[FD] QuickHeal Generic Malformed Archive Bypass (ZIP GPFLAG)

From the low-hanging-fruit-department QuickHeal Generic Malformed Archive Bypass (ZIP GPFLAG) Release mode: Silent Patch Ref

Re: [FD] Defense in depth -- the Microsoft way (part 62): Windows shipped with end-of-life components

"Dennis E. Hamilton" wrote: > One correction: jsc.exe is a JavaScript command line processor. J# is not > and must not be shipped in Windows. > > The opinion about the .NET Framework notwithstanding, the presumption that > these utilities are defective because they were built with older version

[FD] ELF launcher for encrypted binaries decrypted on-the-fly and executed in memory

Hi all, think about a typical Red Team operation, in which tools that commonly trigger security alerts to SOC, such as “procmon” or “mimikatz”, are uploaded in a compromised machine and then launched without having antivirus, antimalware or endpoint protection solutions complaining about that.

[FD] XSSer v.1.8[3] - "The HiV€!" released

Hi FD, I am glad to present a new release of this tool: - https://xsser.03c8.net - "Cross Site "Scripter" (aka XSSer) is an automatic -framework- to detect, exploit and report XSS vulnerabilities in web-based applications. It provides several options to try to bypass certain filters a

Re: [FD] Defense in depth -- the Microsoft way (part 62): Windows shipped with end-of-life components

One correction: jsc.exe is a JavaScript command line processor. J# is not and must not be shipped in Windows. The opinion about the .NET Framework notwithstanding, the presumption that these utilities are defective because they were built with older versions of Visual C (and its libraries, presum