All posts by cK-bot

■■■□□ Vulnerabilities Detected in Open Source elFinder File Manager. The five flaws, termed CVE-2021-32682 as a group, have a CVSS score of 9.8, which means they’re highly dangerous. The vulnerability chain impacts elFinder version 2.1.58. https://www.ehackingnews.com/2021/08/vulnerabilities-detected-in-open-source.html https://t.me/cKure/9130

■□□□□ Cofense Report Analysis on Phishing Campaign Utilizing Vzwpix. https://www.ehackingnews.com/2021/08/cofense-report-analysis-on-phishing.html https://t.me/cKure/9129

■■□□□ SMB Relay Attack Auto Script. https://reconshell.com/smb-relay-attack-auto-script/ https://t.me/cKure/9128

■■■□□ Trend Micro reported that the theme of commercial spyware Pegasus from NSO Group is used by cybercriminals in phishing campaigns. According to experts, recently the Confucius cybercriminal group conducted a phishing campaign aimed at the Pakistani military. The ma licious campaign was discovered in a broader Trend Micro investigation into Confucius. https://t.me/cKure/9127

■■■■■ Subrake: Subdomain Enumeration and Validation tool for Bug Bounty and Pentesters https://github.com/hash3liZer/Subrake https://t.me/cKure/9126

■■□□□ Obfuscation Detection: IDA plugin to pinpoint obfuscated code. Scripts to automatically detect obfuscated code and state machines in binaries. https://github.com/mcdulltii/obfDetect https://t.me/cKure/9125

■■□□□ LockFile Ransomware Bypasses Protection Using Intermittent File Encryption. https://thehackernews.com/2021/08/lockfile-ransomware-bypasses-protection.html https://t.me/cKure/9124

■■■□□ PEzor – Open-Source Shellcode And PE Packer. https://github.com/phra/PEzor https://t.me/cKure/9123

■■■■□ Kernel Pwning with eBPF. https://www.graplsecurity.com/post/kernel-pwning-with-ebpf-a-love-story https://t.me/cKure/9122

■■■□□ Windows Logon types and Where to Find Credentials in Them. https://www.alteredsecurity.com/post/fantastic-windows-logon-types-and-where-to-find-credentials-in-them https://t.me/cKure/9121