[Dailydave] Regin, more amazing than sliced bread!

Dave Aitel dave at immunityinc.com
Mon Nov 24 11:44:36 EST 2014


http://www.immunityinc.com/products/innuendo/
http://www.symantec.com/connect/blogs/regin-top-tier-espionage-tool-enables-stealthy-surveillance

"Regin displays a degree of technical competence rarely seen " says
Symantec. Which is ... an unwarranted level or superlative rarely seen.

I mean, it's great work, and was clearly very successful but there's not
a ton in Regin that you can't buy over-the-shelf as a penetration
testing tool from us in INNUENDO. In fact, in many ways INNUENDO has
superior C2 and is more advanced.  INNUENDO stores itself and its add-on
modules encrypted in the registry, for example, and is more natively
extensible thanks to Python and the overall design.

There's some interesting notes in the reports: for example, they were
not able to find the exploits used to install Regin. Also I like how
team Kaspersky found one machine running about 5 APTs. 

But either way: INNUENDO is roughly comparable and is not expensive. 

-dave




-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.immunityinc.com/pipermail/dailydave/attachments/20141124/756dea27/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 181 bytes
Desc: OpenPGP digital signature
URL: <https://lists.immunityinc.com/pipermail/dailydave/attachments/20141124/756dea27/attachment.sig>


More information about the Dailydave mailing list