WikiLeaks – Vault 7: AfterMidnight + Assassin implant : required reading for offense or defense teams.
Web Developer Security Checklist – Simple Security :
Appcanary – Everything you need to know about HTTP security headers :
THE INCREASED USE OF POWERSHELL IN ATTACKS [PDF] :
The Equation Group’s post-exploitation tools (DanderSpritz and more) Part 1 :
ewilded/psychoPATH : This tool is a customizable payload generator, initially designed to automate blind detection of web file upload implementations allowing to write files into the webroot (aka document root). The “blind” aspect is the […]
At least 3 different groups have been leveraging the NSA EternalBlue exploit weeks before the WannaCry attacks, here’s the evidence. In the last days, security experts discovered numerous attacks that have been leveraging the same […]