King Phisher Release 1.9

Today SecureState is proud to announce the latest release of our open source Phishing tool King Phisher. This release brings […]

Updating Anti-CSRF Tokens in Burp Suite

Updating Anti-CSRF Tokens in Burp Suite Burp Suite developed by Portswigger, is the leading software for web application penetration testing. […]

Insecure Direct Object References

Insecure Direct Object References   Insecure Direct Object References was a category first seen in the OWASP Top Ten 2007 […]

King Phisher Release 1.8

The King Phisher version 1.8 has arrived with the following changes: Warn Python 2.7 users that this is the last […]

Weaponizing hostapd-wpe

TL;DR: Installing hostapd-wpe on a wireless router powered by an external power bank provides a standalone wireless attack platform with […]

Obfuscating Launchers to Limit Detection

Last time, I provided a method for encrypting macro payloads (https://warroom.securestate.com/encrypt-macros-bypass-sandboxes/)  to prevent them from executing correctly in the event […]