0P3N Blog
Cybrary’s Open Blog is a user contributed cybersecurity knowledge base that brings together content highlighting the latest tools, exploits, technologies and insights in the industry.
About 3 months ago, I was sitting in yearbook class bored out of my mind. My work was done, and coolmathgames.com just wasn't doing it for me anymore. So, I decided to have some fun. I started with a question: "How could I take control of other student's computers?" I ran through what I knew about the workstations: ...
Please note, I am not a lawyer, and I am not offering any legal advice. This essay is simply the result of researching multiple sources and offering my best interpretations of the issues at hand. Please consult your attorney for any actual legal advice on the matter. The opinions represented in this ...
PART 1. HG8245H Huawei Router “Privilege Escalation”: Scenario: You have signed up for an internet connection and your ISP has provided you with a fancy router, SSID name, and password to be able to access the internet connection. For this PoC, we focus on the HG8245H router. I. First things first, the router credentials are already ...
Hello Cybrarians! I think all of you would be familiar with Mr. Robot, or at least know that it is a television series. Anyway, I noticed while watching Mr. Robot, that Eliot recognized an attack, name RUDY. RUDY stands for R U Dead Yet? It is a slow and low rate, application layer exploitation tool. When an attacker uses the ...
In the event that your Windows machine has been compromised or for any other reason, this cheat sheet is intended to help. This article is for Windows Administrators and security personnel to better execute a thorough examination of their framework (inside and out) keeping in mind the end goal is to search for indications of compromise. ...
Hi everyone,This is my first article on this site, I hope you will enjoy it! :)What I'm going to show you today is a simple C++ virus, or scam (whatever you want to call it), that is very annoying once opened and requires a system reboot in order to stop it.What it actually does is very simple to understand: ...
#wikileaks (again). Dark Matter may sound like a new sci-fi movie, but it's actually the latest of the WikiLeaks Vault 7 classified documents shared with the public.These new documents, which build off of this month's previous leak, describe specifically how the CIA monitors Apple devices. Developed by a special division of the CIA ...
Matrix ransomware holds computer data encrypted for ransom. The users concerned learn about the attack from a file dubbed Readme-matrix.rtf. The file is a ransom note dropped to any folder which files the ransomware has encrypted. To ensure the victims actually read the message, the ransomware also drops its instance on the Desktop and changes the background ...
Hi Everyone, This is my first article for the 0P3N Knowledgebase, and what an eye-opener. The more you go into these documents the more you understand just how bad this leak really was. The tools they use I never even knew existed. Anyway, enjoy the article and comment on what you think of WikiLeaks CIA Vault 7. ...
Last year (2016) turned out to be a banner year for phishing. According to APWG (Anti-Phishing Working Group) , the total number of phishing attacks in 2016 was 1,220,523, a 65% increase over 2015. In the fourth quarter of 2016, APWG saw an average of 92,564 phishing attacks per month, an increase of 5,753% over 12 years. If ...