A week in security (September 28 – October 4)

~ Dade Murphy ~ Leave a comment

Malwarebytes Labs-- Last week on Malwarebytes Labs, we dug into what happens when card fraud comes calling, we gave a rundown on some novel ransomware attacks that took advantage of smart coffee makers, and we introduced VideoBytes, our new, monthly series in which we’ll provide video coverage of some of the cybersecurity world’s top stories. … Continue reading A week in security (September 28 – October 4)

Secure Your SaaS Apps With Security Posture Management Platform

~ Dade Murphy ~ Leave a comment

The Hacker News-- Image credit: Adaptive Shield As security professionals who have spent more than a few years in the industry, we know a good challenge when we see one. SaaS and cloud-based technologies are growing rapidly, offering organizations convenience and constant feature refreshes without the need to install and deploy software on-premises. However, even … Continue reading Secure Your SaaS Apps With Security Posture Management Platform

New Flaws in Top Antivirus software Could Make Computers More Vulnerable

~ Dade Murphy ~ Leave a comment

The Hacker News-- Cybersecurity researchers today disclosed details of security vulnerabilities found in popular antivirus solutions that could enable attackers to elevate their privileges, thereby helping malware sustain its foothold on the compromised systems. According to a report published by CyberArk Labs today and shared with The Hacker News, the high privileges often associated with … Continue reading New Flaws in Top Antivirus software Could Make Computers More Vulnerable

SCREEN_KILLER – Tool To Track Progress For Reporting (Capture Screenshot, Commands And Outputs) During Pentest Engagement And OSCP

~ Dade Murphy ~ Leave a comment

KitPloit - PenTest Tools!-- This script was to developed to capture screenshot during pentest engagment and OSCP. IMPORTANT: The screenshot feature is no longer allowed for exam but the terminal logging is allowed for exam. If you like the tool and for my personal motivation so as to develop other tools please a +1 star … Continue reading SCREEN_KILLER – Tool To Track Progress For Reporting (Capture Screenshot, Commands And Outputs) During Pentest Engagement And OSCP

Open Redirects & bypassing CSRF validations- Simplified

~ Dade Murphy ~ Leave a comment

InfoSec Write-ups - Medium-- Open Redirects are Unvalidated redirects and forwards that are possible when a web application accepts untrusted input that could cause the web application to redirect the request to a URL contained within untrusted input. By modifying untrusted URL input to a malicious site, an attacker may successfully launch a phishing scam … Continue reading Open Redirects & bypassing CSRF validations- Simplified

OFFPORT_KILLER – This Tool Aims At Automating The Identification Of Potential Service Running Behind Ports Identified Manually Either Through Manual Scan Or Services Running Locally

~ Dade Murphy ~ Leave a comment

KitPloit - PenTest Tools!-- #Manual Port Scanning #Enumerate Potential Service If you like the tool and for my personal motivation so as to develop other tools please a +1 star *INTRO This tool aims at automating the identification of potential service running behind ports identified manually or on services running locally only. The tool is … Continue reading OFFPORT_KILLER – This Tool Aims At Automating The Identification Of Potential Service Running Behind Ports Identified Manually Either Through Manual Scan Or Services Running Locally