Explore >> Select a destination

You are here

 forensicitguy.github.io
Inspecting a PowerShell Cobalt Strike Beacon | Tony Lambert
| | adsecurity.org
» Hacking with PowerShell » Active Directory Security
3.3 parsecs away

Travel
| | [AI summary] A technical article details how Chinese hackers known as Deep Panda used base64-encoded PowerShell scripts deployed as scheduled tasks to download and execute memory-resident malware, leaving no disk artifacts to evade detection.
| | 0xcybery.github.io
Bypass Windows Defender in Windows 11
1.1 parsecs away

Travel
| | Bypass Windows Defender in Windows 11.
| | darkatlas.io
Critical SharePoint Vulnerability CVE-2025-53770: Remote Code Execution via ViewState Abuse | Blog | Dark Atlas | Dark Web Monitoring Platform | Compromised Credentials Monitoring | Account Takeover Prevention Platform | Threat Intelligence | Buguard
3.6 parsecs away

Travel
| | On the evening of July 18, 2025, active and large-scale exploitation of a newly discovered SharePoint remote code execution (RCE) vulnerability chain-dubbed "ToolShell"-was observed in the wild. Initially demonstrated just days earlier on X, the exploit is being used to compromise on-premises SharePoint servers worldwide. The vulnerability chain, detailed in this blog, was later assigned [...]
| | blog.eclecticiq.com
FIN7 delivering Clop ransomware; ChatGPT and Midjourney imposter apps deliver BatLoader
16.2 parsecs away

Travel
| The latest Analyst Prompt looks at FIN7 delivering Clop ransomware, a BatLoader campaign that leverages ChatGPT and Midjourney imposter apps, and more.