There is one simple truth about cybersecurity: taking shortcuts will sooner or later cause more harm and then backfire. You need to know how to eliminate mistakes, avoid taking shortcuts and protect yourself from hackers. This was covered by Paula during her keynote at RSA 2019 in San Francisco!
>>> Scroll down to view the slides and tools from Paula’s session
Read moreBurp Suite is an HTTP intercepting proxy used globally to test the security of web applications. It works by intercepting communication between your server and the target application that you wish to test and is packed full of nifty features such as Spider, Scanner, and Repeater. There are too many great Burp features to cover in one session so today I am just going to show you my five favorites which I use in every penetration test.
Read more
Today we gonna be talking about Nmap Scripting Engine, NSE. Nmap itself is a very interesting tool and can give penetration testers huge amount of information about network and systems connected to it. Nmap Scripting Engine is a powerful tool on top of Nmap, which allows us to automate some things that Nmap is doing during scanning.
Read moreIt’s your friendly neighborhood Microsoft Security Advisor, back with more tricks to keep your network safe. Despite your best efforts to protect your data, unencrypted network protocols might still be used. We show you how to use IPsec and SMB protection to create a web of protection around your information.
Read more
On March 27 and 28, 2019, Paula presented Briefings and Arsenal sessions at Black Hat Asia 2019 in Singapore. You can find below all the details about team-made CQTools and become familiar with the newest and really exciting tools our Team has prepared for Singapore.
>>> Scroll down to learn more, check the slides & download the tools and whitepaper! >>>
Deep dive into CQTools
CQURE Team has prepared tools used during penetration testing and packed those in a toolkit named CQTools. This toolkit allows to deliver complete attacks within the infrastructure, starting with sniffing and spoofing activities, going through information extraction, password extraction, custom shell generation, custom payload generation, hiding code from antivirus solutions, various keyloggers and leverage this information to deliver attacks. Some of the tools are based on discoveries that were released to the world for the first time by CQURE Team. CQURE was the first team that did full reverse engineering of DPAPI (Data Protection Application Programming Interface) and prepared the first public tool that allows monitoring WSL (Windows Subsystem for Linux) feature.
About the Black Hat
You probably already know Black Hat events from our previous posts, but let’s sum up some basic info about BH! Black Hat is one of those conferences where cybersecurity masters meet board-level executives who have responsibility for security governance in enterprises and organizations. For more than 20 years BH has provided attendees with the very latest insights in development and trends in information security research. This is a perfect place for announcing new CQtools allowing the ultimate privilege elevation and network attacks!
Watch-out, handout!
As was promised, Paula’s BH ASIA presentation slides can be found below.
Now you can download our tools (password: CQUREAcademy#123!) LINK
and whitepaper written by Paula Januszkiewicz and CQURE Team LINK.
Stay CQURE and see you soon!
Read more
Deep knowledge and understanding of credential security are the power – for sure in cybersecurity world! Today Paula presented a session on ‘Important Things You Need to Know about Storing Your Identity’ as a part of RSA Conference 2019 in San Francisco. During her talk, she covered most important topics connected to keeping your juicy data safe.
>>> Scroll down to view the slides and tools from Paula’s session
Read more
There is one simple truth about cybersecurity: taking shortcuts will sooner or later cause more harm and then backfire. You need to know how to eliminate mistakes, avoid taking shortcuts and protect yourself from hackers. This was covered by Paula during her keynote at RSA 2019 in San Francisco!
>>> Scroll down to view the slides and tools from Paula’s session
Read more