6 matches found
Malicious code in react-native-windows-repo (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c894e9ec1df07b7a9631c7a3fff0940b131f370c1e5c3d1846b7ff2398076e59 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-1663 Malicious code in react-native-windows-repo (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c894e9ec1df07b7a9631c7a3fff0940b131f370c1e5c3d1846b7ff2398076e59 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Living off the land, GPO style
TL;DR The ability to edit Group Policy Object GPOs from non-domain joined computers using the native Group Policy editor has been on my list for a long time. This blog post takes a deep dive into what steps were taken to find out why domain joined machines are needed in the first place and what...
Native Windows Camera application is not working in Citrix session.
Native Windows Camera application is not working in Citrix session. Issue is not seen in a RDP session...
Magic Hound Exploiting Old Microsoft Exchange ProxyShell Vulnerabilities
THREAT LEVEL: Red. For a detailed advisory, download the pdf file here APT35 aka Magic Hound, an Iranian-backed threat group, has begun using Microsoft Exchange ProxyShell vulnerabilities as an initial attack vector and to execute code through multiple web shells. The group has primarily targeted...
[Hardanger] Web Application Penetration Testing Platform
Hardanger is an Open Source web application penetration testing tool led by security researchers from SecurityWire. The project aims to bridge the gap between current open source web application testing tools commonly used in a Linux environment and bring the same level of tools to native Windows...