GhostPresser (9a89bedf-9317-4396-9556-5e9391841adb)
GhostPresser is a tool associated with the GhostSec threat group. It functions as an admin bypass and hacking tool specifically targeting the WordPress content management system. This shell script was allegedly utilized by GhostSec in an XSS attack against legitimate websites.[Cisco Talos Blog March 5 2024]
| Cluster A | Galaxy A | Cluster B | Galaxy B | Level |
|---|---|---|---|---|
| GhostPresser (9a89bedf-9317-4396-9556-5e9391841adb) | Tidal Software | GhostSec (9d1a4d48-33b8-4f14-bec7-ef105c094297) | Tidal Groups | 1 |