[Hack and Security] Cookies

24.02.2016

Семплы / источники малвари.

Ресурсы с семплами вредоносных файлов:

Secubox Labs
VX Vault
Malekal
MalwareBlacklist
Feodo Tracker
ZeuS Tracker
SpyEye Tracker
Palevo Tracker
SafeGroup
Clean MX
Malc0de
Malware Domain List
NovCon Minotaur

Зарубежные блоги ресерчиров:

OPEN »
на 18:11
Отправить по электронной почтеНаписать об этом в блогеПоделиться в XОпубликовать в FacebookПоделиться в Pinterest
hashs: analysis, hack, malware

23.02.2016

Twitter sec memories #5 [23.02.16] (PSMSF/MODBUS/Pin/pentestly/foolav)

Python and Powershell internal penetration testing framework


https://github.com/praetorian-inc/pentestly

PSMSF 
create powershell shell code used in cmd console with Metasploit Framework

OPEN »
на 16:48
Отправить по электронной почтеНаписать об этом в блогеПоделиться в XОпубликовать в FacebookПоделиться в Pinterest
hashs: analysis, hack, malware, metasploit, security, TWITTER_SEC_MEMORIES
Следующие Предыдущие Главная страница
Подписаться на: Сообщения (Atom)
search инфы по блогу:
Friends :) - vxlab.info

hash

security (61) malware (49) hack (45) forensic (24) analysis (22) install (19) APT (18) exploit (16) linux (16) payload (15) fireeye (14) windows (14) scanner (12) vulnerability (12) metasploit (11) vmware (9) ex (8) wifi (8) botnet (7) shell (7) TWITTER_SEC_MEMORIES (5) brute (5) framework (5) password (5) sandbox (5) sniff (5) xss (5) beef (4) fx (4) mitm (4) nx (4) puppet (4) rat (4) vm (4) UA (3) blogs (3) burpsuite (3) fortinet (3) injection (3) juniper (3) log (3) mail (3) openssl (3) phish (3) proxy (3) python (3) reverse (3) ssh (3) tcpdump (3) tor (3) android (2) arbor (2) cookie (2) ddos (2) docker (2) dos (2) fakeap (2) hask (2) ids (2) my_preza (2) nginx (2) owasp (2) scada (2) server (2) srx (2) web (2) wps (2) yara (2) SOC (1) ansible (1) armitage (1) audit (1) balance (1) bash (1) bcc (1) centos (1) cheat (1) cisco (1) cloud (1) cobaltstrike (1) copy (1) coreos (1) ctf (1) darknet (1) database (1) debian (1) delete (1) docs (1) dpkg (1) elk (1) eset (1) exel (1) forums (1) freenas (1) fuzz (1) google (1) hash (1) honeypot (1) ics (1) ip (1) iptables (1) is-is (1) it (1) javascript (1) joomla (1) kill (1) kvm (1) lab (1) lvm (1) macro (1) manual (1) maps (1) mssql (1) mx (1) nas (1) network (1) noriben (1) ntfs (1) ntlm (1) ntp (1) office (1) oosec (1) openvpn (1) otx (1) pentestit (1) policy (1) post (1) private (1) profile (1) proxmox (1) public (1) ransomware (1) repo (1) router (1) safe (1) san (1) scp (1) seb (1) sites (1) skype (1) social (1) soft (1) splunk (1) sql (1) ssl (1) tarpit (1) tools (1) track (1) traffic (1) usb (1) viper (1) virtualization (1) vmdk (1) vpn (1) wiki (1) xee (1) yota (1)

