CVE-2019-0708 “Bluekeep”: Immunity Inc. starts to sell a exploit with full RCE capabilities

Cybersecurity firm Immunity Inc. decided to sell a BlueKeep exploit module capable of full remote code execution as part of its penetration testing toolkit.

Continue reading “CVE-2019-0708 “Bluekeep”: Immunity Inc. starts to sell a exploit with full RCE capabilities”

Reverse engineering and penetration testing on Android apps: my own list of tools

This list of tools is really useful both in penetration testing on an Android application and in reverse engineering of a suspicious application.
All tools are OSS and freely available: so, enjoy!

Continue reading “Reverse engineering and penetration testing on Android apps: my own list of tools”

Commando VM: a full Windows-based penetration testing virtual machine distribution

Months ago, I published a post about Flare VM, a project by Fireeye/Mandiant researcher focused on the creation of a Windows-based security distribution for malware analysis.

Recently, Fireeye released a similar project: another windows-based distribution, but this time dedicated to penetration testing and red teaming, named Command VM.

Continue reading “Commando VM: a full Windows-based penetration testing virtual machine distribution”

Kali Linux is now available for Raspberry Pi 4!

Offensive Security has released an official version of Kali Linux for Raspberry Pi 4, the last (and most powerful) version of the compact computer board, released just two weeks ago with a 1.5 GHz 64-bit quad-core ARM Cortex-A72 processor and 4GB of RAM.

Continue reading “Kali Linux is now available for Raspberry Pi 4!”