🛡️ Genus Cyber Intelligence Network

Definitions

What You Can Search

  • Cyber Vulnerabilities — example: latest apache vulnerabilities
  • Malware & Ransomware — example: what is ransomware attack
  • Security Alerts — example: recent cybersecurity alerts
  • Exploit Database Records — example: wordpress exploit vulnerability
  • Threat Intelligence — example: recent phishing campaigns
  • Cyber Attack Techniques — example: credential dumping attack
Quick Search:

Genus Cyber Threat Encyclopedia

  1. Malware Threats
    Virus

A virus is a type of malicious software that attaches itself to legitimate files or programs and spreads when those files are executed.

Worm

A worm is malware that spreads automatically across networks without user interaction.

Trojan

A Trojan is malicious software disguised as legitimate software. Once installed, it can allow attackers to access the system.

Ransomware

Ransomware encrypts files or systems and demands payment for their release.

Spyware

Spyware secretly collects user data such as passwords, browsing habits, and personal information.

Adware

Adware displays unwanted advertisements and may track user behavior.

Rootkit

A rootkit is a stealthy malware that hides itself from the operating system and security tools.

Botnet

A botnet is a network of compromised computers controlled by attackers to perform malicious activities such as DDoS attacks.

Webshell

A webshell is a malicious script uploaded to a server that allows attackers to control the website remotely.

Cryptominer

Cryptomining malware secretly uses a server’s resources to mine cryptocurrency.

  1. Web Application Attacks
    SQL Injection

A technique where attackers insert malicious SQL code into database queries to gain unauthorized access.

Cross-Site Scripting (XSS)

A vulnerability that allows attackers to inject malicious scripts into web pages viewed by other users.

Cross-Site Request Forgery (CSRF)

An attack that tricks users into performing actions on a website without their knowledge.

Remote File Inclusion (RFI)

A vulnerability allowing attackers to include files from remote servers.

Local File Inclusion (LFI)

Allows attackers to access local files stored on the server.

Command Injection

Allows attackers to execute operating system commands on a server.

Directory Traversal

Allows attackers to access restricted directories on a server.

File Upload Vulnerability

Occurs when a website allows malicious files to be uploaded.

Open Redirect

Allows attackers to redirect users to malicious websites.

Clickjacking

An attack where users are tricked into clicking hidden elements on a webpage.

  1. Network Attacks
    Distributed Denial of Service (DDoS)

An attack where multiple systems flood a target server with traffic.

Man-in-the-Middle (MITM)

An attacker secretly intercepts communication between two parties.

DNS Spoofing

Attackers manipulate DNS records to redirect users to malicious websites.

Packet Sniffing

Intercepting and analyzing network traffic to capture sensitive data.

ARP Spoofing

A technique used to intercept data within a local network.

Port Scanning

Attackers scan servers to identify open ports and services.

Session Hijacking

Stealing a user’s session token to impersonate them.

  1. Social Engineering Attacks
    Phishing

Fake messages or websites used to steal sensitive information.

Spear Phishing

A targeted phishing attack aimed at specific individuals or organizations.

Smishing

Phishing attacks conducted through SMS messages.

Vishing

Phishing attacks conducted through voice calls.

Business Email Compromise (BEC)

Attackers impersonate executives or vendors to steal money or data.

Pretexting

Attackers create fake scenarios to obtain sensitive information.

Baiting

Attackers lure victims with something enticing such as free downloads.

  1. Website Security Risks
    Sensitive File Exposure

Occurs when private files such as backups or configuration files are accessible online.

Hidden Admin Panels

Administrative interfaces that attackers try to locate to gain control.

Debug Log Exposure

Server logs exposed publicly may reveal sensitive information.

Backup File Exposure

Backup files may contain complete copies of databases or code.

Configuration File Exposure

Files such as .env or wp-config.php may reveal credentials.

  1. Security Technologies
    Security Headers

HTTP headers that protect websites from attacks.

Examples include:

Content Security Policy

X-Frame-Options

Strict Transport Security

HTTPS

Secure communication protocol using encryption.

Web Application Firewall (WAF)

A firewall designed to protect web applications from attacks.

Intrusion Detection System (IDS)

A system that detects suspicious activities.

Intrusion Prevention System (IPS)

A system that actively blocks detected attacks.

  1. Cybersecurity Concepts
    Attack Surface

All the points where attackers may try to enter a system.

Vulnerability

A weakness in software or configuration that attackers can exploit.

Exploit

Code or techniques used to take advantage of a vulnerability.

Zero-Day Vulnerability

A previously unknown vulnerability that has not yet been patched.

Patch

A software update that fixes security vulnerabilities.

Threat Intelligence

Information about cyber threats used to improve security defenses.