Emissary Panda / TG-3390 / BRONZE UNION / APT27 / CVE-2019-0604 to exploit SharePoint servers AntSword & Awen Webshell

Associated Group Descriptions Name TG-3390 Emissary Panda BRONZE UNION APT27 Iron Tiger LuckyMouse CVE-2019-0604 to exploit SharePoint servers to gain initial access to targeted networks. We would like to acknowledge the possibility of an overlap in the AntSword webshell, as we stated that Emissary Panda used China Chopper in the April attacks and AntSword and … Read more Emissary Panda / TG-3390 / BRONZE UNION / APT27 / CVE-2019-0604 to exploit SharePoint servers AntSword & Awen Webshell

SideWinder APT Group Exploiting CVE-2019-2215 Google Play App Camero, FileCrypt Manager, and callCam

SideWinder advanced persistent threat (APT) group, report Trend Micro’s Ecular Xu and Joseph Chen in a blog post. Sidewinder, a group detected by Kaspersky Labs in the first quarter of 2018, primarily targets Pakistani military infrastructure and has been active since at least 2012. Security researchers believe the threat group is associated with Indian espionage … Read more SideWinder APT Group Exploiting CVE-2019-2215 Google Play App Camero, FileCrypt Manager, and callCam

HUGE List of the best Linux Unix Windows HoneyPots Available for Download

Honeypots Database Honeypots Delilah – Elasticsearch Honeypot written in Python (originally from Novetta). ESPot – Elasticsearch honeypot written in NodeJS, to capture every attempts to exploit CVE-2014-3120. Elastic honey – Simple Elasticsearch Honeypot. HoneyMysql – Simple Mysql honeypot project. MongoDB-HoneyProxy – MongoDB honeypot proxy. MongoDB-HoneyProxyPy – MongoDB honeypot proxy by python3. NoSQLpot – Honeypot framework built on a NoSQL-style database. mysql-honeypotd – Low … Read more HUGE List of the best Linux Unix Windows HoneyPots Available for Download

Cowrie is a medium to high interaction SSH and Telnet honeypot UNIX Based

Download: https://github.com/cowrie/cowrie Cowrie is a medium to high interaction SSH and Telnet honeypot designed to log brute force attacks and the shell interaction performed by the attacker. In medium interaction mode (shell) it emulates a UNIX system in Python, in high interaction mode (proxy) it functions as an SSH and telnet proxy to observe attacker … Read more Cowrie is a medium to high interaction SSH and Telnet honeypot UNIX Based

WackoPicko Pen Testing Tool Web App is a website that contains known vulnerabilities

WackoPicko is a website that contains known vulnerabilities. It was first used for the paper Why Johnny Can’t Pentest: An Analysis of Black-box Web Vulnerability Scanners Docker Image I recently created a wackopicko docker image, which is just about the easiest way to run wackopicko. Simply run the following, which will map your local port 8080 to the port 80 in … Read more WackoPicko Pen Testing Tool Web App is a website that contains known vulnerabilities

Xtreme Vulnerable Web Application (XVWA)

XVWA is a badly coded web application written in PHP/MySQL that helps security enthusiasts to learn application security. It’s not advisable to host this application online as it is designed to be “Xtremely Vulnerable”. We recommend hosting this application in local/controlled environment and sharpening your application security ninja skills with any tools of your own … Read more Xtreme Vulnerable Web Application (XVWA)

Virtual Hacking Lab

A mirror of deliberately insecure applications and old softwares with known vulnerabilities. Used for proof-of-concept /security training/learning purposes. Available in either virtual images or live iso or standalone formats. Virtual Hacking Lab is a free software application from the Other subcategory, part of the Network & Internet category. The app is currently available in English … Read more Virtual Hacking Lab

Damn Vulnerable Windows

Publisher Description Download here: https://sourceforge.net/projects/dawn-vulnerability-windows/ Damn Vulnerable Windows (DVW) is a training and educational tool for IT security researchers and students. It aims to provide an insecure suite of Microsoft Windows platform packages with known security vulnerabilities which may be exploited in a lab Antivirus Information We did not scan Damn Vulnerable Windows for viruses, … Read more Damn Vulnerable Windows