security

The 2024 MITRE ATT&CK® Evaluations for Enterprise reveal critical insights into ransomware and macOS threats, with vendors...

Extrude: Open-Source Binary Analysis Tool for Security Teams

News

Extrude: Open-Source Binary Analysis Tool for Security Teams

Security teams now have access to a powerful new open-source tool for analyzing binary security posture. Extrude...

Ashok OSINT Reconnaissance Tool: The Swiss Army Knife for Security Professionals

Security Tools & Research

Ashok OSINT Reconnaissance Tool: The Swiss Army Knife for Security Professionals

Ashok has emerged as a powerful open-source OSINT reconnaissance tool that consolidates multiple information-gathering capabilities into a...

Imperius: Exposing Hidden Linux Kernel Rootkits for Security Teams

Red-Team

Imperius: Exposing Hidden Linux Kernel Rootkits for Security Teams

A new tool called Imperius has emerged, designed to detect and expose Linux Kernel Module (LKM) rootkits...

Internal and External Penetration Testing: A Comprehensive Approach to Enterprise Security

News

Internal and External Penetration Testing: A Comprehensive Approach to Enterprise Security

Internal and external penetration testing (pentesting) are critical components for evaluating an organization’s security posture. These simulated...

Red Team Simulations and Physical Pentesting: Strengthening Organizational Resilience

Red-Team

Red Team Simulations and Physical Pentesting: Strengthening Organizational Resilience

In an era of evolving cyber threats, organizations are adopting realistic methods to test their defenses. Red...

Global CrowdStrike Outage Update: Recovery in Sight, Vigilance Still Required

Blue-Team
Threat Intelligence

Global CrowdStrike Outage Update: Recovery in Sight, Vigilance Still Required

The global outage caused by a faulty update from CrowdStrike has led to significant disruptions for organizations...

Dutch Devices Part of Chinese Botnet: A Deep Dive into the Cybersecurity Threat

APT-News
Threat Intelligence

Dutch Devices Part of Chinese Botnet: A Deep Dive into the Cybersecurity Threat

The National Cyber Security Centre (NCSC) and the Digital Trust Center (DTC) have recently issued a warning...

Malicious Macros in Microsoft Office: Updated Guidance to Mitigate Risks

Blue-Team
Exploitation

Malicious Macros in Microsoft Office: Updated Guidance to Mitigate Risks

TL;DR Malicious macros remain a significant threat, with Microsoft Office being a common attack vector. Updated guidance...

NCSC Warns of Cryptojacking: How Malicious Software is Exploiting Devices for Illicit Cryptocurrency Mining

Blue-Team
Exploitation

NCSC Warns of Cryptojacking: How Malicious Software is Exploiting Devices for Illicit Cryptocurrency Mining

The National Cyber Security Centre (NCSC) has issued a warning about the increasing use of malicious software...

Posts pagination

Previous 1 … 11 12 13 14 15 Next

Red Team

Kerberos Username Enumeration: Detection and Mitigation Strategies for Enterprise Security Teams

Active Directory Security: Mitigating Risks from Pre-Windows 2000 Compatibility Weaknesses

Shadow Credentials Attack: Exploiting Active Directory for Stealthy Privilege Escalation

0ktapus Phishing Campaign: How MFA Spoofing Compromised 130+ Organizations

GhostPack: Red Team Tactics for Active Directory Exploitation and Defense

TCP Stream Analysis with Tcpick: A Security Professional’s Guide to PCAP Forensics

ASTROLOCKER Ransomware: Technical Analysis of a Mount Locker Affiliate Strain

RedLine Stealer Malware: Analyzing the MSIL.YXBDM Variant’s Data Theft Capabilities

RedLine Stealer Malware: Analyzing the Persistent Data-Theft Threat Targeting Credentials

Trojan.W97M.EMOTET.SMI: Analyzing the Persistent Emotet Threat Targeting Windows Systems

MITRE ATT&CK 2024 Results: Ransomware & macOS Threats Dominate Enterprise Security

Extrude: Open-Source Binary Analysis Tool for Security Teams

Ashok OSINT Reconnaissance Tool: The Swiss Army Knife for Security Professionals

Imperius: Exposing Hidden Linux Kernel Rootkits for Security Teams

Internal and External Penetration Testing: A Comprehensive Approach to Enterprise Security

Red Team Simulations and Physical Pentesting: Strengthening Organizational Resilience

Global CrowdStrike Outage Update: Recovery in Sight, Vigilance Still Required

Dutch Devices Part of Chinese Botnet: A Deep Dive into the Cybersecurity Threat

Malicious Macros in Microsoft Office: Updated Guidance to Mitigate Risks

You may have missed

Google Play Store to Implement Battery Performance Policy for Android Apps

ClickFix Malware Campaigns Resurrect Decades-Old Finger Protocol for Command Retrieval

North Korean IT Worker Scheme: A Technical Analysis of Infiltration and Fraud

Digital Passport Integration in Mobile Wallets: A Security Analysis