SpiderLabs Blog

December 13, 2019 | Radoslaw Zdonczyk

Python's popularity is amazing and constantly growing. For the first time, ...

December 10, 2019 | Karl Sigler

December's Patch Tuesday is upon us, and, as in years gone by, it's a rather ...

December 09, 2019 | Charles Hamilton

During red team engagements, lateral movement in a network is crucial. In ...

December 05, 2019 | SpiderLabs Researcher

November’s Patch Tuesday from Microsoft included a patch for yet another ...

December 04, 2019 | Daniel Turner

Today we are releasing CrackQ, a queuing system to manage password cracking ...

November 22, 2019 | Albert Campa

Often when penetration tests are scheduled, it will be requested that testing ...

November 21, 2019 | Robert Foggia

Back in May of this year, I discovered a few vulnerabilities in the SatLink ...

November 19, 2019 | Diana Lopera

Recently, fake Microsoft Windows Update emails were spammed with the following ...

November 18, 2019 | Bruno Oliveira

Introduction Hello again! After our previous post about the environment setup, ...

November 14, 2019 | Manuel Nader

In the past, we’ve described how to fingerprint Ubuntu OS Version using ...

November 08, 2019 | Trustwave SpiderLabs

One of the unfortunate parts of a business like ours is when disputes arise ...

November 05, 2019 | Diana Lopera

Most malware sent via emails is packaged in archives such as ZIP, RAR, and 7z ...

October 23, 2019 | Bruno Oliveira

Introduction In this blog series, I will try to set some base knowledge for ...

October 18, 2019 | Rodel Mendrez

As we mentioned in our earlier blog, Azorult is very popular in the underground ...

October 15, 2019 | Rodel Mendrez

In this blog series, we dive into an information stealing Trojan called Azorult ...

October 08, 2019 | Karl Sigler

Microsoft’s security update for the month of October is one of the lightest ...

September 30, 2019 | Liam Somerville

Chained Critical Everyone gets critical. It’s part of our vernacular: ...

September 27, 2019 | Diana Lopera

Documents attached to emails are commonly used as the initial vector to deliver ...

September 26, 2019 | Stephan Borosh

Introduction A fundamental part of any network is the Domain Name Service ...

September 25, 2019 | Dr. Fahim Abbasi

In this blog, we draw attention to a persistent high-volume spam campaign that ...

September 24, 2019 | SpiderLabs Researcher

Microsoft released an out-of-band patch for a 0-day vulnerability in Internet ...

September 18, 2019 | Stephan Borosh

Recently, I set out to find a simple solution to manage the building of all my ...

September 11, 2019 | Karl Sigler

For September 2019, Microsoft is releasing 78 CVEs. Of these CVEs, 17 are rated ...

September 10, 2019 | Karl Sigler

Overview There are five new credential leaking vulnerabilities discovered and ...

September 06, 2019 | Nikita Kazymirskyi

After a bit of a lull in the world of exploit kits, a new exploit kit by the ...

September 04, 2019 | Rodel Mendrez

Magecart is the name given to notorious groups of hackers that target online ...

August 13, 2019 | Karl Sigler

The August Patch Tuesday is here ringing in patches for a massive 97 CVEs. ...

August 12, 2019 | Ziv Mador

Over the years, cyber-attacks have become widespread and increasingly ...