-
Feb 5, 2018
During a penetration test, you could lucky enough to find a RCE vulnerability: in this case, the next step should be to obtain an interactive shell.
… read more »
-
Feb 2, 2018
Let there be no mistake about this: from a technical point of view, 5G Network Slicing is totally awesome!
… read more »
-
Jan 31, 2018
Cisco released security updates to address a critical security vulnerability in Cisco ASA software.
… read more »
-
Jan 29, 2018
Some weeks ago i’ve written a brief tutorial focused on building a simple Echo BOT on Telegram using Python.
… read more »
-
Jan 26, 2018
Hyperion is a crypter for PE files, developed and presented by Christian Amman in 2012.
… read more »
-
Jan 24, 2018
Recently a colleague asked me an example of how a malware can be spread using simple html pages hosted on a hacked website.
… read more »
-
Jan 22, 2018
Microcode is an abstraction layer on top of the physical components of a CPU and is present in most CPUs.
… read more »
-
Jan 19, 2018
Package your python application (for Windows and Linux) with just a right-click!
… read more »
-
Jan 17, 2018
LaZagne is a tool developed by Alessandro Zanni useful to retrieve passwords stored on a local computer by most commonly-used software.
… read more »
-
Jan 15, 2018
PE-sieve is a small tool for investigating inline hooks and other in-memory code patches, developed by hasherezade.
… read more »
-
Jan 12, 2018
Arsalan Mosenia, Xiaoliang Dai, Prateek Mittal and Niraj Jha, in paper recently published, describe a new user-location mechanism that exploits non-sensory/sensory data stored on the smartphone to estimate the user’s location when all location services are turned off.
… read more »
-
Jan 10, 2018
Recently at Black Hat Europe conference, Tal Liberman and Eugene Kogan (enSilo lab) presented a a new code injection technique called “Process Doppelgänging”, that works on all Windows versions and seems to be able to bypass most of today’s major… read more »
-
Jan 8, 2018
Pavel Boldin published a new PoC exploit of Meltdown vulnerability working on Linux, written in C.
… read more »
-
Jan 6, 2018
In-Spectre-Meltdown is a PoC developed byViral Maniarusing Python and Powershell to check speculative execution side-channel attacks that affect many modern processors and operating systems designs that allows unprivileged processes to steal secrets from privileged processes.
… read more »
-
Jan 5, 2018
In the last hours, the vulnerabilities of the CPU have had a great prominence even in the non-specialized press.
So, I think that would be useful trying to summarize the situation in a simple way.
… read more »
-
Jan 3, 2018
Keyloggers are often used by malicious softwares to steal sensitive data and login credentials.
… read more »
-
Dec 31, 2017
My running year recap.
… read more »
-
Dec 29, 2017
In digital forensics, the term logical extraction is typically used to refer to extractions that do not recover deleted data, or do not include a full bit-by-bit copy of the evidence, analogously to copying and pasting a folder in order… read more »
-
Dec 27, 2017
Using Wine and Pyinstaller.
… read more »
-
Dec 22, 2017
Every forensic analyst, during his experience, perfects his own workflow for the acquisition of forensic images. Today I want to propose my own workflow for acquisition of physical disks on Microsoft Windows systems… read more »