Schneier on Security

AUGUST 18, 2021

I’m starting to see writings about a Chinese espionage tool that exploits website vulnerabilities to try and identify Chinese dissidents.

Spyware 336

Spyware 336

Security Boulevard

MAY 3, 2024

VAPT testing tools are a vital part of any organization’s approach to proactively strengthen cyber security posture. The pentest tools help in digital security, using a variety of methods to identify and report these vulnerabilities in all of your systems, and applications.

Penetration Testing 64

Penetration Testing Cybersecurity 64

Penetration Testing

MARCH 15, 2024

AttackGen AttackGen is a cybersecurity incident response testing tool that leverages the power of large language models and the comprehensive MITRE ATT&CK framework.

Penetration Testing 145

Penetration Testing Cybersecurity 145

Penetration Testing

APRIL 12, 2024

Greenmask – dump obfuscation tool Greenmask is a powerful open-source utility that is designed for logical database backup dumping, obfuscation, and restoration. Greenmask is written... The post greenmask: PostgreSQL dump and obfuscation tool appeared first on Penetration Testing.

Penetration Testing 103

Penetration Testing Backups 103

Penetration Testing

MAY 2, 2024

Those unassuming internet gateways, often overlooked in cybersecurity discussions, have become a prime battleground where criminals and nation-state hackers... The post Compromised Routers: Tool of Choice for Crime & Espionage appeared first on Penetration Testing.

Penetration Testing 130

Penetration Testing Internet Internet Cybersecurity 130

Daniel Miessler

JANUARY 25, 2021

There are recon tools, and there are recon tools. I have great respect for large, multi-use suites like Burp , Amass , and Spiderfoot , but I love tools with the Unix philosophy of doing one specific thing really well. He writes his tools in Go as well, so they’re wicked fast. Let’s get after it!

Internet 364

Internet Internet Information Security 364

Tech Republic Security

FEBRUARY 22, 2024

Explore the top open source IAM (Identity and Access Management) tools, their features and how they can enhance your organization's security and access control.

167

167

Security Boulevard

APRIL 27, 2024

Introduction of Antimatter […] The post RSAC 2024 Innovation Sandbox | Antimatter: A Comprehensive Data Security Management Tool appeared first on NSFOCUS, Inc., The post RSAC 2024 Innovation Sandbox | Antimatter: A Comprehensive Data Security Management Tool appeared first on Security Boulevard.

Cyber Attacks 122

Cyber Attacks Network Security Cybersecurity 122

Tech Republic Security

FEBRUARY 6, 2024

Here are the top cyber threat hunting tools that can enhance your organization's cybersecurity defenses. Learn how their features compare.

Cyber threats 157

Cyber threats Cybersecurity 157

Penetration Testing

JANUARY 6, 2024

DynastyPersist A CTF Tool for Linux persistence (KOTH, Battlegrounds) A powerful and versatile Linux persistence script designed for various security assessment and testing scenarios.

Penetration Testing 111

Penetration Testing 111

Security Boulevard

APRIL 1, 2024

By collecting and analysing this data, companies can spot patterns that may signal a security breach, allowing them to take quick and appropriate action to […] The post The Best SIEM Tools To Consider in 2024 appeared first on Centraleyes. The post The Best SIEM Tools To Consider in 2024 appeared first on Security Boulevard.

Firewall 120

Firewall 120

Penetration Testing

DECEMBER 29, 2023

ForensicMiner ForensicMiner, a PowerShell-based DFIR automation tool, revolutionizes the field of digital investigations. Compatibility with Flacon Crowdstrike RTR and Palo Alto Cortex... The post ForensicMiner: PowerShell-based DFIR automation tool appeared first on Penetration Testing.

Penetration Testing 111

Penetration Testing 111

Security Boulevard

APRIL 18, 2024

The post The Dark Side of EDR: Repurpose EDR as an Offensive Tool appeared first on SafeBreach. The post The Dark Side of EDR: Repurpose EDR as an Offensive Tool appeared first on Security Boulevard.

