Hackers Exploit Hostinger's Preview Domain Feature to Launch Phishing Campaigns



Informationsportal Cybersicherheit interne Portal Nachrichten

TSEC NEWS (572 Quellen): 11.08.22 Perofrmance fix. Download Android App Android App von Team IT Security


Informationsportal Cybersecurity Chronologie für Nachrichtenthemen


➤ Ähnliche Beiträge für 'Hackers Exploit Hostinger's Preview Domain Feature to Launch Phishing Campaigns'

uriDeep - Unicode Encoding Attacks With Machine Learning

vom 3927.41 Punkte
Unicode encoding attacks with machine learning. Tool based on machine learning to create amazing fake domains using confusables. Some domains can deceive IDN policies (Chrome & Firefox). I created the best (big) dictionary of confusables using neural networks. It is used in the tool and it can be download from: https://github.com/mindcrypt/uriDeep/blob/master/data

SharpDPAPI - A C# Port Of Some Mimikatz DPAPI Functionality

vom 368.7 Punkte
SharpDPAPI is a C# port of some DPAPI functionality from @gentilkiwi's Mimikatz project.I did not come up with this logic, it is simply a port from Mimikatz in order to better understand the process and operationalize it to fit our workflow. The SharpChrome subproject is an adaptation of work from @gentilkiwi and @djhohnstein, specifically his SharpChrome project. However, this version of SharpChrome

StandIn - A Small .NET35/45 AD Post-Exploitation Toolkit

vom 261.83 Punkte
StandIn is a small AD post-compromise toolkit. StandIn came about because recently at xforcered we needed a .NET native solution to perform resource based constrained delegation. However, StandIn quickly ballooned to include a number of comfort features.

Dr. ROBOT - Tool To Enumerate The Subdomains Associated With A Company By Aggregating The Results Of Multiple OSINT Tools

vom 251.14 Punkte
Dr. ROBOT is a tool for Domain Reconnaissance and Enumeration. By utilizing containers to reduce the overhead of dealing with dependencies, inconsistency across operating sytems, and different languages, Dr. ROBOT is built to be highly portable and configurable.

AA20-099A: COVID-19 Exploited by Malicious Cyber Actors

vom 250.19 Punkte
Original release date: April 8, 2020SummaryThis is a joint alert from the United States Department of Homeland Security (DHS) Cybersecurity and Infrastructure Security Agency (CISA) and the United Kingdom’s National Cyber Security Centre (NCSC). This al

AA20-099A: COVID-19 Exploited by Malicious Cyber Actors

vom 250.19 Punkte
Original release date: April 8, 2020SummaryThis is a joint alert from the United States Department of Homeland Security (DHS) Cybersecurity and Infrastructure Security Agency (CISA) and the United Kingdom’s National Cyber Security Centre (NCSC). This al

URLCrazy - Generate And Test Domain Typos And Variations To Detect And Perform Typo Squatting, URL Hijacking, Phishing, And Corporate Espionage

vom 229.03 Punkte
URLCrazy is an OSINT tool to generate and test domain typos or variations to detect or perform typo squatting, URL hijacking, phishing, and corporate espionage.Homepage: https://www.morningstarsecurity.com/research/urlcrazyUse CasesDetect typo squatters profi

Evilginx 2 - Next Generation of Phishing Attack and Bypass 2FA written in Go

vom 228.71 Punkte
About Evilginx 2 - Next Generation of Phishing Attack and Bypass 2FA written in Go    Evilginx2 is a Man-In-The-Middle Attack Framework used for phishing login credentials along with session cookies, which in turn allows to bypass Two-Factor Authentication protection.   This tool is a successor to Evilginx, released in 2017, which used a custom version of nginx HTTP server to provide m

Rubeus - C# Toolset For Raw Kerberos Interaction And Abuses

vom 224.42 Punkte
Rubeus is a C# toolset for raw Kerberos interaction and abuses. It is heavily adapted from Benjamin Delpy's Kekeo project (CC BY-NC-SA 4.0 license) and Vincent LE TOUX's MakeMeEnterpriseAdmin project (GPL v3.0 license). Full credit goes to Benjamin and

Jeopardize - A Low(Zero) Cost Threat Intelligence & Response Tool Against Phishing Domains

vom 219.76 Punkte
Jeopardize tool is developed to provide basic threat intelligence&response capabilities against phishing domains at the minimum cost as possible. It detects registered phishing domain candidates (typosquatting, homograph etc.), analyzes them and assigns

AA21-048A: AppleJeus: Analysis of North Korea’s Cryptocurrency Malware

vom 215.36 Punkte
Original release date: February 17, 2021SummaryThis Advisory uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) framework. See the ATT&CK for Enterprise for all referenced threat actor tactics and techniques. This joint advisory is the result o

Hostinger Leak Full database Leaked August 2019 - Free Download

vom 206.56 Punkte
Today i receive a email from Hostinger saying that my email password has been breach in a new mega Hostinger leak. I never signup for Hostinger services but i do know that my email was registered with 000Webhost, a company that was adquired by Hos

Team Security Diskussion über Hackers Exploit Hostinger's Preview Domain Feature to Launch Phishing Campaigns