All posts by cK-bot

■□□□□ Threat actors responsible for the BazaLoader malware designed a brand-new bait to trick website owners into opening malicious files: fake notifications concerning the internet site being engaged in distributed denial-of-service (DDoS) assaults. https://www.ehackingnews.com/2021/08/scammers-use-fake-dmca-complaints-ddos.html https://t.me/cKure/9107

■■■□□ targetedKerberoast: Kerberoast with ACL abuse capabilities. https://securityonline.info/targetedkerberoast-kerberoast-with-acl-abuse-capabilities/ https://t.me/cKure/9106

■■■■□ M.E.A.T. – Mobile Evidence Acquisition Toolkit. https://github.com/jfarley248/MEAT https://t.me/cKure/9105

■□□□□ Privacy tip: Whenever you save a number in your contacts, your chances of being cyberstalked increases as your contact can see your DP as well as your status. So if you wish to chat with a person, for just once or temporarily, simply go to your mobile browser, type wa.me/91 followed with the person’s…

■■■□□ Often used for hHTB machines for a complete port scan. ports=$(nmap -p- –min-rate=1000 -T4 {Target_IP} | grep ^[0-9] | cut -d ‘/’ -f 1 | tr ‘\n’ ‘,’ | sed s/,$//) nmap -sC -sV -p$ports -sT {Target_IP} Source: Twitter | KathanP19 https://t.me/cKure/9103

■■□□□ McAfee Enterprise ATR Uncovers Vulnerabilities in Globally Used B. Braun Infusion Pump. https://www.mcafee.com/blogs/enterprise/mcafee-enterprise-atr/mcafee-enterprise-atr-uncovers-vulnerabilities-in-globally-used-b-braun-infusion-pump/ https://t.me/cKure/9102

■■■□□ Beaconator: generate staged or stageless shellcode and packing the generated shellcode https://securityonline.info/beaconator-generate-staged-or-stageless-shellcode/ https://t.me/cKure/9101

■■■□□ Data-Leak / China as Chinese website leaked user database, including password, email and mobile phone address. Fields contain: username  password  email    city  qq  address  realname  mobile  reg_ip  reg_time  money  alipay  name  The data is being shared publicly. https://t.me/cKure/9100

■■■■□ Data-Leak / UAE as actor shares 200K records of United Arab Emirates’ residents that were leaked via government related entity. The data is till 2020. The leaked records are in the following format: CONTRACT_NO,REN_NO,MEMBER_NO,MEMBER_TYPE,MEMBER_NAME,BIRTH_DT,EFF_DT,TERM_DT,PASSPORT_NO,UID_NO,EMIRATES_ID,EMAIL,MOBILE,NATIONALITY_CODE,CITY_CODE,CLIENT_NAME,CSO_NAME https://t.me/cKure/9099

■■■□□ Generic impersonation and privilege escalation with Golang. Like GenericPotato both named pipes and HTTP are supported. https://github.com/CMatri/Gotato https://t.me/cKure/9098