A spear-phishing campaign targeting Indian government entities aims to deploy an updated version of a backdoor called ReverseRAT. Cybersecurity firm ThreatMon attributed the activity to a threat actor tracked as SideCopy. SideCopy is a threat group of Pakistani origin that shares overlaps with another actor called Transparent Tribe. It is so named for mimicking the […]
A few days ago Spain police sighted a new type of scam that has been called Reverse QR Scam. A fraudulent technique with which scammers steal money through this code making their victims believe that they are actually charging a certain amount. The police had detained a scammer who had applied this methodology. It is […]
Information security specialists report the detection of a critical vulnerability in Ghidra, a free and open-source reverse engineering tool developed by the U.S. National Security Agency (NSA), broadly used by ethical hacking experts. Tracked as CVE-2021-44832, the flaw exists due to incorrect input validation in the application, which would allow remote users with permission to […]
System logs analysis is one of the most useful hacking tasks for researchers and specialists in digital forensics and reverse engineering, so a tool that facilitates this process can be fundamental in an investigation. This time, digital forensics experts from the International Institute of Cyber Security (IICS) will show you RegRipper, a tool for automatic […]
A threat actor with suspected ties to Pakistan has been striking government and energy organizations in the South and Central Asia regions to deploy a remote access trojan on compromised Windows systems, according to new research. “Most of the organizations that exhibited signs of compromise were in India, and a small number were in Afghanistan,” […]
Reverse engineering is one of the most important methods for research and hacking, as it allows users to determine which are the components of antivirus tools, malware variants or datasets, as well as discover how these elements interact with each other and how they were integrated into a single development. For malware reverse engineering professionals, […]
Certified Malware Analyst: In 2020, sophisticated Cyber attacks keep on increasing by APT threats that target most of the enterprise-level networks and individuals. Preventing Enterprise networks from advanced level threats is challenging tasks for malware analysts and threat researchers to break down the complete malware samples. There is a huge skill gap to approach, analysis […]
A Hex Editor for Reverse Engineers, Programmers and people that value their eye sight when working at 3 AM. Features Featureful hex view Byte patching Patch management Copy bytes as feature Bytes Hex string C, C++, C#, Rust, Python, Java & JavaScript array ASCII-Art hex view HTML self contained div String and hex search […]
Graphical tool for reverse engineering of Angular projects. It allows you to navigate in the structure of your application and observe the relationship between the different modules, providers, and directives. The tool performs static code analysis which means that you don’t have to run your application in order to use it.How to use? macOS Go […]
Apktool It is a tool for reverse engineering 3rd party, closed, binary Android apps. It can decode resources to the nearly original form and rebuild them after making some modifications; it makes possible to debug smali code step by step. Also, it makes working with the app easier because of project-like files structure and automation […]
ngrev A graphical tool for reverse engineering of Angular projects. It allows you to navigate in the structure of your application and observe the relationship between the different modules, providers, and directives. The tool… The post ngrev: Tool for reverse engineering of Angular applications appeared first on Penetration Testing.
A simple reverse shell written in python 3.7 just for fun. Actually it supports Windows and Linux OS and integrates some basic features like keylogging and AES encrypted communications. Supported operating systems: Windows Linux OSX Functions and characteristics: Reverse connection. AES encrypted communications. Multithreaded. Support multiple bots connected at the same time. Keylogger. Possibility […]
ConPtyShell is a Fully Interactive Reverse Shell for Windows systems. The introduction of the Pseudo Console (ConPty) in Windows has improved so much the way Windows handles terminals. ConPtyShell uses this feature to literally transform your bash in a remote powershell. Briefly, it creates a Pseudo Console and attaches 2 pipes. Then it creates the […]
HRShell: An advanced HTTP(S) Reverse Shell built with Flask HRShell is an HTTPS/HTTP reverse shell built with flask. It’s compatible with python 3.x and has been successfully tested on: Linux ubuntu 18.04 LTS, Kali Linux 2019.3 macOS Mojave Windows 7/10 Features It’s stealthy TLS support Either using on-the-fly certificates or By specifying a cert/key […]
Standalone python script for generating reverse shells easily and automating the boring stuff like URL encoding the command and setting up a listener. Download git clone https://github.com/t0thkr1s/revshellgen Install The script has 2 dependencies: pyperclip colorama You can install these by typing: python3 setup.py install Disclaimer This tool is only for testing and academic purposes […]
Salsa-tools is a collection of three tools programmed with C# used to take over a windows machine and bypass AV and get a reverse shell without the need for PowerShell on the victim machine. Salsa-Tools combines three different ingredients: – EvilSalsa – EncrypterAssembly – SalseoLoader Installation To install the Tool we will need a machine that […]
Quick utility to craft executables for pentesting and managing reverse shells. Instructions Requires Python 3.5 or above. usage: usb.py [-h] [-b BAT] [-i ICON] [-o OUTPUT] [-t TARGET] [-l] [-p PORT] EvilUSB: Quick utility to craft executables for pentesting and managing reverse shells. optional arguments: -h, –help show this help message and exit -b BAT, […]
A modern multiple reverse shell sessions/clients manager via terminal written in go. Features Multiple service listening port Multiple client connections RESTful API Reverse shell as a service Screenshot Network Topology Attack IP: 192.168.1.2 Reverse Shell Service: 0.0.0.0:8080 RESTful Service: 127.0.0.1:9090 Victim IP: 192.168.1.3 Run Platypus from source code go get github.com/WangYihang/Platypus cd go/src/github.com/WangYihang/Platypus […]
The researchers from the Moscow Institute of Physics and Technology (MIPT) have performed a breakthrough experiment that has reversed the time in a quantum computer. They were able to do this with the help of some other scientists from the U.S. and Switzerland, and they hope to refine the technique even further and make it more […]
Here comes some good news from the RSA Conference 2019. NSA has allegedly open sourced its robust reverse engineering tool Ghidra. It means anyone can now benefit from the pros of this powerful tool free. Certainly, this will be a pleasing move for bug hunters and cybersecurity enthusiasts alike. This week, the National Security Agency […]
NSA released Ghidra a free reverse Engineering tool for Malware analyst with an interactive GUI capability that runs on various platforms including Windows, Mac OS, and Linux and supports a number of processor modules. Ghidra gives flexibility for users to create additional plug-in components and scripts using Java or Python. It helps in analyzing malicious […]