How to use the ObjDump tool with x86
Having access to an analysis tool when dealing with compiled executables is always useful. In Linux, ObjDump is one such tool, which can be used to extract information from object
Deception technologies: 4 tools to help you identify threats and mitigate risks
Introduction Deception technologies have come a long way from the days when honeypots were used to analyze attacker behavior. Today’s deception tools contain advanced features like automation and machine learning
Debugging your first x86 program
Debugging the compiled programs is one important aspect of learning x86 assembly language. When working with assembly programs, the only way to step through every single instruction written in the
How to build a program and execute an application entirely built in x86 assembly
In the previous article, we discussed an overview of common x86 instructions which can be used in writing assembly programs. With the knowledge we have gained so far, we are
J3rryBl4nks’s PEN-300 Approach
Guest post by J3rryBl4nks, OffSec student and OSCP holder My PEN-300 Approach My name is J3rryBl4nks. I have been in roles in information technology for 17 years. I started out
Using MITRE ATT&CK with cyber threat intelligence
The MITRE ATT&CK framework is a tool developed by the MITRE Corporation. It is designed to provide information about how a cyberattack works and the various means that an attacker
MITRE ATT&CK framework mitigations: An overview
The MITRE ATT&CK framework is a tool developed by the MITRE Corporation that is intended to help with understanding how cyberattacks can be performed. It takes the lifecycle of a
MITRE ATT&CK framework techniques, sub-techniques & procedures
The MITRE ATT&CK framework is a tool developed by the MITRE Corporation to aid understanding and discussion of cyberattacks. MITRE ATT&CK takes the cyberattack lifecycle and breaks it down into
How to Protect Your IoT from Cyberattacks
Read More: https://egs.eccouncil.org/blog/how-to-protect-your-iot-from-cyberattacks/
CloudGoat walkthrough series: EC2 server-side request forgery (SSRF)
This is the fifth in the walkthrough series of the CloudGoat scenarios. CloudGoat is a “vulnerable by design” AWS deployment tool designed by Rhino Security Labs. It is used to
In the shadow of SolarWinds: Personal reflections
Security Magazine | In the shadow of SolarWinds: Personal reflections | 2021-02-01 | Security Magazine This website requires certain cookies to work and uses other cookies to help you have
Email forensics: desktop-based clients
Emails are the most commonly used technology for exchanging messages between people/businesses using electronic media. With every technology, there comes a risk. This medium of message exchange has been used
What is a Honey Pot? [updated 2021]
Introduction: What is a Honeypot? Honeypots are special programs that are written for one purpose: to be exploited. Honeypots emulate the appearance of a vulnerability so that attackers, viruses and
Hacking clients with WPAD (web proxy auto-discovery) protocol [updated 2021]
In this tutorial, we’ll take a look at how we can hack clients in the local network by using WPAD (Web Proxy Auto-Discovery). The WPAD protocol allows automatic discovery of
CloudGoat walkthrough series: Remote code execution
This is the sixth in our walkthrough series of CloudGoat scenarios. CloudGoat is a “vulnerable by design” AWS deployment tool designed by Rhino Security Labs. It is used to deploy
New Exploit Development Course: EXP-301
When we announced our intention to retire our Cracking the Perimeter (CTP) course and revamp the OSCE certification, we also shared information about the courses which would replace it. Those
Mitigating Abuse of Android Application Permissions and Special App Accesses
Michael PeckJan 26 · 7 min read ATT&CK® for Mobile is an ATT&CK matrix of adversary behavior against mobile devices (smartphones and tablets running the Android or iOS/iPadOS operating systems).
Email forensics: Web-based clients
This article discusses how to perform forensic investigations of Web-based email clients. While many organizations use Desktop based email clients for their employees, it is not uncommon to use web
Email analysis
In this article, we will explore the fundamentals concepts associated with email that will help us to perform email analysis. We will begin by understanding the email structure and discuss
Investigating wireless attacks
In an earlier article, we discussed the fundamentals of wireless networks: the common types of wireless devices, terminology used, WLAN security types, 802.11 frame types and wireless traffic analysis using
Flutter based Mac OSX Thick Client SSL Pinning Bypass
During one of our recent thick client application penetration tests, Sanjay encountered a scenario where the application was built on top of a Flutter framework and had an SSL pinning check
Hacking communities in the deep web [updated 2021]
The role of hackers has changed over the years, in the past these professionals were viewed as dangerous criminals that needed to be kept at arm’s length; meanwhile today they
How to hack android devices using the stagefright vulnerability [updated 2021]
In July 2015, mobile-security firm Zimperium declared it discovered a high-severity vulnerability inside the Android operating system. The critical flaw exists in a core component named “StageFright,” a native media playback
The art of targeted phishing: How not to get hooked
Security Magazine | The art of targeted phishing: How not to get hooked | 2021-01-01 | Security Magazine This website requires certain cookies to work and uses other cookies to
Phishing domain lawsuits and the Computer Fraud and Abuse Act
Introduction The worlds of trademark law and marketing seem to be constantly at odds with each other, occasionally collapsing into a court of law where they battle for not-insignificant amounts
MITRE Shield: An active defense and adversary engagement knowledge base
Introduction When it comes to collecting tips, tricks and workarounds, it is easy to see quickly that certain concepts and methods are strong against particular setups, while others are weak.