116

116

Penetration Testing

FEBRUARY 26, 2024

skytrack skytrack is a command-line-based plane spotting and aircraft OSINT reconnaissance tool made using Python.

Penetration Testing 119

Penetration Testing 119

Security Boulevard

APRIL 19, 2024

Modern SOCs in large organizations handle between 75 to 100 different tools, […] The post Choosing SOC Tools? The post Choosing SOC Tools? They use a diverse array of security controls to monitor, detect, and swiftly respond to any cyber menace.These controls are essential for keeping information systems safe around the clock.

Cyber threats 69

Cyber threats 69

The Hacker News

APRIL 12, 2024

The Iranian threat actor known as MuddyWater has been attributed to a new command-and-control (C2) infrastructure called DarkBeatC2, becoming the latest such tool in its arsenal after SimpleHarm, MuddyC3, PhonyC2, and MuddyC2Go.

112

112

Penetration Testing

APRIL 20, 2024

The group has... The post WINELOADER: A Tool for Espionage and Disruption appeared first on Penetration Testing. A new campaign orchestrated by the notorious APT29 hacking group – widely associated with Russia’s Foreign Intelligence Service (SVR) – exposes a dangerous shift in tactics for this sophisticated threat actor.

Penetration Testing 94

Penetration Testing Hacking Malware 94

Tech Republic Security

MAY 24, 2023

Cloudflare One has a new suite of AI zero-trust security tools. The post Cloudflare releases new AI security tools with Cloudflare One appeared first on TechRepublic. Read our article to learn more about Cloudflare's latest announcement and release.

Artificial Intelligence 152

Artificial Intelligence Big data Cybersecurity 152

Security Boulevard

JANUARY 4, 2024

The post Survey Surfaces Lack of Confidence in Existing Cybersecurity Tools appeared first on Security Boulevard. More than half of cybersecurity leaders would replace their entire current stack of platforms if there were no budget constraints.

Cybersecurity 132

Cybersecurity CISO Risk Mobile 132

Bleeping Computer

MARCH 26, 2024

Cybercriminals are selling custom Raspberry Pi software called 'GEOBOX' on Telegram, which allows inexperienced hackers to convert the mini-computers into anonymous cyberattack tools. [.]

Software 136

Software Cybercrime 136

Malwarebytes

MARCH 27, 2024

On 14 March, Meta announced it would abandon CrowdTangle , saying the tool will no longer be available after August 14, 2024. While most people have never heard of CrowdTangle, among journalists the tool is considered essential. It was the first major tool that let the public analyze trends on the social media platforms in real time.

Media 103

Media Engineering Accountability Risk 103

Security Boulevard

JANUARY 5, 2024

The post DevSecOps tools: A beginner’s guide appeared first on Security Boulevard. DevSecOps , a fusion of development, security , and operations, marks a paradigm shift in software development, seamlessly integrating security throughout the software development life cycle (SDLC).

Software 115

Software 115

SecureBlitz

APRIL 23, 2024

GogoPDF is a suite of complete free PDF online tools. Its […] The post GoGoPDF: Complete PDF Online Tools Free For Use appeared first on SecureBlitz Cybersecurity. Its […] The post GoGoPDF: Complete PDF Online Tools Free For Use appeared first on SecureBlitz Cybersecurity.

Cybersecurity 81

Cybersecurity 81

Security Boulevard

MARCH 1, 2024

The post Cheap Video Doorbell Cams: Tools of Stalkers and Thieves appeared first on Security Boulevard. EKEN IoT FAIL: Amazon, Sears and Shein still sell security swerving stuff.

IoT 130

IoT Social Engineering Internet Internet 130

Veracode Security

JANUARY 22, 2024

Successful DevSecOps in a cloud-native world is aided by the right tools. Here are a handful of the most essential cloud security tools and what to look for in them to aid DevSecOps. That’s where SCA comes in. SCA takes a proactive approach to finding these risks early.

