8 Ways To Keep Your VPS High Secured
It doesn’t matter whether you are running a self-managed VPS that carries private or sensitive data – all your data should be as secure as possible. As your server’s administrator, there are some simple...
Penetration Testing Blog
lnav v0.9 releases: an enhanced log file viewer
LNAV — The Logfile Navigator The log file navigator, lnav, is an enhanced log file viewer that takes advantage of any semantic information that can be gleaned from the files being viewed, such as...
xeca v0.3 releases: creates encrypted PowerShell payloads for offensive purposes
xeca xeca is a project that creates encrypted PowerShell payloads for offensive purposes. Creating position independent shellcode from DLL files is also possible. How It Works Identify and encrypt the payload. Load encrypted payload...
Merlin v0.9.1 Beta releases: cross-platform post-exploitation HTTP/2 Command & Control server and agent
Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in golang. An introductory blog post can be found here. Evade network detection during a penetration test/red team exercise by using...
strace v5.9 releases: diagnostic, debugging and instructional userspace utility
strace – the Linux syscall tracer strace is a diagnostic, debugging and instructional userspace utility for Linux. It is used to monitor and tamper with interactions between processes and the Linux kernel, which include system...
iblessing v0.3.7 beta releases: iOS security exploiting toolkit
iblessing iblessing is iOS security exploiting toolkit, it mainly includes application information collection, static analysis, and dynamic analysis. iblessing is based on a unicorn engine and capstone engine. Features 🔥 Cross-platform: Tested on macOS and Ubuntu. iOS App static info extract,...
PHPStan v0.12.44 releases: PHP Static Analysis Tool
PHPStan focuses on finding errors in your code without actually running it. It catches whole classes of bugs even before you write tests for the code. It moves PHP closer to compiled languages in...
steady v3.1.15 releases: Discover, assess and mitigate known vulnerabilities in your Java and Python projects
Eclipse Steady (Incubator Project) Discover, assess and mitigate known vulnerabilities in your Java and Python projects Eclipse Steady supports software development organizations in regard to the secure use of open-source components during application development....
Mondoo v0.67 releases: Cloud-Native Security & Vulnerability Risk Management
Mondoo Mondoo is a natural language query system for scanning, deploying, and remediating your cloud-native applications. Feature Insights into your fleet Ask questions about your deployments and get answers. Simple questions are answered using...
terraform-aws-secure-baseline v0.21 releases: set up your AWS account with the reasonably secure configuration baseline
terraform-aws-secure-baseline A terraform module to set up your AWS account with the reasonably secure configuration baseline. Most configurations are based on CIS Amazon Web Services Foundations v1.2.0. See Benchmark Compliance to check which items in CIS benchmark are...
