OpenBullet: The Threat Actor's New Magic Bullet

Cybersixgill Threat Intelligence Report

 

March 4, 2021

The dark web hosts tons of threat actors with varying capabilities. Some of them build hacking tools and share them for “educational purposes” – or so they claim – and deny any responsibility or fault if used for malicious purposes.

Many of these tools are pentesting or cracking tools like Metasploit, Wireshark, or Brutus, used to gain access to networks through vulnerabilities and compromised credentials. Such tools often offer simple to use GUI interfaces, plenty of user guides available on forums and YouTube, and even supporting files that are already programmed to perform a specific function like credential stuffing, allowing the attacker to simply deploy or activate the tool and reap the benefits.

This report will analyze one of the most-widely shared cracking tools on the deep and dark web: OpenBullet.