This post discusses how CVE-2021-42278 allows potential attackers to gain high privileged user access (domain controllers Administrator level access) via a low privileged user (any

Some of my publicly available Malware analysis and Reverse engineering. - Dump-GUY/Malware-analysis-and-Reverse-engineering

Learn more about malicious word documents from the Depth Security team in this blog post. Depth Security provides an experienced take on the subject.

Bash script to check if a domain or list of domains can be spoofed based in DMARC records - v4d1/SpoofThatMail

This story begins with a series of fails, but why? That is because of my special relationship with the Microsoft Exchange codebase…

Two extremely popular JavaScript open source packages, colors.js, and faker.js, were maliciously modified to the point of being unusable.

Unicorn is a lightweight multi-platform, multi-architecture CPU emulator framework™ - official website. How is it useful? I’ve used it to trace and analyze heavily obfuscated and deeply nested code parts in iOS arm64 binaries. So it can be a very nice tool…

Beforehand, i'm sorry for my english writing. I'm in practice for improve it.

# Summary
While testing Adobe Acrobat reader app , the app has a feature which allows user to open pdfs directly from http/https url. This feature was vulnerable to path traversal vulnerability.
Abode reader was also using Google play core library for dynamic…

This article explains how to unpack sample sha256 5b9049c392eaf83b12b98419f14ece1b00042592b003a17e4e6f0fb466281368 which was served from…

NB: This post describes a very casual code review of a few cryptography functions used by MetaMask. It does not describe any vulnerabilities. If you’re the kind of person who likes a meanderi…

I've read the post cryptax.medium.com/multidex-trick… by @cryptax and it's true that is a little bit tricky to dump the file. It looks like some hooks are not working, for the last sample of #Flubot I could extract the file because the malware tries to delete…

* Cisco Talos discovered a malicious campaign in October 2021 delivering variants of Nanocore, Netwire and AsyncRATs targeting user's information.
* According to Cisco Secure product telemetry, the victims of this campaign are primarily distributed across…

Introduction With the emergence of the Log4j security vulnerability, we’ve already seen multiple threat actors, mostly financially motivated, immediately add it to their exploitation arsenal. It comes as no surprise that some nation-sponsored actors also…

NSO’s Group Pegasus spyware was mentioned multiple times during 2021 in the media. It has been heavily analyzed by organizations such as Amnesty Forensics Analysis of the NSO Group’s Pegasus Spyware

Hackers working for the North Korean government are believed to have stolen almost $400 million worth of cryptocurrency from seven hacked companies over the course of 2021, up from the $300 million they stole from four companies the year before.

We provide around-the-clock threat detection and incident response, backed by expert consulting to keep your organization secure.

Learn how to avoid TLS certificate issues and tighten the security process using certificate and SSL pinning and certificate transparency on android.