yaracroft @venom@nanao.cybtex.fr

🛠 Bitlocker key recovery with MemProcFS #tools #infosec #informatique

https://github.com/ufrisk/MemProcFS/wiki/FS_BitLocker

msImpersonate is a Python-native user impersonation tool that is capable of impersonating local or network user accounts with valid credentials. #tools #python #infosec #informatique

https://github.com/dievus/msImpersonate

🏴‍☠️ ransomwatch

onion-routing ransomware blog indexer & aggregator

#tools #tor #cyber #threats #monitoring #ransomware #infosec #informatique

https://github.com/thetanz/ransomwatch

🇫🇷 EC2 : compétition e-sport de hacking éthique.

⌚ 8 & 9 juin 2022 à Lille

#france #challenge #cyber #esport #ctf #infosec #gaming #informatique

https://european-cybercup.com

🔧 PassTheCert

A small PoC tool that allows authenticating against an LDAP/S server with a certificate.

#tools #infosec #informatique

🔧 pyCobaltHound

An aggressor script extension for Cobalt Strike which aims to provide a deep integration between Cobalt Strike and Bloodhound

#tools #python #infosec #informatique

https://github.com/NVISOsecurity/pyCobaltHound

🔧 SMB Session Spoofing

Spoof SMB user sessions drawing attackers to a honey workstation.

#tools #infosec #informatique

https://github.com/Sq00ky/SMB-Session-Spoofing

Analysis of these samples indicates that the developer has access to REvil's source code, reinforcing the likelihood that the threat group has reemerged. #revil #ransomware #cyber #malware #infosec #threats #informatique

https://www.secureworks.com/blog/revil-development-adds-confidence-about-gold-southfield-reemergence

Earlier this week, a 🇺🇦 Ukrainian security researcher leaked almost two years' worth of internal chat logs from Conti, one of the more rapacious and ruthless ransomware gangs in operation today.

The Conti group's chats reveal a great deal about its internal structure and hierarchy.

#cyber #ransomware #conti #infosec #threats #informatique

https://krebsonsecurity.com/2022/03/conti-ransomware-group-diaries-part-ii-the-office/

🔧 dumpulator is an easy-to-use library for emulating code in minidump files. #python #tools #debugger #windows #infosec #informatique #informatique

https://github.com/mrexodia/dumpulator

🚩 Wild West Hackin Fest (wildwesthackinfest.com)

Statikk Shiv

Leveraging Electron (electronjs.org) Applications For Post-Exploitation

• 🎬 Demo 1
• 🎬 Demo 2
• 🎬 Demo 3
• 🎬 Demo 4
• 🎬 Demo 5
• 🎬 Demo 6

#infosec #cyber #vuln #application #software #threats #informatique

📰 https://raw.githubusercontent.com/FuzzySecurity/WWHF-WayWest-2022/main/WWHF_StatikkShiv_v1.0.pdf

🇫🇷 Botconf 2022

🎧 How Formbook Became Xloader And Migrated To Macos
🎧 Smoke And Fire - Smokeloader Historical Changes And Trends
🎧 Pareto: Streaming Mimicry
🎧 Warning! Botnet Is In Your House
🎧 Detecting Emerging Malware On Cloud Before Virustotal Can See It
🎧 Yara: Down The Rabbit Hole Without Slowing Down
🎧 A Fresh Look Into The Underground Card Shop Ecosystem
🎧 Into The Silent Night
🎧 Evolution Of The Sysrv Mining Botnet
🎧 How To Eavesdrop On Winnti In A Live Environment Using Virtual Machine Introspection
🎧 Fingerprinting Bot Shops: Venues, Stealers, Sellers
🎧 Operation Gamblingpuppet: Analysis Of A Multiplatform Campaign Targeting Online Gambling Customers
🎧 Insights And Experiences From Monitoring Multiple P2p Botnets
🎧 Private Clubs For Hackers: How Private Forums Shape The Malware Market
🎧 RTM: Sink-Holing The Botnet
🎧 Jumping The Air-Gap: 15 Years Of Nation-State Efforts
🎧 Detecting & Disrupting Compromised Devices Based On Their Communication Patterns To Legitimate Web
🎧 Proxychaos: A Year-In-Review Of Microsoft Exchange Exploitation
🎧 Suricata (In Preview For A Workshop In 2023)
🎧 Privateloader - The Malware Behind A Havoc-Wreaking Pay-Per-Install Service
🎧 Qakbot Malware Family Evolution

#france #cyber #botnet #defense #malware #infosec #threats #informatique

Un chercheur en sécurité français ( soufiane ) a découvert et diffusé des captures d'écran en lien avec les activités de #Haron.

Par le passé, nous avons également été en mesure d'obtenir des informations via mod_status d'Apache dès la mise en ligne de l'ex-httpd. Et d’ailleurs, nous n'étions pas les seuls a l'avoir remarqué.

Maladresse, leurre, .. ?

#infosec #ransomware

🔧 Olly 64-bit assembler-level debugger #tools #debugger #assembler #windows #infosec #informatique

https://ollydbg.de/odbg64.zip

🕵️‍♂️ Twitter IOC Hunter #infosec #malware #tools #informatique

http://tweettioc.com/

Silent no more : Exposing a campaign that intimidated researchers and journalists. #cyber #infosec #press #digital #journalism #security #ddos #threats #presse #informatique

https://www.databreaches.net/silent-no-more-exposing-a-campaign-that-intimidated-researchers-and-journalists/

Panneau de contrôle SystemBC

#malware #botnet #infosec

Crédit: 0xrb

Cyber-Detect, la startup qui sait comment se ridiculiser sur le quotidien régional Vosges Matin ?

#infosec #startup #lamers

https://www.vosgesmatin.fr/science-et-technologie/2022/03/16/la-start-up-cyber-detect-peut-contrer-une-cyberattaque-russe

🇨🇦 AgileBits Inc, the maker of 1Password has increased its top bug bounty reward to $1,000,000 #infosec #informatique

https://venturebeat.com/2022/03/10/1password-launches-the-largest-financial-incentive-program-for-ethical-hackers/

« Je refuse de quitter une société dans laquelle je m'épanouis, qui me traite bien à tous les égards et fournit des services irréprochables simplement parce qu'elle a eu le malheur d'être fondée en #Russie. » ( Ivan Kwiatkowski, citoyen français, employé par Kaspersky au sein du GReAT ) #russia #software #business #infosec #informatique

https://blog.kwiatkowski.fr/?q=fr/kaspersky-statement