What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2019-11-11 15:44:16 | CERTrating a new Tool to evaluate CERT/CSIRT maturity level (lien direct) | The Global Cyber Security Center has developed a tool named CERTrating to evaluate the Maturity Level of CERTs and services provided to the Constituency Cyber-attacks that have occurred in recent years have fully confirmed that Cybersecurity is an increasingly complex challenge that represents a priority for all companies both in terms of development and investments. […] | Tool | ||
|
2019-11-08 11:01:36 | Capesand is a new Exploit Kit that appeared in the threat landscape (lien direct) | A recently discovered exploit kit dubbed Capesand is being involved in live attacks despite the fact that it's still under development. In October 2019, researchers at TrendMicro discovered a new exploit kit dubbed Capesand that is being involved in live attacks. The tool was discovered while analyzing a malvertising campaign employing the RIG EK to […] | Tool Threat | ||
 |
2019-11-07 21:02:02 | How to install applications from the command line in CentOS 8 (lien direct) | The default package manager for CentOS 8 has migrated from yum to dnf. Find out how this tool is used. | Tool | ||
|
2019-11-07 16:14:32 | 11 items project managers should include in a Problem Identification and Tracking document (lien direct) | A Problem Identification and Tracking document is an essential tool for every project. Learn what to include in the document to help your team manage and reduce project risks. | Tool | ||
 |
2019-11-07 03:07:00 | Best Android antivirus? The top 9 tools (lien direct) | The following are the nine best business-class antivirus tools for Android, according to AV-TEST's September 2019 evaluations of 19 Android security apps. (The AV-TEST Institute is a Germany-based independent service provider of IT security and antivirus research.)AV-TEST rates each tool for three areas: protection (six points max), performance (six points max), and usability (six points max). The products listed here all had perfect scores of 18.[ Learn how SandBlast Mobile simplifies mobile security. | Get the latest from CSO by signing up for our newsletters. ] | Tool | ||
 |
2019-11-05 21:13:00 | Kamerka OSINT tool shows your country\'s internet-connected critical infrastructure (lien direct) | Kamerka lets you see what a hacker sees. It plots maps with SCADA equipment, webcams, and printers that have been left exposed on the internet inside any given country. | Tool | ||
|
2019-11-05 06:29:03 | Flaws in Able2Extract Professional tool allow hacking targeted machine with malicious image files (lien direct) | Researchers found serious flaws in Investintech's Able2Extract Professional tool that could be exploited to execute arbitrary code using specially crafted image files. The Able2Extract Professional has over 250,000 licensed users across 135 countries, it allows them to view, convert and edit PDF files. Cisco Talos experts discovered two high-severity memory corruption vulnerabilities that can be […] | Tool | ||
 |
2019-11-01 15:21:01 | Sooty – SOC Analyst All-In-One CLI Tool (lien direct) |  Sooty is a tool developed with the task of aiding a SOC analyst to automate parts of their workflow and speed up their process.
The main goal of Sooty is to perform as much of the routine checks as possible which allows the analyst more time to spend on deeper analysis.
Features of Sooty SOC Analyst CLI Tool
Sanitise URL's to be safe to send in emails
Perform reverse DNS and DNS lookups
Perform reputation checks from:
VirusTotal
BadIP's
Abuse IPDB
Check if an IP address is a TOR exit node
Decode Proofpoint URL's, UTF-8 encoded URLS, Office SafeLink URL's and Base64 Strings
Get file hashes and compare them against VirusTotal (see requirements)
Perform WhoIs Lookups
Check Usernames and Emails against HaveIBeenPwned to see if a breach has occurred.
Read the rest of Sooty – SOC Analyst All-In-One CLI Tool now! Only available at Darknet.
