IRTriage - Incident Response Triage - Windows Evidence Collection For Forensic Analysis

Scripted collection of system information valuable to a Forensic Analyst. IRTriage will automatically "Run As ADMINISTRATOR" in all Windows versions except WinXP. The original source was Triage-ir v0.851 an Autoit script written by Michael Ahrendt. Unfortunately Michael's last changes were posted...

First Large Cyber Espionage Activity against Pakistan Emanating From India

Cyber Security researchers have discovered a family of information stealing malware targeting Pakistan that originates out of India. Norman Shark, the global security leader in malware analysis solutions for enterprises, service providers and government, today released a report detailing a large...

ICQ 6.5 URL Search Hook (Windows Explorer) Remote BOF PoC

No description provided by source. ?php / ICQ 6.5 URL Search Hook/ICQToolBar.dll .URL file processing Windows Explorer remote buffer overflow poc by Nine:Situations:Group::pyrokinesis site: http://retrogod.altervista.org/ If the resulting file is placed on the desktop, against ex. xp sp3 process...

CVE-2006-3785

Symantec pcAnywhere 12.5 obfuscates the passwords in a GUI textbox with asterisks but does not encrypt them in the associated .cif aka caller or CallerID file, which allows local users to obtain the passwords from the window using tools such as Nirsoft Asterwin...

CVE-2006-3785

Symantec pcAnywhere 12.5 obfuscates the passwords in a GUI textbox with asterisks but does not encrypt them in the associated .cif aka caller or CallerID file, which allows local users to obtain the passwords from the window using tools such as Nirsoft Asterwin...