What the Cybersecurity Landscape Looks Like in 2021
Trend Micro – The COVID-19 pandemic shifted many enterprises into a new way of working, forcing a fast and swift implementation of new systems and policies to facilitate remote work.
Identifying UNC2452-Related Techniques for ATT&CK
Matt MaloneDec 22, 2020 · 4 min read By Matt Malone (MITRE), Jamie Williams (MITRE), Jen Burns (MITRE), and Adam Pennington (MITRE) Last updated 19 April 2021 12:00pm EDT Reporting
CloudGoat walkthrough series: Lambda Privilege Escalation
This is the third in our walkthrough series of CloudGoat scenarios. CloudGoat is a “vulnerable by design” AWS deployment tool designed by Rhino Security Labs. It is used to deploy
What are smart contracts?
What are Smart Contracts Let’s understand what Smart Contracts are using a simple example. Consider the purchase of cookies from a vending machine. The one who wants to buy the
Introduction to blockchain consensus algorithms
What is Blockchain A blockchain is a record of digital transactions. It is a distributed software network which can function both as a digital ledger and as a mechanism allowing
OffSec 2020 Recap
2020 has been quite a year, hasn’t it? It’s been challenging in so many ways, but it was also exciting for us at OffSec. We thrive on bringing new training
OffSec 2020 Recap
2020 has been quite a year, hasn’t it? It’s been challenging in so many ways, but it was also exciting for us at OffSec. We thrive on bringing new training
Generating Text Using ML
Most of us have that one TV show that we want to see just one more episode of. Just one more reunion or reboot or movie to finish off a
Setting up a virtual lab for cybersecurity data science
“Giant Rabbit uses Carrot Smash. You take 9999 damage. Game over.” “Aww! All right, this time I’ll get it for sure.” “Do you want to reload your last save?” “YES.”
Information security strategy for the hybrid and multi-cloud
Cloud computing is omnipresent, and most organizations are opting for a model that combines several types of cloud infrastructure: private and public cloud (known as hybrid cloud) or public clouds
CloudGoat walkthrough series: Cloud Breach S3
This is the second in the walkthrough series of the CloudGoat scenarios. CloudGoat is a “vulnerable by design” AWS deployment tool designed by Rhino Security Labs. It is used to
Vulnerability Assessment: 6 Best Steps to Better Security
Read More: https://egs.eccouncil.org/blog/vulnerability-assessment-6-best-steps-to-better-security/
CloudGoat walkthrough series: IAM privilege escalation by rollback
This is the first in the walkthrough series of the CloudGoat scenarios. CloudGoat is a “vulnerable by design” AWS deployment tool designed by Rhino Security Labs. It is used to
Working with CloudGoat: The “vulnerable by design” AWS environment
Introduction Many organizations today are leveraging the cloud to transform their business. However, the adoption of cloud technology introduces associated risks, security and privacy concerns. One of these risks are misconfigured
How to Secure Firewalls Through Penetration Testing
Read More: https://egs.eccouncil.org/blog/how-to-secure-firewalls-through-penetration-testing/
Mind the gap: Diversity & other challenges in the age of AI
Security Magazine | Mind the gap: Diversity & other challenges in the age of AI | 2020-12-01 | Security Magazine This website requires certain cookies to work and uses other
The Future of Cloud Security
Trend Micro – Lockdown has accelerated the use of cloud technologies throughout the business world, and it looks like there’s no going back. Mark Nunnikhoven, VP of Cloud Research at
Beat Cybercriminals at Their Own Game
Trend Micro – According to Gartner, vulnerability exploitation is the cause of most information security breaches, and any breach can harm your business, diminish customer trust, impact revenue, and depress
Advanced cryptography in blockchain
Blockchain is Built with Cryptography Blockchain technology is revolutionary. It provides a completely different way of accomplishing a wide range of tasks, which has led to its widespread adoption. However,
7 Steps of the MITRE ATT&CK®-based Analytics Development Method
What is the MITRE ATT&CK®-based analytics development method? The MITRE ATT&CK-based analytics development method is a process of using red and blue team engagements to develop and improve the analytics
How to Use MITRE ATT&CK® to Map Defenses and Understand Gaps
Developing detection and prevention controls for techniques in the enterprise matrix The MITRE ATT&CK® framework is a useful way to standardize cybersecurity terminology and provides a framework for organizations to
Using MITRE ATT&CK®-based analytics for threat detection: 5 principles
MITRE ATT&CK-based threat detection vs. conventional methods A number of traditional methods for threat detection exist; however, cyber threat actors have developed methods for evading these, such as: Tool Testing: