Browsing tag
Details have emerged about what’s the first Rust-language-based ransomware strain spotted in the wild that has already amassed “some victims from different countries” since its launch last month. The ransomware, dubbed BlackCat, was disclosed by MalwareHunterTeam. “Victims can pay with Bitcoin or Monero,” the researchers said in a series of tweets detailing the file-encrypting malware. […]
drow is a command-line utility that is used to inject code and hook the entrypoint of ELF executables (post-build). It takes unmodified ELF executables as input and exports a modified ELF contianing an embedded user-supplied payload that executes at runtime. Slightly more detail … Drow takes the following steps to create the new patched […]
HyperDbg is designed with a focus on using modern hardware technologies to provide new features to the reverse engineering world. It operates on top of Windows by virtualizing an already running system using Intel VT-x and Intel PT. This debugger aims not to use any APIs and software debugging mechanisms, but instead, it uses […]
Aura is a static analysis framework developed as a response to the ever-increasing threat of malicious packages and vulnerable code published on PyPI. Project goals: provide an automated monitoring system over uploaded packages to PyPI, alert on anomalies that can either indicate an ongoing attack or vulnerabilities in the code enable an organization to […]
DECAF++, the new version of DECAF, taint analysis is around 2X faster making it the fastest, to the best of our knowledge, whole-system dynamic taint analysis framework. This results in a much better usability imposing only 4% overhead (SPEC CPU2006) when no suspicious (tainted) input exists. Even under heavy taint analysis workloads, DECAF++ has […]
metame is a simple metamorphic code engine for arbitrary executables. From Wikipedia: Metamorphic code is code that when run outputs a logically equivalent version of its own code under some interpretation. This is used by computer viruses to avoid the pattern recognition of anti-virus software. metame implementation works this way: Open a given binary […]
One can imagine that contributions to open source projects would be evaluated on the quality of code above anything else. However, researchers have found quite the opposite! In a paper titled, “Does Code Quality Affect Pull Request Acceptance?, submitted to “Information and Software Technology” journal; researchers tried to determine whether code quality issues such as […]
Microsoft has launched a new programming language called Bosque. The company says Bosque has been designed to write code that is “simple, obvious, and easy to reason” for both humans and machines. The purpose of this open-source project is to develop a functional programming language that prevents “accidental complexity” in coding and development. Codes generated in […]
A recent survey of software engineers conducted by Hired has brought new insights into the state of programming languages in 2019. 98,000 developers participated in the survey to vote on various topics, including the most loved and hated programming languages and the results are quite surprising. The survey revealed that PHP is the most hated programming language with 19% of developers disliking it. The second most […]
Security researcher Jerry Gamblin revealed how a few lines of codes written in XML for Google Home Hub can be used to gain access to user data. It can exploit an undocumented and unsecured API and force the device to reboot or reveal data. Gamblin wrote in a blog post that he found a number of […]
WPSploit is intended for Penetration Testers who audit WordPress plugins or developers who wish to audit their own WordPress plugins. It checks for: Cross-Site Scripting (XSS) SQL Injection File Download File Inclusion File Manipulation Command Execution PHP Code Execution Authorisation Open Redirect Cross-Site Request Forgery (CSRF) SSL/TLS Usage $ git clone https://github.com/m4ll0k/wpsploit.git $ cd wpsploit […]
Security researchers from security firm Elttam have discovered a critical vulnerability (tracked as CVE-2017-17562) in GoAhead tiny web server that affects many IoT devices, the vulnerability allows attacker to execute malicious code remotely on affected devices. According to the researchers: This blog post details CVE-2017-17562, a vulnerability which can be exploited to gain reliable remote […]
RetDec is a retargetable machine-code decompiler based on LLVM. The decompiler is not limited to any particular target architecture, operating system, or executable file format: Supported file formats: ELF, PE, Mach-O, COFF, AR (archive), Intel HEX, and raw machine code. Supported architectures (32b only): Intel x86, ARM, MIPS, PIC32, and PowerPC. Features: Static analysis of executable […]
Last week, security researchers have published the details of two possibly critical flaws affecting version 5 of the vBulletin forum software. vBulletin is the most popular forum software, which is based on PHP and MySQL database server. It’s currently used by over 100,000 websites, including Fortune 500 and Alexa Top 1 million organizations websites and […]
This tool is intended for Penetration Testers who audit WordPress plugins or developers who wish to audit their own WordPress plugins. For more info click here. Usage $ git clone https://github.com/m4ll0k/wpsploit.git $ cd wpsploit $ python wpsploit.py plugin_file.php or $ wget https://raw.githubusercontent.com/m4ll0k/wp_sploit/master/wpsploit.py $ python wpsploit.py plugin_file.php Example $ wget https://plugins.svn.wordpress.org/analytics-for-woocommerce-by-customerio/trunk/admin/class-wccustomerio-admin.php $ python wpsploit.py class-wccustomerio-admin.php Download […]
Today, 9 November 2017, WikiLeaks publishes the source code and development logs to Hive, a major component of the CIA infrastructure to control its malware. Hive solves a critical problem for the malware operators at the CIA. Even the most sophisticated malware implant on a target computer is useless if there is no way for […]
When we take sparse data into consideration, the analytic algorithms have to perform lots of additions and multiplications by zero. To imagine such situation, take an example of a big table of Amazon customers against all its products–1 is assigned for each product bought by a customer and 0 if no purchase is made. To avoid […]
Taking advantage of Intel ME technology, within which attackers can execute unsigned code on the target machine. This leads to a full compromise of the platform. Intel Management Engine is a closed technology, which is a microcontroller embedded into the Platform Controller Hub (PCH) with a set of well-proportioned peripherals. Through PCH, almost all communication […]
Short Bytes: What are the signs that you should look for before joining a coding class? Apart from the love for programming, there are some other points that could become a reason for learning programming. These reasons include the problem-solving skills, will to create something new and having a better control over one’s work and […]
Short Bytes: Very few people understand the basics of hacking and hacker ethics. It’s basically exploring the open source code using various tools and improving the programming skills. Eric Steven Raymond, a renowned open source advocate, teaches a way to learn how to hack and improve programming using incremental-hacking cycle, which is a method of understanding a […]
Short Bytes: Programming can be a lot of fun, but sometimes you’re stuck reading through dry documentation which can get boring. PyMotW is a great site for cutting through the dry thick documentation and getting at the material. Let’s tell you more about that. PyMotW is an excellent resource for anyone that’s learning Python or […]