72 matches found
Ransomware Groups Exploit Legit IT Tools to Bypass Antivirus
New research from Seqrite explains the 'dual-use dilemma,' where ransomware attackers repurpose legitimate IT tools like IOBit Unlocker…...
Zombie ZIP method can fool antivirus during the first scan
A researcher published “Zombie ZIP,” a simple way to change the first part header of a ZIP file so it falsely claims its contents are uncompressed while they are actually compressed. Many antivirus products trust that header and never properly decompress or inspect the real payload. In tests...
PT-2026-24181
Name of the Vulnerable Software and Affected Versions affected versions not specified Description Attackers are utilizing a technique involving malformed ZIP metadata, referred to as 'shadow archives', to circumvent antivirus AV and Endpoint Detection and Response EDR systems. This method allows...
ShellExploit
This project is no longer supported PowerSploit is a col...
EUVD-2006-0649
Malware in sbrugna...
EUVD-2018-4217
Malware in sbrugna...
EUVD-2012-1454
Malware in sbrugna...
EUVD-2012-1462
Malware in sbrugna...
EUVD-2012-0038
Malware in sbrugna...
EUVD-2020-29791
Malware in sbrugna...
EUVD-2016-4993
Malware in sbrugna...
EUVD-2018-4216
Malware in sbrugna...
EUVD-2021-13506
Malware in sbrugna...
PowerSploit
This is an offensive tool for Windows PowerShell exploitation. It is a collection of PowerShell scripts that can be used to exploit vulnerabilities in Windows systems. The repository contains several modules, including AntivirusBypass and CodeExecution, which provide various functions for bypassi...
CVE-2025-20183 Cisco Secure Web Appliance Range Request Bypass Vulnerability
A vulnerability in a policy-based Cisco Application Visibility and Control AVC implementation of Cisco AsyncOS Software for Cisco Secure Web Appliance could allow an unauthenticated, remote attacker to evade the antivirus scanner and download a malicious file onto an endpoint. The vulnerability i...
CVE-2025-20183 Cisco Secure Web Appliance Range Request Bypass Vulnerability
A vulnerability in a policy-based Cisco Application Visibility and Control AVC implementation of Cisco AsyncOS Software for Cisco Secure Web Appliance could allow an unauthenticated, remote attacker to evade the antivirus scanner and download a malicious file onto an endpoint. The vulnerability i...
New Banshee Stealer Variant Bypasses Antivirus with Apple's XProtect-Inspired Encryption
Cybersecurity researchers have uncovered a new, stealthier version of a macOS-focused information-stealing malware called Banshee Stealer. "Once thought dormant after its source code leak in late 2024, this new iteration introduces advanced string encryption inspired by Apple's XProtect," Check...
Researchers Expose NonEuclid RAT Using UAC Bypass and AMSI Evasion Techniques
Cybersecurity researchers have shed light on a new remote access trojan called NonEuclid that allows bad actors to remotely control compromised Windows systems. "The NonEuclid remote access trojan RAT, developed in C, is a highly sophisticated malware offering unauthorised remote access with...
How Attackers Use Corrupted Files to Slip Past Security
New zero-day attack bypasses antivirus, sandboxes, and spam filters using corrupted files. Learn how ANY.RUN’s sandbox detects and…...
New Crypto Trojan.AutoIt.1443 Hits 28,000 Users via Game Cheats, Office Tool
Trojan.AutoIt.1443 targets 28,000 users, spreading via game cheats and office tools. This cryptomining and cryptostealing malware bypasses antivirus…...