06 Nov 2017
KRACK Detector is a Python script to detect possible KRACK attacks against client devices on your network. The script is meant to be run on the Access Point rather than the client devices. It listens on the Wi-Fi interface and waits for duplicate message 3 of the 4-way handshake. It then disconnects the suspected device,...
05 Nov 2017
Tulpar is a open source web vulnerability scanner for written to make web penetration testing automated.   Tulpar has the following features.   Sql Injection (GET Method) XSS (GET Method) Crawl E-mail Disclosure Credit Card Disclosure Whois Command Injection (GET Method) Directory Traversal (GET Method) File Include (GET Method) Server Information Technology Information X-Content-Type Check...
01 Nov 2017

Last month the popular torrent website The Pirate Bay caused some uproar by adding a Javascript-based cryptocurrency miner to its site with no opt-out option, utilizing visitors’ CPU power to mine Monero coins in an attempt to gain an extra source of revenue. Now D-Link has been caught doing the same, although there’s high chance that its…

24 Oct 2017

Highly advanced “Bad Rabbit” hits train stations, airport, and media. Bad Rabbit, a ransomware infection thought to be a new variant of Petya, has apparently hit a number of organisations in Russia and Ukraine. In a tweet, Russian cyber security firm Group-IB said that at least three media organisations in the country have been hit by encrypting…

23 Oct 2017

‘We’ve nothing to hide’: Kaspersky Lab offers to open up source code   Russian cybersecurity company Kaspersky Lab has unveiled to independent experts an unprecedented Global Transparency Initiative that will open its code. The audit is a bid to stave off US accusations the company is working for Russian security services. Kaspersky launches this initiative…

23 Oct 2017

With the release of Windows 10 Fall Creators Update last week, the “Controlled Folder Access” that Microsoft touted in June is now live for millions of users. As the name hints, the Controlled Folder Access feature allows users to control who can access certain folders. The feature works on a “block everything by default” philosophy,…

14 Oct 2017

Your OnePlus handset, running OxygenOS—the company’s custom version of the Android operating system, is collecting way more data on its users than it requires. A recent blog post published today by security researcher Christopher Moore on his website detailed the data collection practice by the Shenzhen-based Chinese smartphone maker, revealing that OxygenOS built-in analytics is…

13 Oct 2017

A new form of Android ransomware encrypts victims’ data and changes their PIN, making it almost impossible to get their files back without paying a ransom.Dubbed DoubleLocker by researchers at ESET who discovered it, the ransomware is spread as a fake Adobe Flash update via compromised websites. Once downloaded onto the device, the fake Adobe…

18 May 2017

If your PC has been infected by WannaCry – the ransomware that wreaked havoc across the world last Friday – you might be lucky to get your locked files back without paying the ransom of $300 to the cyber criminals. Adrien Guinet, a French security researcher from Quarkslab, has discovered a way to retrieve the…

15 May 2017
By now I am sure you have already heard something about the WannaCry ransomware, and are wondering what's going on, who is doing this, and whether your computer is secure from this insanely fast-spreading threat that has already hacked nearly 200,000 Windows PCs over the weekend. The only positive thing about this attack is that...