Lucene search
K

94 matches found

0day.today
0day.today
added 2019/07/24 12:0 a.m.38 views

Trend Micro Deep Discovery Inspector IDS - Security Bypass Exploit

Credits: John Page aka hyp3rlinx Vendor www.trendmicro.com Product Deep Discovery Inspector Deep Discovery Inspector is a network appliance that monitors all ports and over 105 different network protocols to discover advanced threats and targeted attacks moving in and out of the network and...

Exploits0
Carbon Black Blog
Carbon Black Blog
added 2019/07/16 12:17 p.m.99 views

Partner Perspectives: From Alert to Action: How VMRay Provides Carbon Black with Detail-Rich Threat Intelligence

Good things happen when two leaders in their respective fields bring together their complementary capabilities. That’s the case with Carbon Black’s deep expertise in endpoint detection and response EDR and VMRay’s singular focus on dynamic malware analysis. The sum ends up being even greater than...

Exploits0
Akamai Blog
Akamai Blog
added 2019/06/12 4:0 a.m.19 views

Catch Me If You Can: Evasive and Defensive Techniques in Phishing

Phishing is a multifaceted type of attack, aimed at collecting usernames and passwords, personal information, or sometimes both. Yet, these attacks only work so long as the phishing kit itself remains hidden. Phishing is a numbers game and time is...

2.8AI score
Exploits0
Metasploit
Metasploit
added 2019/04/29 8:34 p.m.31 views

Applocker Evasion - .NET Framework Installation Utility

This module will assist you in evading Microsoft Windows Applocker and Software Restriction Policies. This technique utilises the Microsoft signed binary InstallUtil.exe to execute user supplied code. This module requires Metasploit: https://metasploit.com/download Current source:...

0.1AI score
Exploits0
Talos Blog
Talos Blog
added 2018/10/19 1:39 p.m.45 views

Threat Roundup for October 12 to October 19

Today, as we do every week, Talos is giving you a glimpse into the most prevalent threats we’ve observed this week — covering the dates between Oct. 12 and 19. As with previous roundups, this post isn’t meant to be an in-depth analysis. Instead, we will summarize the threats we’ve observed by...

0.6AI score
Exploits0
Metasploit
Metasploit
added 2018/10/06 2:20 p.m.71 views

Microsoft Windows Defender Evasive JS.Net and HTA

This module will generate an HTA file that writes and compiles a JScript.NET file containing shellcode on the target machine. After compilation, the generated EXE will execute the shellcode without interference from Windows Defender. It is recommended that you use a payload that uses RC4 or HTTPS...

0.2AI score
Exploits0
The Hacker News
The Hacker News
added 2018/08/09 2:20 p.m.94 views

Researchers Developed Artificial Intelligence-Powered Stealthy Malware

Artificial Intelligence AI has been seen as a potential solution for automatically detecting and combating malware, and stop cyber attacks before they affect any organization. However, the same technology can also be weaponized by threat actors to power a new generation of malware that can evade...

1.4AI score
Exploits0
Metasploit
Metasploit
added 2018/08/02 4:54 p.m.37 views

Microsoft Windows Defender Evasive Executable

This module allows you to generate a Windows EXE that evades against Microsoft Windows Defender. Multiple techniques such as shellcode encryption, source code obfuscation, Metasm, and anti-emulation are used to achieve this. For best results, please try to use payloads that use a more secure...

7.4AI score
Exploits0
Check Point Advisories
Check Point Advisories
added 2018/07/18 12:0 a.m.2 views

PoshRat Command Control Attempt

PoshRat is an open source tool that uses evasions techniques for reverse interactive PowerShell. A remote attacker can send malicious file that triggers the vulnerability...

4.7AI score
Exploits0
ThreatPost
ThreatPost
added 2016/06/06 1:21 p.m.13 views

New Angler Exploits Bypass EMET Mitigations

New Microsoft Silverlight and Adobe Flash exploits that bypass Microsoft’s Enhanced Mitigation Experience Toolkit EMET have found their way into an updated version of the Angler Exploit Kit. EMET is a suite of freely available tools for Windows machines that mitigate memory-based attacks. The...

0.9AI score
Exploits0References4
ThreatPost
ThreatPost
added 2015/03/09 2:26 p.m.10 views

New Technique Complicates Mutex Malware Analysis

Malware analysts have had a measure of success using static mutex values as a fingerprint for detecting and blocking malicious code. These values are used in programming to enable software to synchronize communication between multiple threads or processes, or to determine whether another instance...

0.3AI score
Exploits0References6
ThreatPost
ThreatPost
added 2014/10/16 2:55 p.m.9 views

Malware Detection Must Soon Recognize Evasive Behaviors

Criminals and advanced attackers have long fortified malware with features that help malicious code stay hidden from analysis. We’ve seen malware samples that determine if they’re being executed in a sandbox or virtual machine, or over remote desktop protocol connections, and stay quiet until...

1.6AI score
Exploits0References3
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.24 views

phpProfiles <= 3.1.2b Multiple Remote File Include Vulnerabilities

No description provided by source. +------------------------------------------------------------------------------------------- + phpProfiles = 3.1.2b Multiple Remote File Include Vulnerabilities +------------------------------------------------------------------------------------------- + Affect...

7.1AI score
Exploits0
w3af
w3af
added 2013/06/10 11:2 p.m.17 views

rnd_path

This evasion plugin adds a random path to the URI. Example: Input: /bar/foo.asp Output : /aflsasfasfkn/../bar/foo.asp Plugin type Evasion Options This plugin doesnt have any user configured options. Source For more information about this plugin and the associated tests, theres always the source...

Exploits0
Rows per page
Query Builder