|
Tool | ||
 |
2019-10-31 13:51:11 | Chinese Hackers Steal SMS Messages from Linux Routing Servers (lien direct) | Chinese hackers deployed a new cyber-espionage tool on Linux servers belonging to a telecommunications network provider to steal SMS message content for specific recipients. [...] | Tool | ||
 |
2019-10-31 08:00:00 | Messagetap: Qui lit vos messages texte? MESSAGETAP: Who\\'s Reading Your Text Messages? (lien direct) |
Fireeye Mandiant a récemment découvert une nouvelle famille de logiciels malveillants utilisé par APT41 (un groupe APT chinois) conçu pour surveiller et enregistrer le trafic SMS à partir de numéros de téléphone spécifiques, de numéros IMSI et de mots clés pour le vol ultérieur.Nommé Messagetap, l'outil a été déployé par APT41 dans un fournisseur de réseaux de télécommunications à l'appui des efforts d'espionnage chinois.Les opérations d'APT41 \\ ont inclus des missions de cyber-espionnage parrainées par l'État ainsi que des intrusions financièrement motivées.Ces opérations se sont déroulées depuis 2012 à nos jours.Pour un aperçu de l'APT41, consultez notre Août 2019 Blog Post ou | Malware Tool | APT 41 | ★★★ |
 |
2019-10-30 16:59:04 | Facebook builds tool to confound facial recognition (lien direct) | However, the social network harbors no plans to deploy the technology in any of its services any time soon | Tool | ||
|
2019-10-30 15:34:12 | Emsisoft released a free decryption tool for Paradise ransomware (lien direct) | Researchers at Emsisoft firm has released a new free tool to decrypt files encrypted by the Paradise ransomware Security experts at Emsisoft have developed a tool to decrypt files encrypted by the Paradise ransomware. This ransomware family encrypts files using Salsa20 and RSA-1024 and it appends several extensions to theis filenames. “The Paradise ransomware encrypts […] | Ransomware Tool | ||
|
2019-10-30 14:14:36 | Python support added to Threat Stack\'s Application Security Monitoring tool (lien direct) | The utility can identify insecure code in production from third-party packages as well as original code. | Tool Threat | ||
|
2019-10-29 15:05:10 | Microsoft Updates Windows 10 PowerToys with Batch Renamer Tool (lien direct) | Microsoft updated the open-source PowerToys toolset for Windows 10 with a new utility named PowerRename that will allow users to batch rename large file collections. [...] | Tool | ||
 |
2019-10-28 13:00:00 | Lessons learned conducting an information security risk assessment (lien direct) |
In an age where businesses are relying more than ever on the rapid advancements in technology to drive innovation, strategy, growth and competitive advantage, it is clear the prevalence of technology is not slowing down. But the increase in new devices and systems that utilize connectivity, as well as the transition to the network of devices and systems that were traditionally air-gapped, brings with it an increased cybersecurity risk.
Organizations large and small are attempting to defend against a constant barrage of potentially damaging cybersecurity attacks and struggling to keep up. Increasingly, they are finding that the best approach is taking a proactive, risk-based approach. By repeatedly conducting risk assessments, a holistic understanding of the organization’s risk landscape can be developed, and gaps that exist between people, processes and technology can be utilized to develop a prioritized roadmap for managing and tracking risk over time. The organizations gain the ability to make informed business decisions and move away from a reactive, whack-a-mole approach to cybersecurity.[endif]---->
Policies and procedures are the foundation
Strong cybersecurity policies and procedures are the foundation of a robust security program. A risk assessor can glean a significant amount of insight into the maturity of an organization’s cybersecurity program simply by looking at a few key areas of cybersecurity policies and procedures, such as those areas identified in the graphic below. They allow the assessor to gain valuable insight on the culture of cybersecurity within the organization, the reporting structure within the organization, the types of technologies present within the organization, and ultimately allows the assessor to drive discovery of information efficiently. This quick and efficient information discovery is especially important for external assessors or those that don’t already have an intimate understanding of the organization.
Documentation is not implementation
Having a strong cybersecurity posture on paper does not mean much if it is not implemented. It’s why conducting interviews of personnel is so important in a risk assessment and why the phrase “Trust but verify” is often half-facetiously repeated by cybersecurity professionals.
When seeking to verify through conducting interviews, it’s tempting to simply go down a list of specific and tailored questions, likely from a framework or compliance standard. Questions like “Does your organization implement a cybersecurity training and awareness training program?”, are to the point, brief, and answer the question asked by the assessment framework, but are not the best way to conduct interviews. Risk assessments are not audits and getting a yes/no answer to a question is not nearly as valuable as taking the time to develop a comprehensive understanding. By having a guided cybersecurity conversation and not simply going through a list of questions, an assessor is able to glean more information on an organization’s risk and develop more valuable findings and recommendations.
