Security Blog

Cybersecurity research, vulnerability analysis, and practical security insights.

Security Research

IPCAM Hacking Part 3 - Camera Firmware Analysis

[+]redrain//**/ 汪汪汪 Home Embedded devices hacking --IPCAM...

Jul 06, 2026 1 min read
Security Research

IPCAM Hacking Part 2 - Advanced Camera Exploitation

[+]redrain//**/ 汪汪汪 Home Embedded devices hacking --IPCAM...

Jul 06, 2026 1 min read
Security Research

IPCAM Hacking Part 1 - Network Camera Exploitation

[+]redrain//**/ 汪汪汪 Home Embedded devices hacking --IPCAM...

Jul 06, 2026 1 min read
Malware Analysis

Crypto Miners Are Making Money With Your Money: How to Fight Them

The Rise of Cryptojacking Cryptojacking — the unauthorized use of someone else's computing resources to mine cryptocurrency — has exploded in popularity among cybercriminals. Unlike ransomware, which...

Jul 06, 2026 3 min read
Malware Analysis

Virtual Machine Introspection in Malware Analysis

What is Virtual Machine Introspection? Virtual Machine Introspection (VMI) is a technique that allows analysis of a virtual machine's state from the hypervisor level. Unlike traditional malware...

Jul 06, 2026 3 min read
Malware Analysis

Hide Malware Using Microsoft HTML Interpreters

Introduction Microsoft provides several HTML rendering engines and interpreters as part of the Windows operating system. Attackers have discovered that these legitimate tools can be weaponized to...

Jul 06, 2026 2 min read
Malware Analysis

Load and Inject Malicious DLL Using Microsoft Tools

Introduction Dynamic Link Library (DLL) injection is a technique used by attackers to execute malicious code within the address space of another process. What makes this technique particularly...

Jul 06, 2026 2 min read
Malware Analysis

BadRabbit Ransomware Analysis

Overview BadRabbit emerged on October 24, 2017, primarily targeting organizations in Russia, Ukraine, Turkey, and Germany. Unlike NotPetya's supply chain attack, BadRabbit relied on drive-by download...

Jul 06, 2026 2 min read
Malware Analysis

PowerShell: Malwares Can Use It Without PowerShell.exe

Overview PowerShell is one of the most powerful tools available on Windows systems. Unfortunately, it has also become one of the most popular tools for attackers. While many security solutions...

Jul 06, 2026 2 min read
Malware Analysis

NotPetya Ransomware Analysis

Executive Summary On June 27, 2017, what initially appeared to be a variant of the Petya ransomware began spreading rapidly across networks worldwide. Dubbed "NotPetya" by researchers, this malware...

Jul 06, 2026 3 min read
Pentest Scripts

Directory Brute Forcing Using Curl and WC

Directory Brute Forcing with common tools: Finding non-linked resources is an important part of any assessment. If you’re working with a scope that limits tools you can install/use, or you want...

Jul 06, 2026 2 min read
Pentest Scripts

Checking For Ssl Vulnerabilities On The Command Line

While Nessus is a wonderful vulnerability scanner, sometimes it is too slow and resource heavy for individual issues. The following 2 equivalent scripts perform checks for the following SSL related...

Jul 06, 2026 3 min read