GitHub

CVE-2011-2523 — vsftpd 2.3.4 Backdoor Exploit

In June 2011, the official vsftpd download server (hosted on SourceForge) was compromised. An attacker replaced the legitimate vsftpd 2.3.4 source code with a backdoored version. Any server that ...
GitHub

Shells&Payloads.md

xfreerdp /v:10.129.x.x /u:htb-student /p:HTB_@cademy_stdnt! CLI-based tool used to connect to a Windows target using the Remote Desktop Protocol use exploit/windows ...
unb.ca

CSE-CIC-IDS2018 on AWS

Anomaly detection has been the main focus of many researchers’ due to its potential in detecting novel attacks. However, its adoption to real-world applications has been hampered due to system ...
Bleeping Computer

BPFDoor: Stealthy Linux malware bypasses firewalls for remote access

A recently discovered backdoor malware called BPFdoor has been stealthily targeting Linux and Solaris systems without being noticed for more than five years. BPFDoor is a Linux/Unix backdoor that ...
CSOonline

Stealthy Linux implant BPFdoor compromised organizations globally for years

Malware researchers warn about a stealthy backdoor program that has been used by a Chinese threat actor to compromise Linux servers at government and private organizations around the world. While the ...
Network World

10 essential Linux tools for network and security pros

Open source security frameworks help enterprises stay one step ahead of attackers by facilitating penetration testing and vulnerability assessments on wired and wireless networks. Picking just 10 ...
pentestpartners.com

How to create poisoned Office documents for your staff awareness training – part 1

how a poisoned MS Office document can be used to give a connect-back foothold to an attacker. At 1:57 long it couldn’t really explain the details of such an attack so here is a much more granular look ...