Start broad and go narrow
When conducting interviews, start at a ten-thousand-foot level of the topic being discussed, then use the framework as a general guide to steer the conversation and narrow down on specifics. As seen in the below example, the risk assessor should first ask open-ended questions that allow the interviewee a chance to explain the topic in-depth. This allows for a less restrictive and narrow-minded conversation and gives a potential view into how the topic at hand fits into the entire business.
|
Tool | ||
|
2019-10-25 13:34:46 | MWC19 Los Angeles: Blockchain\'s role in the 5G movement (lien direct) | Blockchain is a powerful security tool for mobile providers. Here's how to unlock its potential. | Tool | ★★ | |
|
2019-10-22 22:03:24 | Google Chrome 78 is out: Forced dark mode, DoH trials, no more XSS Auditor (lien direct) | Password Checkup tool makes its debut and the New Tab page gets more customization features. | Tool | ||
 |
2019-10-22 09:12:26 | (Déjà vu) Chinese hackers use malware to backdoor Microsoft SQL servers (lien direct) | New malware created by Chinese-backed Winnti Group has been discovered by researchers at ESET while being used to gain persistence on Microsoft SQL Server (MSSQL) systems. The new malicious tool dubbed skip-2.0 can be used by the attackers to backdoor MSSQL Server 11 and 12 servers, enabling them to connect to any account on the server using a so-called “magic password” and […] | Malware Tool | ||
 |
2019-10-22 04:50:06 | Stealthy Microsoft SQL Server Backdoor Malware Spotted in the Wild (lien direct) | Cybersecurity researchers claim to have discovered a previously undocumented backdoor specifically designed for Microsoft SQL servers that could allow a remote attacker to control an already compromised system stealthily.
Dubbed Skip-2.0, the backdoor malware is a post-exploitation tool that runs in the memory and lets remote attackers connect to any account on the server running MSSQL version |
Malware Tool | ||
|
2019-10-21 13:00:00 | Reviewing best practices for IT asset management in the cloud (lien direct) |
It used to be that businesses needing their own large computer networks had to do everything themselves. They had to buy all of their servers, all of their networking appliances. They needed the physical space on premises for all of their datacenters, the HVAC people to keep everything cool, and the massive electricity bills to keep all of that going.
But in the past several years, the growth of cloud services has been exponential. It’s great for the enterprise because depending on a business’s specific needs, they can either have everything but their local area network on the cloud, or they can have some hybrid of their own on premises network and a cloud provider or two, fully integrated. Either way, they can put at least some of their networking needs in the hands of a cloud provider such as AWS, Microsoft Azure, or Google Cloud. That can save a company a lot of time, labor, space, and money. Plus, the agility and flexibility that cloud providers offer is great! Do you need to double the data capacity of your network as soon as possible? It’s much quicker and easier to change your cloud provider plan and do some adjustments on your end than it is to double the size of your on prem network. The cloud can be a lifesaver, but your IT people still need to know how to manage their computing assets there, especially when it comes to cybersecurity. Cloud asset management is a special matter, and it’s absolutely vital to understand.
What is cloud asset management?
Your IT assets are the hardware, software, and networking entities that your company has as tools and resources for their objectives. An excellent example of an IT asset is a database. Databases are very important, particularly in the backend of your applications.
With the implementation of cloud networks, these IT assets become cloud assets too. So instead of having your MySQL databases entirely on your on premises servers and data storage, you can have them run from the server and data storage capacity that your cloud provider offers your business.
But making sure your cloud-hosted assets function well and maintain security is its own area of knowledge: cloud asset management. There are challenges involved in cloud asset management which differ from managing assets on your own infrastructure. For instance, developers and administrators often don’t use the security tools that their cloud providers offer them. Also, visibility into your assets can be more difficult in the cloud. You can’t secure what you can’t see!
Cloud asset management best practices
There’s a lot to learn when it comes to cloud asset management. It can seem overwhelming to start. Thankfully, there are some best practices to keep in mind which will provide you with a strong foundation for properly handling the cloud.
Monitor your cloud as thoroughly as possible
As I mentioned, visibility in cloud networks can be a special challenge. There’s also the everyday performance of your network to consider. You won’t be physically inside of your cloud provider’s datacenter, so you’ll need to be able to see as much as possible with monitoring tools. This isn’t all directly security related. You need to make sure that your provider honors your Service Level Agreement. Watch your bandwidth and make sure that it suits your organization’s needs at all times. Make sure all of your cloud assets have excellent availability, as much uptime as possible. You could have thousands of users depending on your cloud at any given second. Monitor thoroughly and constantly to make sure that your cloud is always capable and reliable.