#RUS_SecBlogsList

  • Бизнес без опасности
  • Жизнь 80 на 20
  • Безопасность для понимающих и не очень
  • Security Insight
  • В тему и offtopic
  • Рецепты безопасности от Емельянникова
  • Блог Артема Агеева
  • Блог Сергея Борисова про ИБ
  • Синдром сапожника
  • Быть, а не казаться | О безопасности и не только
  • Записки на манжете
  • Ригельз Дыбр
  • ZLONOV.ru | Alexey Komarov's blog
  • Взрывной блог » Взлом и защита, с перевесом первого. Несерьёзный блог о серьёзных вещах
  • Защита персональных данных и не только - книга рецептов
  • Информационная безопасность (Ростовская область)
  • Информационная безопасность - АУДИТ, ОЦЕНКА
  • Архивы безопасности
  • REPLY-TO-ALL Information Security Blog
  • Солянка
  • ИБ. Взгляд снизу
  • www.itzashita.ru Проект "ИТ-защита". ИТ безопасность. Стандартизация, проектирование, методология.
  • Intercept the planet!
  • Redirecting
  • Manannikov-DA | BIS-Expert
  • 0xAA - Random notes on security
  • Безопасность АСУ ТП
  • ИБ в СПб
  • АГАСОФИЯ
  • Журнал Изменений
  • Дудко Дмитрий, информационная и экономическая безопасность
  • Смотря как смотреть
  • Redirecting
  • Another Brick in the Firewall
  • Блог Павла Кулькова в informationsecurity.club
  • Секьюрный | Securny | блог специалиста по системной интеграции в области Identity Management & Access Governance
  • egengrinovich
  • Социальная инженерия

/archive

  • ►  2017 (1)
    • ►  02/12 - 02/19 (1)
  • ▼  2016 (63)
    • ►  07/31 - 08/07 (1)
    • ►  06/12 - 06/19 (2)
    • ►  05/22 - 05/29 (1)
    • ►  05/15 - 05/22 (1)
    • ►  05/08 - 05/15 (1)
    • ►  05/01 - 05/08 (1)
    • ►  04/17 - 04/24 (4)
    • ►  04/10 - 04/17 (3)
    • ►  04/03 - 04/10 (1)
    • ►  03/20 - 03/27 (2)
    • ►  03/13 - 03/20 (1)
    • ►  03/06 - 03/13 (4)
    • ►  02/28 - 03/06 (4)
    • ▼  02/21 - 02/28 (2)
      • Семплы / источники малвари.
      • Twitter sec memories #5 [23.02.16] (PSMSF/MODBUS/P...
    • ►  02/14 - 02/21 (3)
    • ►  02/07 - 02/14 (5)
    • ►  01/31 - 02/07 (7)
    • ►  01/24 - 01/31 (5)
    • ►  01/17 - 01/24 (6)
    • ►  01/10 - 01/17 (8)
    • ►  01/03 - 01/10 (1)
  • ►  2015 (197)
    • ►  12/20 - 12/27 (4)
    • ►  12/13 - 12/20 (3)
    • ►  12/06 - 12/13 (6)
    • ►  11/08 - 11/15 (1)
    • ►  09/27 - 10/04 (3)
    • ►  09/20 - 09/27 (2)
    • ►  09/13 - 09/20 (4)
    • ►  09/06 - 09/13 (1)
    • ►  08/30 - 09/06 (1)
    • ►  08/23 - 08/30 (4)
    • ►  08/02 - 08/09 (1)
    • ►  07/26 - 08/02 (2)
    • ►  07/19 - 07/26 (3)
    • ►  07/12 - 07/19 (5)
    • ►  07/05 - 07/12 (6)
    • ►  06/28 - 07/05 (2)
    • ►  06/21 - 06/28 (6)
    • ►  06/14 - 06/21 (5)
    • ►  06/07 - 06/14 (4)
    • ►  05/31 - 06/07 (3)
    • ►  05/24 - 05/31 (4)
    • ►  05/17 - 05/24 (12)
    • ►  05/10 - 05/17 (18)
    • ►  05/03 - 05/10 (6)
    • ►  04/26 - 05/03 (23)
    • ►  04/19 - 04/26 (66)
    • ►  04/12 - 04/19 (1)
    • ►  02/08 - 02/15 (1)

#World_SecBlogsList

  • Malwageddon
  • TouchMe blog
  • R136a1 blog
  • Skid List
  • The Wall of Shame
  • Secubox Labs
  • MalwareIntelligence
  • MalwareDisasters
  • SecurityIntelligence
  • Tracking Cybercrime
  • Kafeine's blog
  • Anti-Reversing
  • Frank Boldewin's site
  • rkhunter's blog
  • aaSSfxxx's blog
  • Malware Reconstructor
  • Onthar's blog
  • Stop escrocs
  • Krebs on Security
  • Bleepingcomputer
  • Contagio
  • cyb3rsleuth
  • w4kfu
  • DeleteMalware
  • Zero Day Japan
  • KernelMode
  • qpt's Labs
  • SpamLoco
  • TigzyRK
  • Dr.Web
  • Malware Diaries
  • Xsp!d3r's Web
  • S!Ri.URZ
  • Malekal
  • JS Beautifier
  • Dionaea
  • Honeypot project
    • xylibox

