A likely AI-generated PowerShell script mapped Active Directory after an attacker gained RDP access to a Windows Server with ...
These tools are designed for educational purposes and security research only. Use them responsibly and only on accounts you own or have explicit permission to test.
In Operation Muck and Load, over 200 GitHub repositories serve a Go module that leads to Windows malware infections.
A fileless malware framework is abusing Google’s Blogspot platform to deliver PureLog Stealer directly into computer memory, sharpening concerns that trusted web services are being turned into staging ...
The ransomware’s use of trusted administrative tools and recovery-disruption tactics shows why containment, not just endpoint ...
description: The following analytic detects the execution of PowerShell scripts containing Base64 encoded content, specifically identifying the use of `FromBase64String`. It leverages PowerShell ...
A malicious npm package has been caught impersonating one of the JavaScript ecosystem's most widely used build tools. The lookalike package hid a multi-stage Windows remote access trojan (RAT) in a ...
Cybersecurity researchers have flagged multiple ClickFix campaigns that deliver three malware loaders called BabaDeda Loader, Lorem Ipsum Loader, and Potemkin, per independent reports from Morphisec, ...