Redundancy and automation are your friends
Redundancy goes a long way when it comes to keeping good uptime and everything working properly. There should be as few single points of failure as possible, preferably no |
Tool Guideline | ★★★★★ | |
 |
2019-10-20 12:00:00 | Computers Are Learning to Read-But They\'re *Still* Not So Smart (lien direct) | A tool called BERT can now outperform us on advanced reading-comprehension tests. It's also revealed how far AI has to go. | Tool | ||
|
2019-10-19 07:36:45 | Emsisoft released a free decryption tool for the STOP (Djvu) ransomware (lien direct) | Emsisoft firm has released a new free decryption tool the STOP (Djvu) ransomware, in the last months the research team helped victims of many other threats. STOP (Djvu) ransomware has 160 variants that infected more hundreds of thousands of victims worldwide. Experts estimated a total number of 460,000 victims, that makes this threat the most […] | Ransomware Tool Threat | ||
 |
2019-10-17 16:25:00 | Debug Feature in Web Dev Tool Exposed Trump Campaign Site, Others to Attack (lien direct) | The problem is not with the tool itself but with how some developers and administrators are using it, Comparitech says. | Tool | ||
 |
2019-10-16 13:28:59 | iPhone Jailbreak Fraud Attack – Immediate Implications (lien direct) | A malicious website posing as checkrain.com was launched by hackers this week, which poses as the real site that researchers are building to modify and jailbreak iPhones. The fake site instead launches a hacking tool that tries to take over affected devices. The ISBuzz Post: This Post iPhone Jailbreak Fraud Attack – Immediate Implications | Tool | ||
 |
2019-10-15 15:51:50 | Instagram clamps down on fake messages with anti-phishing tool (lien direct) |
We take a look at a new anti-phishing feature Instagram hopes will cut down on imitation messages and other social engineering attempts.
Categories:
Social engineering
Tags: anti-phishinganti-phishing toolemailemails from instagramInstagrammailmalicious emailmalspamphishingphishing scamssafetyscamsSocial Engineeringsocial engineering attackssocial media scams
(Read more...)
|
Tool | ||
 |
2019-10-15 11:00:23 | 11 Stats on CISO Spending to Inform Your 2020 Cybersecurity Budget (lien direct) | A bigger cybersecurity budget is a tool to address security risks, business needs and industry changes. Here are 11 statistics on CISO spending to help inform your 2020 cybersecurity budget. | Tool | ||
|
2019-10-11 13:46:32 | Researchers released a free decryptor for the Nemty Ransomware (lien direct) | Good news for the victims of the Nemty Ransomware, security researchers have released a free decryptor that could be used to recover files. I have great news for the victims of the recently discovered Nemty Ransomware, security researchers have released a free decryptor tool that could be used to recover files. In mid-August, the Nemty […] | Ransomware Tool | ||
|
2019-10-10 07:00:00 | Mahalo Fin7: Répondre aux opérateurs criminels \\ 'de nouveaux outils et techniques Mahalo FIN7: Responding to the Criminal Operators\\' New Tools and Techniques (lien direct) |
Au cours de plusieurs engagements récents de réponse aux incidents, les enquêteurs de FireEye Mandiant ont découvert de nouveaux outils dans l'arsenal de logiciels malveillants de Fin7 \\ et ont suivi le rythme comme Les opérateurs criminels mondiaux tentent de nouvelles techniques d'évasion.Dans ce blog, nous révélons deux des nouveaux outils de Fin7 \\ que nous avons appelés boostwrite et rdfsniffer.
Le premier des nouveaux outils de Fin7 \\ est Boostwrite & # 8211;Un compte-gouttes uniquement en mémoire qui décrypte les charges utiles intégrées à l'aide d'une clé de chiffrement récupérée à partir d'un serveur distant lors de l'exécution.FIN7 a été observé apporter de petits changements à cette famille de logiciels malveillants en utilisant plusieurs méthodes pour éviter l'antivirus traditionnel
During several recent incident response engagements, FireEye Mandiant investigators uncovered new tools in FIN7\'s malware arsenal and kept pace as the global criminal operators attempted new evasion techniques. In this blog, we reveal two of FIN7\'s new tools that we have called BOOSTWRITE and RDFSNIFFER. The first of FIN7\'s new tools is BOOSTWRITE – an in-memory-only dropper that decrypts embedded payloads using an encryption key retrieved from a remote server at runtime. FIN7 has been observed making small changes to this malware family using multiple methods to avoid traditional antivirus |
Malware Tool | ★★★ | |
 |
2019-10-08 13:45:04 | Code Execution Vulnerability Impacts NSA Reverse Engineering Tool (lien direct) | Versions through 9.0.4 of the Ghidra software reverse engineering (SRE) framework are impacted by a code-execution vulnerability, the National Security Agency (NSA) has revealed. | Tool Vulnerability | ||
|
2019-10-08 09:05:58 | New Tool Introduced on Instagram to Prevent Phishing Attacks (lien direct) | Instagram has added a new feature to its app to help users work out if an email was sent by the Facebook company or if it's an attempted phishing scam. Now, if you receive an email claiming to be from Instagram, you can check if it's genuine by heading over to the “Emails from Instagram” […] | Tool | ||
|
2019-10-07 07:46:46 | LambdaGuard – AWS Lambda Serverless Security Scanner (lien direct) |  LambdaGuard is a tool which allows you to visualise and audit the security of your serverless assets, an open-source AWS Lambda Serverless Security Scanner.
AWS Lambda is an event-driven, serverless computing platform provided by Amazon Web Services. It is a computing service that runs code in response to events and automatically manages the computing resources required by that code.
LambdaGuard is an AWS Lambda auditing tool designed to create asset visibility and provide actionable results.
Read the rest of LambdaGuard – AWS Lambda Serverless Security Scanner now! Only available at Darknet.
|
Tool | ||
|
2019-10-04 10:27:00 | Google has launched password security checkup tool (lien direct) | Google has added a new feature to its password manager that will study a person's passwords and then inform them on its strength and whether it has been compromised. Password Checkup will not only check a user's personal choices, but also make personalized recommendations, wrote Andreas Tuerk, product manager for Password Manager. The three primary areas Checkup […] | Tool | ||
|
2019-10-03 15:46:01 | Researcher Shows How Adversaries Can Gather Intel on U.S. Critical Infrastructure (lien direct) | A researcher has used a free tool that he created and open source intelligence (OSINT) to demonstrate how easy it is for adversaries to gather intelligence on critical infrastructure in the United States. | Tool | ||
 |
2019-10-03 11:16:00 | 14th November – Are you ready to reduce your IT infrastructure complexity & costs exponentially? (lien direct) | Critical security solutions such as a SIEM can be burdensome to maintain: writing queries, gaining situational awareness while having valuable analytics and keeping track of emerging threats becomes increasingly challenging. By definition, a great SIEM tool improves threat detection and response with real-time data analysis, early detection of data breaches, data collection, data storage and [...] | Tool Threat | ||
|
2019-10-03 09:15:56 | 24th October – Find out how LogPoint SIEM disrupts the industry and why this should interest you greatly. (lien direct) | By definition, a great SIEM tool improves threat detection and response with real-time data analysis, early detection of data breaches, data collection, data storage and reporting. How can organizations be digitally innovative, compliant and effective, while keeping data safe? The value of your IT system and business increases dramatically when you put that data into [...] | Tool Threat | ||
|
2019-10-03 09:05:20 | Sodinokibi Ransomware building an all-star team of affiliates (lien direct) | Stalkware is being installed on more and more victims’ devices, and the trend is only accelerating, according to a new report. When spouses, colleagues, domestic partners, and random strangers install software to spy on a victim, the “stalkerware” can be a disturbing tool of abuse. And it’s a tool that’s part of a problem that […] | Ransomware Tool | ★★★ | |
|
2019-10-03 09:05:00 | (Déjà vu) \'Password Checkup\' Google Tool announces when passwords are leaked (lien direct) | The feature will check the strength of saved passwords and alert users when they’re compromised in a breach. Google is building a “password checkup” tool into its account controls to improve password habits by telling people if their passwords are weak and when they have been compromised. This marks an expansion of Google’s Password Checkup […] | Tool | ||
