LevelBlue says QuimaRAT uses encrypted plugins, OS-specific persistence, and JNA libraries to control Windows, Linux, and ...
Researchers link the India-focused operation to ChinaNet infrastructure and tactical overlaps with Silver Fox, but ...
Security tooling is not written in a single language. Python powers most automation. C sits at the exploit layer. PowerShell ...
Buffer overflow vulnerabilities have driven remote code execution for decades and keep appearing in critical network ...
Microsoft's disruption of malware-signing-as-a-service provider Fox Tempest last month has forced the operators of the Lorem Ipsum shellcode loader and backdoor to abandon their delivery method of ...
ShadowPad, once linked mainly to APT41, is now being used by multiple China-linked threat groups, expanding its role in cyber ...
Our tracking of OceanLotus activities from 2024–2026 reveals a shift in operational focus. During this period, the Vietnam-aligned OceanLotus adopted a more selective approach to external operations ...
Russia-linked attackers are already exploiting Microsoft's latest Office zero-day, with Ukraine's national cyber defense team warning that the same bug is being used to target government agencies ...
;this is 64bit asm reverse shell asm shellcode ;inspired by metasploit shellcode ;compile it like: nasm -f win64 name.asm ;link it like: ld new.obj -o new.exe global _start _start: section .text sub ...
ESET researchers have discovered two as-yet undocumented Windows variants of SprySOCKS, a previously Linux-only backdoor reportedly used by FishMonger, the group believed to be operated by a Chinese ...
├── Blue_Tools │ ├── BlueTeam_ABC_123.jar │ ├── CobaltStrikeScan.exe │ ├── DuckMemoryScan.exe │ └── LiqunShield.7z ├── LICENSE ├── README.md ├── Red_Tools │ ├── LiqunKit ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results