SecureBug allows you to evaluate your offensive and defensive skills, in addition, to let you exchange your ideas and methodologies with thousands of people in the security field.
Join Nordic's No.1 Crowdsourced Security Platform For Offensive & Defensive Security Strategies.
[vc_row][vc_column][vc_column_text]ID: T1123 Tactic: Collection Platform: Linux, macOS, Windows An adversary can leverage a computer’s peripheral devices (e.g., microphones and webcams) or applications (e.g., voice and video call services) to capture audio recordings for the purpose of listening into sensitive conversations to gather information. Malware or scripts may be used to interact with the devices through an available API…
Popular services, programs, and organizations have always been a target of cyber attacks to exploit the vulnerabilities in the service, steal users’ information, steal sensitive corporate information, or compromise the infrastructure. We have gathered the major cyber news over the past week including Cerberus RAT, WordPress plugins vulnerabilities, Cisco Webex phishing emails, Cisco update, and…
Learn the main differences between HTTP GET and POST flood attacks and mitigation strategies for both. Request Components (1) Methods Required: GET, POST Optional: OPTIONS, HEAD, PUT, DELETE, TRACE, CONNECT WebDAV: PROPFIND , PROPPATCH, MKCOL COPY, MOVE, LOCK, UNLOCK Request string (AKA URI) Can include parameters on GET request /index.php?choice=foo&choice2=bar You might already be familiar…
[vc_row][vc_column][vc_column_text]Curl, which stands for client URL, is a computer software project that provides a library and command-line tool to transfer data using various network protocols. Curl is multiplatform but mostly used on Linux. Curl transfers data to or from a server, using any of the supported protocols (HTTP, FTP, IMAP, POP3, SCP, SFTP, SMTP, TFTP, TELNET,…
[vc_row][vc_column][vc_column_text]A shell is a special user program that provides an interface to the user to use operating system services. Shell takes commands from the user and converts them into something which kernel can understand. It is a command language interpreter that executes commands read from input devices such as keyboards or files. The shell gets…
Vulnerabilities will always exist in systems, and vendors always come up with mitigations and updates to prevent potential attacks. Popular services and programs have long been a target of attacks to exploit the service itself or the users. We have gathered the major cyber news over the past week including WordPress plugin vulnerabilities, Adobe updates,…
“svchost.exe” (Service Host) is a system process in the Windows OS responsible for hosting and managing Windows services that run from dynamic-link libraries (.dll files). This process cannot start or end manually. “svchost” hosts a number of services to lower resource consumption and protect computing resources. If all the services ran under one process, in case…
[vc_row][vc_column][vc_column_text]PsExec is a command-line tool that lets you execute processes on remote systems and redirect console applications’ output to the local system so that these applications appear to be running locally. It allows administrators to run programs on local and more commonly remote computers. By providing the address of a target host, a valid user…
What is memory hunting? Memory Hunting/forensics refers to the analysis of volatile data in a computer’s memory. Information security professionals conduct memory forensics to investigate and identify attacks or malicious behaviors that do not leave easily detectable tracks on hard drive data. Why memory hunting? Complete capture of memory on a compromised computer generally bypasses…
[vc_row][vc_column][vc_column_text]PowerShell is a task automation and configuration management framework from Microsoft, consisting of a command-line shell and associated scripting language. In many attacks office binaries may execute powershell.exe to perform malicious activities. With this free Sigma rule you can detect these behaviors.[/vc_column_text][/vc_column][/vc_row][vc_row][vc_column css=”.vc_custom_1588065243098{background-color: #000000 !important;}”][vc_column_text]title: Detect powershell executed by office binaries description: office binaries may…