Pysa is Using Keyword-based Scripts to Target Data
A PowerShell script has disclosed details about different types of data that are stolen by the Pysa ransomware group. It has a list of 123 keywords. Some of the keywords are aimed at stealing...
Tagged: scripts
Six Ways Malicious Linux Shell Scripts Evade Defenses
Cybercriminals are using shell scripts in various sophisticated evasion techniques. Security analysts published a report describing six ways hackers use malicious Linux shell scripts to hide their attacks. They strongly recommend the use of...
Malware Actors Have Begun Using AutoHotkey Scripts For Attacks
One of the first reported attacks involving AutoHotkey was a credential stealer written in AutoHotkey found in March 2018. It disguised itself as an Antivirus app and spread via infected USB devices. click here...
XSS-Scanner – XSS Scanner That Detects Cross-Site Scripting Vulnerabilities In Website By Injecting Malicious Scripts
Cross-Site Scripting (XSS) is a single of the most perfectly acknowledged website software vulnerabilities. It even has a focused chapter in the OWASP Prime 10 venture and it is a highly chased vulnerability in...
WSMan-WinRM – A Collection Of Proof-Of-Concept Source Code And Scripts For Executing Remote Commands Over WinRM Using The WSMan.Automation COM Object
A collection of evidence-of-strategy supply code and scripts for executing remote commands more than WinRM working with the WSMan.Automation COM object. History For background information, please refer to the pursuing site write-up: WS-Administration COM:...
Oregami – IDA Plugins And Scripts For Analyzing Register Usage Frame
“”” What is this register used for? Hmm.. I’ll just rename it to veryuniquename, do a textual search, and find all references! Ok.. Waiting for the search to end.. any minute now.. Done! Now...
Powerglot – Encodes Offensive Powershell Scripts Using Polyglots
Powerglot encodes several kind of scripts using polyglots, for example, offensive powershell scripts. It is not needed a loader to run the payload. In red-team exercises or offensive tasks, masking of payloads is usually...
ActiveDirectoryEnumeration – Enumerate AD Through LDAP With A Collection Of Helpfull Scripts Being Bundled
ADE – ActiveDirectoryEnum usage: activeDirectoryEnum [-h] [-o OUT_FILE] [-u USER] [-s] [-smb] [-kp] [-bh] [-spn] [–all] [–no-creds] dc ___ __ _ ____ _ __ ______ / | _____/ /_(_) _____ / __ (_)_______ _____/...
ZShlayer: New macOS malware variant obfuscates scripts to slip past security tools
Dubbed ‘ZShlayer’, the variant does not conform to the unique Shlayer signatures, that means that it can go unnoticed by some malware scanners. Source backlink Read through additional on Malware updates & News
