OpenBullet: The Threat Actor's New Magic Bullet
Cybersixgill Threat Intelligence Report
March 4, 2021
The dark web hosts tons of threat actors with varying capabilities. Some of them build hacking tools and share them for “educational purposes” – or so they claim – and deny any responsibility or fault if used for malicious purposes.
Many of these tools are pentesting or cracking tools like Metasploit, Wireshark, or Brutus, used to gain access to networks through vulnerabilities and compromised credentials. Such tools often offer simple to use GUI interfaces, plenty of user guides available on forums and YouTube, and even supporting files that are already programmed to perform a specific function like credential stuffing, allowing the attacker to simply deploy or activate the tool and reap the benefits.
This report will analyze one of the most-widely shared cracking tools on the deep and dark web: OpenBullet.