By Grant J. Bierly While people today may take the internet for granted and wouldn’t really know what to…
CVE Hunting for Fun, but not Profit.
By Henry Ballentine Are you looking for a personal project to punch up your resume, but can’t stand programming? Or…
Snoopy on Kali 2020.2
By Jared Albert Introduction Snoopy by SensePost is a distributed data collection, interception, analysis and visualization framework; as defined by…
Project CICADA
By Ayobami Adewale Introduction At its core, Project CICADA is a pre/post-exploitation framework that can be used to exploit misconfigured…
Behavior Is(n’t) Enough: Why Custom Ransomware Goes Undetected
By Sam Abrams Ransomware is great. Lock an enterprise’s files and just wait for the ransom money to roll in.…
Threat Hunting with Directed Graphs
By Caleb Chesley Log analysis has long been a staple of computer forensics and incident response. While tools known as…
Ransomware Comparison
By Geoff Twardokus Given the notoriety that ransomware has achieved over the last few years, I thought it would be…
Open Source Memory Analysis Tools for Instructional Use
By Wyatt Tauber In RIT’s Computer System Forensics class, students learn basic incident response procedures as well as methods to…
Exploiting SMB/NetBIOS on Windows 95/98
By Conrad Schneggenburger “I wish I could be as happy as excited Windows 95 guy is every day.” – Imgur,…
DNS Rebinding, AKA How I Learned to Start Worrying and Hate DNS
By Joshua Niemann Web applications have come a long way from their original inception. In today’s modern web landscape,…
