📌 Note: Legacy v1.0 files are archived in the archive/ folder for reference. For migration from standalone scripts to the module, see Migrating from v2.x. A PowerShell module for assessing DES and ...
Introduction Xloader is an information stealing malware family that evolved from Formbook and targets web browsers, email clients, and File Transfer Protocol (FTP) applications. Additionally, Xloader ...
Over the history of Active Directory, threat actors have continually identified new ways of exposing vulnerabilities in the Kerberos authentication protocol. To help reduce the risks associated with ...
Microsoft is continuing its push to modernize Windows security, and this time the focus is on strengthening Kerberos authentication across the platform. The company is preparing a major Kerberos ...
小红书 APP 的网络请求依赖一套名为 Shield 的签名保护机制,对应请求头中的 shield 字段。该签名由客户端 native 层(libxyass.so)生成,用于服务端校验请求合法性。 本项目通过逆向分析 libxyass.so,将 Shield 算法从 ARM 汇编完整还原为纯 Python 实现,不依赖任何模拟 ...
RC4’s long, messy reign over Windows authentication At the center of this shift is RC4, short for Rivest Cipher 4, a stream cipher that once powered much of the internet’s “secure” traffic and is now ...
About time: Microsoft introduced support for the RC4 stream cipher in Windows 2000 as the default authentication algorithm for the Active Directory services. The system has been insecure for even ...
Microsoft is officially moving to shut the door on RC4 - a legacy cryptographic cipher that has quietly persisted inside Windows authentication environments for decades - and forcing organizations to ...