All posts in Uncategorized

■■■■□ SAP Cloud Connector https://redrays.io/blog/sap-cloud-connector-security/ https://t.me/cKure/13445

■■□□□ Cyber-Crime: Energy giant Schneider Electric hit by Cactus ransomware attack. https://www.bleepingcomputer.com/news/security/energy-giant-schneider-electric-hit-by-cactus-ransomware-attack/ https://t.me/cKure/13444

■■□□□ SyscallMeMaybe: Implementation of Indirect Syscall technique to pop an innocent calc.exe https://github.com/oldboy21/SyscallMeMaybe https://t.me/cKure/13443

■■□□□ PurpleLab: Lab solution, providing a swift setup for cybersecurity professionals to test detection rules, simulate logs, and various security tasks. https://github.com/Krook9d/PurpleLab https://t.me/cKure/13442

■■■□□ GraphStrike: A suite of tools that enables CobaltStrike’s HTTPS #Beacon to use Microsoft Graph API for C2 communications. https://github.com/RedSiege/GraphStrike https://t.me/cKure/13441

■■■□□ Thread-Pool-Injection-PoC: Proof of concept code for thread pool based process injection in Windows. https://github.com/Uri3n/Thread-Pool-Injection-PoC https://t.me/cKure/13440

■■□□□ Ultimate-RAT-Collection: For educational purposes only, samples of old & new malware builders including screenshots. https://github.com/yuankong666/Ultimate-RAT-Collection https://t.me/cKure/13439

■■■■□ ExecIT: DLL Shellcode self-inyector/runner based on HWSyscalls, ideally thought to be executed with rundll32. May grant fileless execution if victim endpoint has access to attacker-controlled SMB share. https://github.com/florylsk/ExecIT https://t.me/cKure/13438

■■■■■ LeftoverLocals: A repo containing PoC code for the LeftoverLocals GPU memory leaking project. https://github.com/trailofbits/LeftoverLocalsRelease https://t.me/cKure/13437

■■□□□ Top 30 cyber security topics. https://gold-marten-204.notion.site/2d292e0b941146ef858a125bf1cb0eb3?v=f04ea483a23b4119ad85592c6e8e961b https://t.me/cKure/13436