GitHub

Sickle - Payload Development Kit

Sickle is a tool I originally developed to help me be more effective, in both developing and understanding shellcode. However, throughout the course of its development and usage It has evolved into a ...
Security Boulevard

China-nexus Threat Actor Targets Persian Gulf Region With PlugX

IntroductionOn March 1, 2026, ThreatLabz observed new activity from a China-nexus threat actor targeting countries in the Persian Gulf region. The activity took place within the first 24 hours of the ...
The Hacker News

APT41-Linked Silver Dragon Targets Governments Using Cobalt Strike and Google Drive C2

Cybersecurity researchers have disclosed details of an advanced persistent threat (APT) group dubbed Silver Dragon that has been linked to cyber attacks targeting entities in Europe and Southeast Asia ...
GitHub

Automatic Exploit Generation (AEG) and remote flag capture for exploitable CTF problems

Zeratool now supports remote libc leaking with buffer overflows. When a puts or printf call is present, Zeratool will leak out remote GOT entries and submit them to an online libc searching database ...
The Hacker News

China-linked APT17 Targets Italian Companies with 9002 RAT Malware

A China-linked threat actor called APT17 has been observed targeting Italian companies and government entities using a variant of a known malware referred to as 9002 RAT. The two targeted attacks took ...
WeLiveSecurity

Stealth Falcon preying over Middle Eastern skies with Deadglyph

For years, the Middle East has maintained its reputation as a fertile ground for advanced persistent threats (APTs). In the midst of routine monitoring of suspicious activities on the systems of ...
LinkedIn

Top 10 Cybersecurity Books for Beginners: Building a Strong Foundation in Cyber Defense

In today's digital age, cybersecurity has become a critical concern for individuals and organizations alike. With cyber threats evolving and becoming more sophisticated, it's important for anyone ...
LinkedIn

The Power of In-Memory Executions: How to Execute Code without Touching Disk

Shellcode is a small piece of code that is injected into a target process to execute a payload. It is often used by attackers to bypass antivirus detection and gain remote access to a system.
PCGamesN

Destiny 2 Bluejay quest and how to gather Shellcode Fragments guide

The Destiny 2 Bluejay quest opens up a lot of possibilities for you once completed. Not only does it give you your first taste of the Partition: Hard Reset mission, but it's likely the first avenue ...
Bleeping Computer

RedEyes hackers use new malware to steal data from Windows, phones

The APT37 threat group uses a new evasive 'M2RAT' malware and steganography to target individuals for intelligence collection. APT37, also known as 'RedEyes' or 'ScarCruft,' is a North Korean cyber ...
WeLiveSecurity

A lookback under the TA410 umbrella: Its cyberespionage TTPs and activity

ESET researchers have documented and analyzed TA410 activity going back to 2019. TA410 is a cyberespionage umbrella group loosely linked to APT10, known mostly for targeting US-based organizations in ...