yaracroft

AI-powered voice cloning tools has provided cybercriminals with a tool to execute virtual kidnapping scams

trendmicro.com/vinfo/id/securi

0
yaracroft

🛠 yara-ttd

Use YARA rules on Time Traveil Debugging traces. The idea behind yara-ttd is to use the trace files recorded by TTD with yara itself to defeat packers

github.com/airbus-cert/yara-tt

0
yaracroft

🛠 nbutools

Tools for offensive security of NetBackup infrastructures

Avec du scapy dedans :blobthinksmart:

github.com/airbus-seclab/nbuto

0
yaracroft

While collecting the evidence in 2023 we (Marco Lux & Pedro Umbelino) recognized the ESXi attack by a random group. We decided it is time to publish our results which cumulated in CVE-2023-29552 ( via John Kristoff )

Interestingly, search engines like @shodan, still missing SLP in their collection, which is a pity.

curesec.com/blog/article/CVE-2

1
yaracroft

A better way to attack Microsoft Azure AD with temporary access passes

Microsoft's TAPs were designed to simplify passwordless authentication, but they can also be used by attackers to bypass MFA.

Even if an administrator goes in and deletes the TAP, an attacker could still maintain access to the user account. In the process of the OAuth On-Behalf-Of (OBO) flow, we have somehow removed the correlation between the Temporary Access Passes (TAP) and the refresh token, a process I (Daniel Heinsen, SpecterOps) am calling « OBO persistence ».

Granted, in this scenario, you only have access to APIs that don't require admin consent, but that's enough to read the users email, Teams messages, OneNote notes, and calendar. In order to revoke this access, an administrator will need to revoke all the user refresh tokens.

posts.specterops.io/id-tap-tha

🛠 obo-wash

0
yaracroft

🛠 Ex22

cyfirma.com/outofband/exfiltra

0
yaracroft

🇵🇱 Artemis

This tool is built to find website misconfigurations and vulnerabilities on a large scale

cert.pl/en/posts/2023/02/artem

0
yaracroft

🛠

  • wav2bin.ps1
  • bin2wav.ps1

github.com/gtworek/PSBits/tree

0
yaracroft

🛠 LeakSiteAnalytics

Data visualization of ransomware leak site data

github.com/colincowie/LeakSite

0
yaracroft

Lexmark

A small archive with exploit, writeup &

github.com/blasty/lexmark

0
yaracroft

🛠 yaraQA

YARA rule Analyzer to improve rule quality and performance. Find and report issues to the author or maintainer of a YARA rule set

github.com/Neo23x0/yaraQA

0
yaracroft

🛠 Volatility v2.4.0

github.com/volatilityfoundatio

0
yaracroft

🛠 IDA 8.2

This online tool will be freely accessible to all IDA users and features a list of safe, up-to-date plugins

plugins.hex-rays.com

0
yaracroft

🛠 gitea-extract-users

Python script to dump all users of a remote GiTea instance, unauthenticated or authenticated

github.com/p0dalirius/gitea-ex

0
yaracroft

☣️ VTI Cheat Sheet

Virus Total will continuously update the VTI Cheat Sheet to keep it as fresh and useful as possible. Happy hunting!

blog.virustotal.com/2022/12/vt

0
yaracroft

IMSI-catcher - DragonOS FocalX GR-GSM Scan / GSM Evil 2 

0
yaracroft

🛠 VX-API v2.0.402

  • New string hashing methods
  • Experimental malicious functionality: silently install Chrome plugins, process injection via fibers, LOLBIN execution
  • New helper functions
  • Various bug fixes and enhancements

github.com/vxunderground/VX-AP

0
yaracroft

Android malware analysis by @cryptax

raw.githubusercontent.com/cryp

0
yaracroft

🛠 CrackMapExec

v5.4.0 is now publicly available to everyone on Github or Kali Linux (kali.org)

wiki.porchetta.industries/news

0
yaracroft

🛠 AES-Flipper

github.com/Vozec/AES-Flipper

0
Plus anciens

yaracroft recommande :

informatique

2,96K

threats

2,03K

ransomware

1,24K

france

589

vuln

270

europe

125

tools

124

infosec

61

phishing

48
nanao

Comme le soleil, les machines ne se couchent jamais.

Ressources

Développeurs

Qu’est-ce que Mastodon ?

nanao.cybtex.fr

Davantage…