Vulnerability scanners assist in the identification and detection of vulnerabilities arising from misconfigurations or insecure coding with

One of the latest trends in penetration testing and malware development is to weaponize the so-called Living Off the Land Binaries and Scrip

As we all learn to deal with this new, temporary norm, we must not sacrifice our convictions for strong cybersecurity. Hackers are currently

Today’s malware authors and exploit developers have automated methods of obfuscating their software, When these techniques are combined with

However, sometimes the answer to this question cannot be so clear-cut. Much depends on how valuable the information being held for ransom is

The executive’s laptop had the very latest version of a cloud-based, next-generation antivirus endpoint detection and response software, whi

To sniff Wi-Fi, we use Alfa USB Wi-Fi adapter which connects to laptop via USB. For longer range sniffing, the 16 dBi Yagi antenna can be co

Today, much of the malware still operates via the same concept of infecting machines and spreading throughout networks. Due to this, it only

Speakers at the event were CEOs and Managing Directors from companies such as, Accenture Federal Services, RunSafe Security, George Mason Un

At Polito Inc., our forensic experts often rely on X-Ways Forensics to rapidly acquire and analyze digital computer evidence. X-Ways Forensi

There is a lot of confusion over deep web vs. dark web; they are often used interchangeably, which is wrong. In essence the term “deep web”

Polito Inc. has partnered with ReversingLabs (RL) and has developed a plugin extension called ReversingLabs Lookup Utility for Autopsy. Auto

While Pi-hole includes a nice web-based admin interface, I started to experiment with shipping its dnsmasq logs to the Elastic (AKA ELK) sta

The purpose of this blog post is not to provide an exhaustive overview of Meltdown and Spectre, but instead to provide key points and caveat

Script2exe functions by packaging the original VBScript as an encrypted resource within a PE stub. The original script is retained in the EX

With the important caveats that the story appears to still be evolving and many details are not publicly known at this point, recent...

*This blog entry was originally published on June 23, 2015 on the original Polito Blog. It was re-posted on October 3, 2017 due to...

*This blog entry was originally published on July 27, 2015 on the original Polito Blog by Ian Duffy . It was re-posted on October 3, 2017...

*This blog entry was originally published on July 5, 2017 on the original Polito Blog by Ian Duffy . It was re-posted on October 3, 2017...

On occasion we encounter questions about the differences between a vulnerability assessment and penetration test. While the end goal in both