Android 7: Intercepting App Traffic

A standard aspect of any mobile application security (MAS) assessment is intercepting and analyzing network traffic generated by the application under […]

All In One OSINT

If we’ve said it once, we’ve said it a thousand times: OSINT is an attacker’s best friend. There are a […]

King Phisher Release 1.8

The King Phisher version 1.8 has arrived with the following changes: Warn Python 2.7 users that this is the last […]

Weaponizing hostapd-wpe

TL;DR: Installing hostapd-wpe on a wireless router powered by an external power bank provides a standalone wireless attack platform with […]

Dirty Deeds…. On Video

Recently the team and I were engaged in a physical penetration test where our goal was to gain access to […]

The Inner Workings Of Railgun

Recently, Railgun functionality was added to Metasploit’s Python Meterpreter. This blog describes details of the implementation and how it provides […]