Data breaches 105

Data breaches Software Risk 105

Bleeping Computer

MARCH 21, 2024

Discover the best network monitoring tools. Find a system that provides both network device monitoring and traffic analysis. [.]

94

94

Penetration Testing

MARCH 11, 2024

STRIDE GPT STRIDE GPT is an AI-powered threat modeling tool that leverages OpenAI’s GPT models to generate threat models and attack trees for a given application based on the STRIDE methodology. Users provide application... The post STRIDE GPT: An AI-powered threat modeling tool appeared first on Penetration Testing.

Penetration Testing 103

Penetration Testing 103

SecureBlitz

APRIL 23, 2024

You can find a lot of PDF compressor tools when you […] The post GogoPDF: The Best Online Tool To Compress PDF appeared first on SecureBlitz Cybersecurity. If you have a large PDF file size, you can compress it to make it smaller to save space on your storage devices.

Cybersecurity 76

Cybersecurity 76

Security Affairs

MARCH 30, 2024

Red Hat warns of a backdoor in XZ Utils data compression tools and libraries in Fedora development and experimental versions. Red Hat urges users to immediately stop using systems running Fedora development and experimental versions because of a backdoor in the latest versions of the “xz” tools and libraries. rpm and xz-libs-5.6.0-2.fc40.x86_64.rpm

Authentication 132

Authentication Engineering Hacking Risk 132

Penetration Testing

MARCH 29, 2024

C2 Tracker Free to use IOC feed for various tools/malware. It started for just C2 tools but has morphed into tracking infostealers and botnets as well. ... The post C2 Tracker: Live Feed of C2 servers, tools, and botnets appeared first on Penetration Testing. It uses Shodan searches to collect the IPs....

Penetration Testing 98

Penetration Testing Malware 98

Penetration Testing

JANUARY 14, 2024

Pandora This is a red team tool that assists in gathering credentials from different password managers. This may work on... The post pandora: A red team tool to extract credentials from password managers appeared first on Penetration Testing.

Password Management 145

Password Management Passwords Penetration Testing 145

Bleeping Computer

FEBRUARY 15, 2024

The RansomHouse ransomware operation has created a new tool named 'MrAgent' that automates the deployment of its data encrypter across multiple VMware ESXi hypervisors. [.]

Encryption 136

Encryption Ransomware 136

The Hacker News

FEBRUARY 23, 2024

Microsoft has released an open access automation framework called PyRIT (short for Python Risk Identification Tool) to proactively identify risks in generative artificial intelligence (AI) systems.

Artificial Intelligence 119

Artificial Intelligence Risk 119

Penetration Testing

JANUARY 23, 2024

MCPTool – Pentesting tool for Minecraft Features See information of a server. Get the DNS records for... The post MCPTool: Pentesting tool for Minecraft appeared first on Penetration Testing. View player information. Get information about an ip address. Obtain the domains associated with an IP address.

Penetration Testing 81

Penetration Testing DNS 81

Centraleyes

MARCH 25, 2024

The Best Vendor Risk Management Tools in 2024 Selecting the top VRM vendors involves a rigorous evaluation process that assesses security features, user-friendliness, customer support, and overall effectiveness. It is a strong contender for organizations seeking continuous monitoring of vendor risk and cybersecurity tool effectiveness.

Risk 111

Risk Data collection Architecture Government 111

Security Affairs

APRIL 22, 2024

Russia-linked APT28 group used a previously unknown tool, dubbed GooseEgg, to exploit Windows Print Spooler service flaw. Microsoft reported that the Russia-linked APT28 group (aka “ Forest Blizzard ”, “ Fancybear ” or “ Strontium ” used a previously unknown tool, dubbed GooseEgg, to exploit the Windows Print Spooler flaw CVE-2022-38028.

Government 125

Government Education Phishing Malware 125