|
2019-10-02 15:16:09 | Google Expands Use of Password Checkup Tool, Unveils New Privacy Features (lien direct) | Google on Wednesday announced that its Password Checkup tool has been added to the Account password manager, and the company has unveiled some new security and privacy features for YouTube, Maps and Assistant. | Tool | ||
|
2019-10-02 13:15:00 | Google\'s \'Password Checkup\' Tool Tells You When Passwords Are Leaked (lien direct) | The feature will check the strength of saved passwords and alert users when they're compromised in a breach. | Tool | ||
|
2019-10-02 08:00:00 | ReliaQuest Acquires Threatcare (lien direct) | Attack simulation tool will be integrated into ReliaQuest's GreyMatter platform. | Tool | ||
|
2019-09-30 13:25:07 | New Anomali Tool Finds Threat Data in News, Blogs, Social Networks (lien direct) | Threat intelligence firm Anomali on Monday announced the launch of Lens, a new tool designed to make it easier for organizations to find and use threat data from a wide range of sources. | Tool Threat | ||
|
2019-09-30 03:00:00 | Marriott data breach FAQ: How did it happen and what was the impact? (lien direct) | In late 2018, the Marriott hotel chain announced that one of its reservation systems had been compromised, with hundreds of millions of customer records, including credit card and passport numbers, being exfiltrated by the attackers. While Marriott has not disclosed the full timeline or technical details of the assault, what we do know tells us quite a bit about the current threat landscape - and offers lessons for other enterprises on how to protect themselves.We answer 10 frequently asked questions.When was the Marriott breach? On September 8, 2018, an internal security tool flagged as suspicious an attempt to access the internal guest reservation database for Marriott's Starwood brands, which include the Westin, Sheraton, St. Regis, and W hotels. This prompted an internal investigation that determined, through a forensics process that Marriott has not discussed in detail, that the Starwood network had been compromised sometime in 2014 - back when Starwood had been a separate company. Marriott purchased Starwood in 2016, but nearly two years later, the former Starwood hotels hadn't been migrated to Marriott's own reservation system and were still using IT infrastructure inherited from Starwood, an important factor that we'll revisit in more detail later. | Data Breach Tool Threat | ||
|
2019-09-27 20:24:35 | How to install and use the Cryptomator encryption tool (lien direct) | Looking for a user-friendly encryption tool? Look no further than the open source Cryptomator. | Tool | ||
|
2019-09-27 15:31:23 | How to deploy the Netbox network documentation/management tool with Docker (lien direct) | Deploying a network management/documentation tool is made simple with Docker. | Tool | ||
|
2019-09-27 09:33:26 | Emsisoft released a new free decryption tool for the Avest ransomware (lien direct) | Emsisoft security firm has released a new free decryption tool for the Avest ransomware, a few days after the release of WannaCryFake decryptor. Emsisoft security firm has released a new free decryption tool for the Avest ransomware, a few days ago the researchers also released a free decryptor for the WannaCryFake ransomware. The Avest ransomware […] | Ransomware Tool | Wannacry | |
|
2019-09-26 21:03:08 | How to deploy the Kubernetes WebUI with MicroK8s (lien direct) | Looking for a web-based tool to manage Microk8s? Look no further than the Kubernetes dashboard. | Tool | Uber | |
|
2019-09-26 07:01:34 | Emsisoft releases a free decryptor for the WannaCryFake ransomware (lien direct) | Researchers at Emsisoft security firm have released a new free decryption tool for the WannaCryFake ransomware. Good news for the vicitms of the WannaCryFake ransomware, researchers at Emsisoft have released a FREE decryption tool that will allow decrypting their data. WannaCryFake is a piece of ransomware that uses AES-256 to encrypt a victim's files. The […] | Ransomware Tool | Wannacry | |
|
2019-09-24 10:00:00 | How Amateur Video Is Helping Us Understand Deadly Tsunamis (lien direct) | In 2004, when a tsunami devastated communities in southern Asia, videos shot by tourists and locals became a new tool for analyzing the deadly waves. | Tool | ||
|
2019-09-23 19:52:40 | Virtual Reality: A new tool in the fight against addiction (lien direct) | TechRepublic's Karen Roby spoke with a recovery center in Kentucky that is using VR to help clients facing drug and alcohol addiction. | Tool | ||
|
2019-09-23 05:59:19 | exe2powershell – Convert EXE to BAT Files (lien direct) |  exe2powershell is used to convert EXE to BAT files, the previously well known tool for this was exe2bat, this is a version for modern Windows.
This will convert any binary file (*.exe) to a BAT file, the resulting BAT file contains only echo commands followed by a PowerShell command to re-create the original binary file.
This kind of tool can be useful during a pen-test when you want to trigger a shell without any upload feature.
Read the rest of exe2powershell – Convert EXE to BAT Files now! Only available at Darknet.
|
Tool |
To see everything:
Our RSS (filtrered)
