Joint report on publicly available hacking tools

Posted October 15, 2018
Security Advisories

The National Cyber Security Centre has worked with cyber security authorities in Australia, Canada, the United Kingdom and the United States to produce a report which highlights five publicly available tools which have been used for malicious purposes in recent cyber incidents around the world.

The tools detailed in the report fall into five different categories: Remote Access Trojans, Web Shells, Credential Stealers, Lateral Movement Frameworks, and Command and Control (C2) Obfuscators.

Specific tools discussed are:

Remote access trojans: JBiFrost
Web Shells: China Chopper
Credential stealer: Mimikatz
Lateral movement frameworks: PowerShell Empire
C2 obfuscation and exfil: HTran

The report provides network defenders and systems administrators with advice about limiting the effectiveness of these tools and detecting their use on a network.

GSA-2018-133 - Joint report on publicly available hacking tools [PDF, 410KB] [PDF, 410 KB]

Latest headlines

NCSC and partner agencies publish top 15 common vulnerabilities for 2023

Cyber Security Alert: CVE affecting Synology Photos

NZSIS, NCSC and partners launch security advice for tech start-ups

Don’t give to the Scamathon!