#Online_SandboxList

  • ThreatExpert
  • Anubis
  • CWSandbox
  • Comodo
  • jsunpack
  • Wepawet
    • xylibox

#Malware_SamplesList

  • Secubox Labs
  • VX Vault
  • Malekal
  • MalwareBlacklist
  • Feodo Tracker
  • ZeuS Tracker
  • SpyEye Tracker
  • Palevo Tracker
  • SafeGroup
  • Clean MX
  • Malc0de
  • Malware Domain List
  • NovCon Minotaur
    • xylibox

#Cybercrime_Tracking

Ransomwares
Money laundering (MoneyPak)
Trojan:Win32/Tobfy.M Affiliate
Trojan:Win32/Reveton
Multi Locker 3.0
Epubb winlock affiliate
Silence Winlocker 5.0
Gimemo guys still use free service for stats
weelsof use SSL C&C
Ulocker
Gangstaservice Winlock Affiliate
Winlock affiliate
EURO Winlocker
Win32/Weelsof: Smoke Loader, Zeus, Ransomware... juicy business
Backdoor.Bot.LameNova
PaySitesClub affiliate recycle malware domains ?
Silence Winlocker
GEMA / FakePoliceAlert and money laundering)
CatTrade (Ransomware Affiliate)
FakePoliceAlert updated
Хендехох Affiliate
FakeAV/FakePoliceAlert: Source code for sale
WinAD gang
Winlock Builder [Private] v1.30

Private AV Checkers
Serenity Scanner
Element Scanner
multi-scan.com
scan4you.net
chk4me.com
Virtest and Palevo

FakeAV
FakeAV abandoned affiliate
Black processing service for malware only
Talking to a FakeAV black processing service
FakeAV Affiliate who distribute Zaxar Family
Bombacash affiliate
star-stat.com (reseller bestavsoft2)
Money Racing AV
True Big Cash (FakeAV Affiliate)
FakeAV GUI/FakeAV Site requirements specification
PrivatCoin Affiliate
FakeAV/FakePoliceAlert: Source code for sale
yambaprivate.com (Fake.HDD)
AV-AFF.BIZ (Total Protect FakeAV)
Golden Ducat
BestAV and BlackSoftware *Reloaded*
Severa and Black Software
Gagarincash AV
BestAV

Hoax SMS
Stimul Premium (Java.SMSSend)
WapSyst (Java.SMSSend)
Wizard Mobile (JAVA/SMSSend - Android/FakeInst)
ZipWap (JAVA/SMSSend - Android/FakeInst)
CenterCash
Zip Archive

Malware 'general'
Android/FakeToken.A
Troj/WowSpy-A
Jolly Roger Stealer
Win32/BruteForce.WP
Win32/Atrax.A
Reversible Rovnix passwords
Power Loader 2.0 (Alueron)
FeodalCash Affiliate (Trojan:Win32/Tarcloin)
Pony 1.9 (Win32/Fareit)
Panel Control RëFF
Picebot pharming botnet
Citadel cracked builder ?
Win32/Pikboclick.A (Trojan.Clicker)
Trojan.Win32/Spy.Ranbyus
Andromeda bot
IceIX/Zeus Red/Zeus
Moneycloud PPI Affiliate (Simda.A)
It's the end of Citadel ?
Barracuda Loader
Backdoor.Nucleroot/Win32.Umbald.A (Umbra Loader)
W32/PixSteal.A
Knucker.C/LoveLetter
BackDoor-ARD/BackDoor.Feardoor
Sh*t happens
Citadel 1.3.5.1 Rain Edition
ZeuS / XAT Loader
Citadel
Tick Panel (hermes/tatanga)
MP-FormGrabber
NetWire first Multi-platform RAT
CheapMiner
W32/AccPhish
Aldibot
Gold Installs Affiliate
Gigabid affiliate (Win32/Cycbot)
Pay For Install (Win32.StartPage)
Malwox (Win32/Cidox Affiliate) Mayachok.1
yambaclick.com (Alureon)
Ready to Ride v3 (cycbot)

