LLMNR

NBNS

responder

WPAD

LLMNR and NBT-NS Poisoning Using Responder

6 June 2016

In this article, we will show you how the default behaviour of Microsoft Window’s name resolution services can be abused to steal authentication credentials.

If a windows client cannot resolve a hostname using DNS, it will use the Link-Local Multicast Name Resolution (LLMNR) protocol to ask …

Read

android

threat-intelligence

The Endgame - Attributing Hacking Team implants globally

26 August 2015

hacking-team

adversary-simulation

Memory Forensics - Detecting Galileo RCS on Windows

6 August 2015

espionage

hacking-team

Galileo RCS - Running an espionage operation

20 July 2015