windows-privesc-check – Tool to Check Windows Privilege Escalation Vectors

windows-privesc-check -Windows operating systems include many security features to control access and privileges. It is possible to provide access based on roles and responsibilities beside providing a full access to modify the files/directories or read-only access. If you are looking

Sn1per – Automated Pentest Recon Scanner

Sn1per is an automated open source scanner that you can use during penetration testing. the tool allow to use some compilation of pentest utility such as the harvester , nmap and brute force against your target. some of the features

Tinba Malware Targeting Financial Institutions in Russia and More

Dell SecureWorks published a new report about their finding in relation with Tinba 2.0. Tinba is now targeting a large number of users in Russian banks and online payment systems, the malware is also targeting several other countries including Japan

CrackMapExec – Tool for pentesting Windows/Active Directory

Corporate network is becoming more and more relying on active directory where system administrator define roles and groups for users. This is important for accountability and auditing beside admin will have a better and simpler system administration. If you are

Fake Invoice Phishing Email Targeting Apple Users

Phishing emails continue to be the widely used technique by cyber criminals. over this week Christopher Boyd from Malwarebytes posted a new Invoice Phishing Email that target Apple store users. the email claims to be a confirmation for buying a

Mimikatz – Multi-tool to play with Windows security


Mimikatz tool have been presented in international conferences such as blackhat and DefCon. This tool is designed to work with credentials on windows operating system. Mimikatz allows to extract passwords in plaintext, hash, PIN code or Kerberos tickets from the

Dridex Fraud Botnet Disrupted

Several C&C Servers running Dridex banking Trojan have been disrupted by the UK National Crime Agency (NCA) and the U.S. Federal Bureau of Investigation (FBI). This malware have been distributed over spamming messages with different templates. The spam will include