Blogs

As cybersecurity professionals, we encounter many cybersecurity issues, vulnerabilities, and trending threats on a daily basis. In an effort to share this knowledge with those who may find it helpful, we frequently post blogs on these topics. Our goal is to provide valuable information to those who are searching for it.

Hunting Down Remcos RAT: How CrowdStrike Update Mishaps Can Reveal Hidden Threats

bySimran Karki

July 22, 2024

Hunting Down Remcos RAT: How CrowdStrike Update Mishaps Can Reveal Hidden Threats

Table Of Contents Background Threat Landscape Threat Hunting Importance of Hypothesis in Threat Hunting Methodologies of Hypothesis Based hunting Plan Document IOCs Gathering TTPs Information MITRE Mapping Behavioral Analysis Investigate Mitigate Conclusion Background Recently, the cybersecurity community faced a significant challenge worldwide due to a BSOD (Blue Screen of Death) error caused by a CrowdStrike update.

October 4, 2022

Transaction Order Dependence Vulnerabilities on Smart Contracts

Table Of Contents Foreword Table of Contents Transaction Order Dependence Overview Introduction Ethereum mempool Security Risk Example Identification Techniques Mitigation Measures References Foreword This work is first in the series of articles on vulnerabilities that smart contracts are susceptible to.

leveraging the SQL Injection to Execute the XSS by Evading CSP

byNirmal Dahal

July 12, 2022

leveraging the SQL Injection to Execute the XSS by Evading CSP

Although it sounds silly, I am dumb enough to do this.

April 17, 2022

International standard for information security (ISO) - 27001

Table Of Contents ISO 27001 Introduction About ISMS Needs of ISMS How ISO 27001 work?

April 8, 2022

A Pentester's Prespective: SWIFT Vulnerability Assessment

Table Of Contents Local SWIFT Infrastructure Operators Operators PCs Data Exchange Layer Middleware Server Architecture Assessment Approaches Approach - I Approach - II What should a tester look for while using this approach?