Fake shops
TowPow BulletProof Affiliate
365pills (pharma affiliate)
rx-partners.biz (huge pharma affiliate)
badbase.ru (Fake pharma)
Doktor Dick affiliate (Fake pharma)
Mailien 3.0 (Fake pharma)
Vertu Cash (VERTU Replica)
Luxury Cash (Replica Watches)
Books Sellers (Fake Ebooks)
Software Sellers (Fake OEM)
EvaPharmacy (Fake pharma)
PharmIncome and CigIncome (Fake pharma/Cigs)

Exploit kit / Loaders
Serenity Exploit Kit / AlphaPack v8
Blackhole v2.0.0
Eleonore Exploits pack v1.2
Fragus exploit kit
Phoenix Exploit's Kit 3.1 full
Blackhole v1.2.3
Crimepack 3.1.3
SKY-Loader v.1.2
Blackhole v1.2.2
Blackhole v1.2.1
Sakura Exploit Pack 1.0
Blackhole v1.2.0
Blackhole v1.1.0

Misc
Candytrip
Contract Killings
Log parser
Unknown Webinject
SparkyJava
AnonJDB
How to infiltrate affiliate programs
Win32/Rovnix
CryptoService
SUTRA TDS v3.4
IframeShop.net
Another cc-grabbers web based
cc-grabbers admin panel bender edition

Phishing / Spam
Phish a phisher
Phishing made easy, way too easy...
Phish-BankFraud EDF again and again
Spamming on compromised RDP
Phish-BankFraud: RDP Spam
Phish-BankFraud (EDF, CAF, and now Carrefour)
Phish-BankFraud (EDF+CAF)
Phish-BankFraud/PHP.Mailer/PHP.Shell
spamb0x.com, World Wide Spam
Phishing Hunting
Freshdb (spammers shop)

Credit card fraud related
ZeusVM and Steganography
How the protection of Citadel got cracked
Win32/Spy.POSCardStealer.O and unknown POS Sniffer
Citadel targeting Canada
Inside a malware campaign: Alina + Dexter + Citadel
Having a look on the KINS Toolkit
Point-of-Sale Malware: Infostealer.Dexter
Micro camera for skimmer
Carberp archive
Who's behind Alina ?
Citadel lawsuit and explanation of John Doe 25
Carding Manager
Dump Memory Grabber / BlackPOS (Win32/Pocardler.A)
ProjectHook RAM Scrapper
Off-sho.re and Darkode
Liberty Reserve Curl Scam script
Cardingmaster.com carding shop
getdumps.com Fake Carding shop and LR Curl scam script
Fake carding shops
Skimmers: NCR/Diebold/Wincor
Darkode: I Accidentally…
Darkode leak
Embosser and BSR
VMADUMPS (Carding shop)
Carding on compromised RDP
You're valentine is a carder
Alina 3.4 (POS Malware)
Counterfeit euro notes
adminshop2013.com (Carder shop)
Petroleum POS malware ?
vSkimmer, Another POS malware
Point-of-Sale and memory scrappers
vksh0p.com card shop
DUMPSLOGS.COM Card shop
Nano Wincor Skimmer
Troj/Skimer-A
Fake French administrative documents
How I Carded Myself
NCR/Wincor/Diebold/Nano/round/Green/Camera/Panel Skimmers and 3D models
Round NCR / Green NCR / Nano Wincor Skimmer
Skimmer Services
Cash-trapping
CardingStuff
Visa/Mastercard Silver & Gold, Stickers/Hot Stamping
NCR SelfServ Bezel / Wincor/Diebold skims
NCR/Diebold/Wincor Skimmers
3D models of bezels
Wincor/NCR Skimmers
Green Anti/round/Flat/Nano/universal Skimmers
Wincor/NCR/Diebold Skimmers
Plastic service UV passable
GSM skim for NCR
Fake 50 Euros
seriousbiz.ru card shop disguised as Squirrel Mail
ATM skimmers (NCR/DIEBOLD)
Plastic service and fake documents
POS Carding
Interview with a carder
luvservice.be (Paypal shop)
bastard.su FuLLz
ProfitBins.ru
ATM skimmer (Diebold)
lulzsec.su iProfit PayPal Shop
pawn-shop.cc
we-deal.net black services

xylibox
/dev/nulls. Автор изображений для темы: Ollustrator. Технологии Blogger.